Member-only story
Simple Tips for Bug Bounty Beginners: Finding PII Vulnerabilities
Personally Identifiable Information (PII) refers to any sensitive data that could potentially identify an individual such as usernames, emails, phone numbers, and addresses.
Protecting PII is paramount to safeguarding individuals’ privacy and preventing identity theft, fraud, and other malicious activities. This article discusses a methodology for uncovering PII on websites using free and open-source tools.
At this point, many of you would have made a guess that we are going to use the Wayback Machine tool for this purpose, but there’s more to this. If you are searching on a website with multiple subdomains it is not practically feasible to enter each and every subdomain into Wayback Machine. This is where we have to use the tools mentioned below:
- subfinder: A tool to fuzz (or discover) subdomains of a target domain
- httprobe: A tool to check for live web servers on a list of URLs.
- waybackurls: A tool to find archived versions of websites using the Wayback Machine.
- grep: A powerful command-line tool for searching text.
- Subdomain Enumeration:
Command: subfinder -d example.in > examplesubdomain.txt
