Similar User
@golu_369
@SadatTamzit
@OMK4RM4LI
@AnupamAS01
@Hx_0p
@0xMstar
@_bagipro
@z0idsec
@sw33tLie
@ehsahid
@damian_89_
@j3ssiejjj
@Assass1nmarcos
@SalahHasoneh1
@0xrudrapratap
I've created cspbypass.com A site where you can search for known CSP bypass gadgets to gain XSS. Now it contains some example data but I'll try to update it with some usefull data over the next weeks. If you have some CSP bypasses to share, feel free to reach out!
Below I share with you my write up "Full Account Takeover through CORS with connection Sockets", thanks #bugbounty medium.com/@saamux/full-a…
IOS Pentesting Series Learn how to work with useful tools and apps such as Frida, Objection, 3uTools, Cydia, Burp, fsmon, fridump, SSL bypass, reFlutter etc. Part 1: 🔗kishorbalan.medium.com/start-your-fir… Part 2: 🔗kishorbalan.medium.com/ios-pentesting… Part 3: 🔗kishorbalan.medium.com/ios-pentesting…
𝐏𝐄𝐍𝐓𝐄𝐒𝐓 𝐑𝐄𝐏𝐎𝐑𝐓 👉 STRUCTURE OF A PENTEST REPORT 💼 My article on how to write a pentest report: lnkd.in/eH92fT8Q 👉 HOW TO TAKE NOTES📝 Cryptpad cryptpad.fr 📔 Obsidian obsidian.md 📒 Joplin joplinapp.org 📄 Keepnote…
DNS Cache Poisoning Attack. Via: Cyber Threat Intelligence
Not a #KNOXSS Pro user yet? Here's a 5% COUPON! 🤩👏 KNXHUNT05 5% OFF for our One Time Payment plans! (3, 6 or 12 months) ➡️ Like and share this one to get a chance to win a 100% OFF coupon next week! #GIVEAWAY🤯 Sign up now! 😎👇 knoxss.me #XSS made easy.
I've made over 100k on SSRF vulnerabilities. They aren't always as simple as pointing it at localhost or AWS Metadata service. Here are some tricks I've picked up over the past 5 years of web app testing:
Yay, I was awarded a $200 bounty on @Hacker0x01! hackerone.com/m4ngofloat #TogetherWeHitHarder Just a simple xss on `RedirectTo=` parameter #bugbountytips
𝐅𝐫𝐞𝐞 𝐂𝐨𝐮𝐫𝐬𝐞: CompTIA Network+ (N10-008) mega.nz/folder/bm5UUZo… #Infosec #Cyber #Network #Hacking #networksecurity #Comptia
Your WiFi password can be stolen in seconds. In this video, we'll show you how it's done with Python and what you can do to prevent it from happening to you. youtube.com/watch?v=1nWPbK…
Yay, I was awarded a $1,000 bounty on @Hacker0x01! hackerone.com/m4ngofloat #TogetherWeHitHarder IDOR. delete anyone in their organization
Yay, I was awarded a $150 bounty on @Hacker0x01! hackerone.com/m4ngofloat #TogetherWeHitHarder
The feeling when you are able to locate a stored XSS and pull Auth token via SessionStorage! Payload: <img src=asdf onerror=alert(JSON.stringify(sessionStorage))> (sorry, had to repost.)
Some Cloudflare's latest XSS Bypass: XSS"><body %00 onControl hello onmouseleave=confirm(domain) x>XSS XSS"><html><select %00 onControl onpointerenter=prompt(domain) hello> XSS"><input %00 onControl hello oninput=confirm(domain) x> #bugbounty #xss #bugbountytips
Don't waste $13k on courses and bootcamps. 💰 Top 10 Youtube channels to learn Web3 for FREE. A Thread 🧵
Here's a cool repo that lists CVE PoCs that are posted to GitHub. Super useful when looking for exploits. github.com/nomi-sec/PoC-i…
Last weekend's work: Automate your XSS: echo target.com | waybackurls | grep "=" | egrep -iv ".(jpg|jpeg|gif|css|tif|tiff|png|ttf|woff|woff2|icon|pdf|svg|txt|js)" | uro | qsreplace '"><img src=x onerror=alert(1);>' | freq #XSS #bugbountytips #bounty
#Learn250 🎯Day 11: ✅Everything you need to know about FFUF - Blog ✅How to Master FFUF for Bug Bounties and Pen Testing - Video You can find them at👇: github.com/AkashHamal0x01…
We know that XSS was the most common vulnerability in 2021. 🔁 👉 So, it pays to be good at finding XSS. @hakluke covers what XSS is, discovery methods, filter bypasses, weaponized payloads, and more! ✅ #OuthackThemAll bgcd.co/3cXGXSw
United States Trends
- 1. Ravens 78,3 B posts
- 2. Steelers 107 B posts
- 3. Bears 112 B posts
- 4. Packers 71 B posts
- 5. Paige 12,9 B posts
- 6. Lamar 30,9 B posts
- 7. Jets 54,9 B posts
- 8. #HereWeGo 19 B posts
- 9. #GoPackGo 9.322 posts
- 10. Mahomes 17,5 B posts
- 11. Bills 98 B posts
- 12. Falcons 11,1 B posts
- 13. Josh Allen 7.055 posts
- 14. Worthy 47,8 B posts
- 15. Lions 91,1 B posts
- 16. Bo Nix 4.328 posts
- 17. Caleb 32 B posts
- 18. WWIII 39,7 B posts
- 19. Justin Tucker 19,6 B posts
- 20. Taysom Hill 9.637 posts
Who to follow
-
golu_369
@golu_369 -
Md Sadat Tamzit
@SadatTamzit -
Omkar Mali🇮🇳
@OMK4RM4LI -
Anupam Singh
@AnupamAS01 -
Ashar Mahmood
@Hx_0p -
MorningStar
@0xMstar -
Sergey Toshin
@_bagipro -
🆉🅾🅸🅳
@z0idsec -
sw33tLie
@sw33tLie -
Shahid Ahmed
@ehsahid -
Damian Strobel
@damian_89_ -
j3ssie (Ai Ho)
@j3ssiejjj -
Aditya sharma 🇮🇳
@Assass1nmarcos -
Salahaldin
@SalahHasoneh1 -
0xrudra
@0xrudrapratap
Something went wrong.
Something went wrong.