Similar User
@Infoneeds1
@TopsecretArtpc
@R3n0v41
@70rpedo
@rajeshsagar777
@gabriel05x
@pandeyva
@0xUkuku
@ApinLusen
@f0ur0four
@BoukhlifMoussa
@Dr_Tomato1337
@lubabalotywabi
@marcelinobravo3
@noobstain_
My first P1 severity bug Thanks to @shubzyernale and @sunilyedla2 for their guidance #infosec #bugcrowd
Read “How I bypassed the registration validation and logged-in with the company email“ by Khaledyassen on Medium: infosecwriteups.com/how-i-bypassed…
My step by step process on how I do Bug Bounty Hunting: From finding targets to Submission of the… pwndecoco.medium.com/my-step-by-ste… #bugbounty #bugbountytips #bugbountytip
📚 Bypass 429 (Too Many Requests) ➡️ Adding Null Byte ( %00 ) or CRLF ( %09, %0d, %0a ) at the end of the Email can bypass rate limit. 📄 Request POST /ForgotPass.php HTTP/1.1 Host: target.com ... email=victim@gmail.com%00 #bugbounty #bugbountytips #bugbountytip…
🔰 Rate limiting bypass using Headers X-Originating-IP: 127.0.0.1 X-Forwarded-For: 127.0.0.1 X-Remote-IP: 127.0.0.1 X-Remote-Addr: 127.0.0.1 X-Client-IP: 127.0.0.1 X-Host: 127.0.0.1 X-Forwared-Host: 127.0.0.1 # Double X-Forwarded-For header example X-Forwarded-For:…
Critical Information Disclosure Vulnerability via CNAME (AUTOMATED SCAN) offsec01.medium.com/critical-infor… #bugbounty #bugbountytips #bugbountytip
🚀 ffuf Commands ➡️ Simple Scan ffuf -w /opt/dirsearch/small.txt -u http://10.10.118.46/FUZZ ➡️ Ignoring particular status code ffuf -w /opt/dirsearch/big.txt -u http://10.10.191.30:80/FUZZ -fc 401 ➡️ VHOST Fuzzing ffuf -w…
While everyone talks about what to submit on BBPs, let’s talk about what not to submit!! Blog: shreyapohekar.com/blogs/the-info… #infosec #cybersecurity #security #bugs #notabug
🪲IDOR hunting by @MDishant34837 ⭐Credit: Dishant Modi 👇Great Medium Article: medium.com/@dsmodi484/fin…
How to Find IDOR Vulnerabilities: A Guide for Bug Bounty Hunters and Developers cyberw1ng.medium.com/how-to-find-id… #bugbounty #bugbountytips #bugbountytip
Recently decided to start note-taking on whatever I read - blogs, courses etc. Since everything I read is already public, I don't see any point in keeping those notes to myself. Now that I'm consistent with it, here's where everything will be: shreyaschavhan.notion.site/Bug-Bounty-Not… #bugbounty
👇Wordlists specially for API routes fuzzing wordlists-cdn.assetnote.io/data/automated/
Automating the CORS Vulnerability Scan angixblack.medium.com/automating-the… #bugbounty #bugbountytips #bugbountytip
🔥 Filter out noise in Burp Suite 🔥 ➡️ While you are testing with Burp Suite, you may want to add these patterns into the Burp Suite > Proxy > Options > TLS Pass Through settings: .*\.google\.com .*\.gstatic\.com .*\.googleapis\.com .*\.pki\.goog .*\.mozilla\..* 📃 Now all…
Interesting Story of an Account Takeover Vulnerability . Hey all , This is my first blog about account takeover vulnerability. Give it a check . Hope you all like it . #bugbounty #cybersecurity medium.com/@deepanshudev3…
Unlocking Admin Privileges: How I Exploited an IDOR Vulnerability medium.com/@cybsersec/unl… #bugbounty #bugbountytips #bugbountytip
🐛 A Tale of 2 Bugs: How I Found Hidden Gems with 20 mins of Recon Blog: muqsitbaig.com/blog/a-tale-of… Follow for more infosec content every day (@mqst_) ♥ #cybersecurity #infosec #bugbountytips
🪲Hunting for Hidden API Endpoints Using Katana and Hakraler Credit: Anas H Hmaidy medium.com/@anasbetis023/…
2nd Series - Dorking in clouds ☁️ x.com/adityashende17…
Dorking Clouds 🌩️ Have you thought of targeting Google Dorking techniques for cloud storage, CDNs, and more. Check out these 👇 Find Invoices site:*.s3.amazonaws.com -www Uber Invoice Breakdown: -Targets Amazon S3 buckets with Uber-related invoice files. -Excludes common…
Subdomain Enumeration Part 2 (Manual & Automation) osintteam.blog/subdomain-enum… #bugbounty #bugbountytips #bugbountytip
United States Trends
- 1. Packers 17,9 B posts
- 2. McDonald 65,8 B posts
- 3. #HereWeGo 5.539 posts
- 4. $CUTO 7.563 posts
- 5. #GoPackGo 2.584 posts
- 6. Taysom Hill N/A
- 7. Clark Kent 3.278 posts
- 8. Coke 40,2 B posts
- 9. #AskFFT 1.598 posts
- 10. #RollWithUs 2.633 posts
- 11. Nick Herbig N/A
- 12. Mike Johnson 64,4 B posts
- 13. HFCS 1.152 posts
- 14. Go Bills 6.950 posts
- 15. David Montgomery N/A
- 16. #Browns N/A
- 17. Cam Little N/A
- 18. DeFi 98,5 B posts
- 19. Jayden Reed 1.370 posts
- 20. Granson N/A
Who to follow
-
Infoneeds
@Infoneeds1 -
Zodiac
@TopsecretArtpc -
R3n0v4
@R3n0v41 -
70rpedo
@70rpedo -
Rajesh sagar
@rajeshsagar777 -
Gabriel
@gabriel05x -
Varun
@pandeyva -
ukuku
@0xUkuku -
ApinLusen
@ApinLusen -
four0four
@f0ur0four -
Boukhlif Moussa 🇩🇿
@BoukhlifMoussa -
Romiyo karki
@Dr_Tomato1337 -
T Y
@lubabalotywabi -
marcello bravo
@marcelinobravo3 -
Sumeet darekar
@noobstain_
Something went wrong.
Something went wrong.