How I Found open-redirect vulnerability using virus total?

actual worth 500$ based on program bounties

Hi everyone, i am back with another writeuup.

this time i will explain how i was found the openredirect using virustotal.

its yeswehack bugbounty program,it has only two domains in scope.

i got duplicate after reporting, but they alloted points for finding .some

one more faster than me. but its ok.

lets name it as doordie.fr, like every hacker i start recon on domain

using wappalyzer ,shodan, xnl reveal, trufflehog, link gopher.

no use, i did not find anything interesting.

at that time i decided to take break sometime, in this break time i was start

scrolling twitter regarding latest bug bounty content, mostly i used to filter

twitter posts with some particular words like……

“bug bounty”

“bug bounty tips”

“cve”

“ bugbounty writeups”

for example technology based, here i take AEM (content management serivce)

“AEM bugbounty”

change the name based on your requirement, i hope its helpful

lets back to your topic…… when i was scrolling twitter i found