.png)
19 hours ago
7 BOOK THIS SPACE FOR AD
ARTICLE ADstep 1. Finding Subdomains using tools
create a folder to put all subdomains in files(ex: mkdir evilsubs)
Note: (I'm taking target as evil.com you can use your real-world target)
Note: (finding xss in hackerone or bugcrowd i can’t prefer these platforms have more competition if you find a xss on those platforms. It has more chance to it will be ended with a duplicate that’s why you need to find programs using these below given dorks)
inurl /bug bounty
inurl : / security
inurl:security.txt
inurl:security “reward”
inurl : /responsible disclosure
inurl : /responsible-disclosure/ reward
inurl : / responsible-disclosure/ swag
inurl : / responsible-disclosure/ bounty
inurl:’/responsible disclosure’ hoodie
responsible disclosure swag r=h:com
responsible disclosure hall of fame
inurl:responsible disclosure $50
responsible disclosure europe
responsible disclosure white hat
white hat program
insite:”responsible disclosure” -inurl:nl
responsible disclosure bounty r=h:nl
responsible disclosure bounty r=h:uk
responsible disclosure bounty…
![Tips to find Stored XSS [Bug_Bounty_Tips]](https://miro.medium.com/v2/resize:fit:276/1*iepgfuk7IPeIVDwcfuYieQ.png)
Bengali (Bangladesh) · 
English (United States) ·