-
My First Writeup on Reflect XSS https://link.medium.com/xf8MO7LiD3
#bugbounty#writeups#XSS -
Some
#bugbounty hunters made over €50.000 in bug bounties with this simple trick.
Thanks for the #BugBountyTip,@rez0__!pic.twitter.com/z9sPFJTNqV
Prikaži ovu nit -
#OSINT: theHarvester:https://github.com/laramies/theHarvester … Recon-ng:https://bitbucket.org/LaNMaSteR53/recon-ng … FOCA:https://github.com/ElevenPaths/FOCA … Discover:https://github.com/leebaird/discover … Spiderfoot:http://www.spiderfoot.net/ Sn1per:https://github.com/1N3/Sn1per SimplyEmail:https://github.com/SimplySecurity/SimplyEmail …#bugbountytips#redteam#BugBounty -
I earned 2x$350 for my 2 submissions on
@bugcrowd https://bugcrowd.com/luffydragneel . Both were stored XSS with a simple payload "><img src=x onerror=alert(1)>.#ItTakesACrowd#bugbountyPrikaži ovu nit -
Reflected XSS https://link.medium.com/j1cgHbZpq3 https://link.medium.com/q9eeokp2J3 https://link.medium.com/5zdO3gPEw3 https://link.medium.com/vwwEcNQEw3 https://link.medium.com/TH0sHaq2J3 https://link.medium.com/njXx6sq2J3 https://victoni.github.io/bug-hunting-xss-on-cookie-popup-warning … https://gauravnarwani.com/cookie-worth-a-fortune … https://link.medium.com/bx6lLPq2J3 https://link.medium.com/3khM76q2J3
#bugbounty -
Password reset flaw https://link.medium.com/OVvYaKLng3 https://link.medium.com/HZpTPtR2F3 https://link.medium.com/bpYhuYR2F3 https://link.medium.com/5PnwoRS2F3 https://link.medium.com/A67jqlT2F3 https://thezerohack.com/hack-instagram-again … https://ninadmathpati.com/how-i-was-able-to-earn-1000-with-just-10-minutes-of-bug-bounty … https://link.medium.com/MgdJoyY2F3 https://link.medium.com/iRVWjs02F3 https://link.medium.com/roeUih12F3
#bugbounty -
We are going public with our some of the products in our
#bugbounty program@Hacker0x01. ~10 services will go from private -> public. This will be done gradually over the next two months. The program is now online at https://hackerone.com/visma Happy hacking!#togetherwehitharderpic.twitter.com/qUMA1RoTHaPrikaži ovu nit -
Akamai WAF Bypass, worked on a recent
#bugbounty program#xss <x onauxclick=a=alert,a(domain)>click -
How to bypass `unsafe` protocol ? I tried javascript colon, %00 %0a %09, JaVasCriPt, data:text/html but any of them did not work.
#BugBounty ? pic.twitter.com/mVr0gPHwij
-
A source code analyzer built for surfacing features https://github.com/microsoft/ApplicationInspector … Burp Bounty(a quick and simple way, to improve the active and passive scanner) https://github.com/wagiro/BurpBounty … Sublert is a security and reconnaissance tool https://github.com/yassineaboukir/sublert …
#bugbounty,#bugbountytips -
Today, we are launching
#BugBusiness, a series of interviews with#BugBounty hunters. In our first edition, we are discussing logic flaws and@securitytxt with@EdOverflow !
Who would you like to see interviewed next? Leave a comment!
http://go.intigriti.com/bugbusiness-1 -
Visma Bug Bounty Program started using
@Hacker0x01 today: https://hackerone.com/visma , pays: 50$ min.#hackerone#bugbounty -
#day49#bugbounty#learning My day ends at midnight 03:00am Busy making my tool after coming from the office Finally, it's done Just give a list of url's and this tool will do some enum. -Content-Lenght -Status_code -Dom-XXS -Forms -Title DAY ENDS :)
https://github.com/TROUBLE-1/codeza …pic.twitter.com/vSuQPMO8w0
Prikaži ovu nit -
When
#bugbounty hunters try the#dollypartonchallenge...
pic.twitter.com/kwJTlyYHFO
-
Just released a quick tool, wordlistgen, I put together for taking a list of URLs/paths from stdin and parsing components (subdomains, paths, query strings & values) to easily/quickly make contextual content discovery wordlists for
#bugbounty https://github.com/ameenmaali/wordlistgen …Prikaži ovu nit -
Have you guys checked our brand new website “http://mobexler.com ”? I think it’s super cool :-) Thanks to
@BeingSheerazAli and@0ddhawk for their hard work :-)#MobileSecurity#security#bugbounty pic.twitter.com/Mu27sJnHa9
-
@Hacker0x01@jobertabma Just now while doing recon on one of the h1 public program I found a website which is already DEFACED by some hacker. I have submitted the report on h1. You should check it quickly.#bugbounty -
Alham-du-lillah this was my best ever month in BB - Made 11.7k$ .
@synack played a major part in it. I am in love with this community and happy to be a part of it.
#WillAlwaysBeALearner#bugbounty#infosecpic.twitter.com/3gqd97o8sE
-
7-Zip: From Uninitialized Memory to Remote Code Execution
#infosec#pentest#bugbounty#exploitDevhttps://landave.io/2018/05/7-zip-from-uninitialized-memory-to-remote-code-execution/ …
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.