Hello Everyone
I hope you all are going well and good
So this is my third blog regarding bug hunting

If you want to read my previous 2 blogs regarding my findings click on the following link

how I got appreciation from Harvard University(harvard.edu):

how I got the hall of fame from Universiteit Utrecht(uu.nl)

So let’s start

First I was collecting all the URLs using the gau tool

GAU tool is a very much impressive tool made by Corben Leo

Link for gau tool:

By using grep command I sort out the URL which contains utm_ parameter

cat url.txt…

Hello guys, my name is Santosh Bobade. This is my first write-up, so any spelling mistake and grammatical mistake please ignored.

Let’s start

1)First, enumerate the subdomain of Harvard University and I got a single interesting subdomain. i.e. *.harvard.edu (sorry for not to a disclosed subdomain)

2)I saw the response in the browser and got 404 Error — page not found please check the URL

Yup quiet interested

3)I Ran the command in Kali Linux

host *.harvard.edu

In response, I got IP XXX.XX.XXX.XX

Santosh Bobade


Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store