-
Reflected XSS https://link.medium.com/j1cgHbZpq3 https://link.medium.com/q9eeokp2J3 https://link.medium.com/5zdO3gPEw3 https://link.medium.com/vwwEcNQEw3 https://link.medium.com/TH0sHaq2J3 https://link.medium.com/njXx6sq2J3 https://victoni.github.io/bug-hunting-xss-on-cookie-popup-warning … https://gauravnarwani.com/cookie-worth-a-fortune … https://link.medium.com/bx6lLPq2J3 https://link.medium.com/3khM76q2J3
#bugbounty -
Akamai WAF Bypass, worked on a recent
#bugbounty program#xss <x onauxclick=a=alert,a(domain)>click -
Password reset flaw https://link.medium.com/OVvYaKLng3 https://link.medium.com/HZpTPtR2F3 https://link.medium.com/bpYhuYR2F3 https://link.medium.com/5PnwoRS2F3 https://link.medium.com/A67jqlT2F3 https://thezerohack.com/hack-instagram-again … https://ninadmathpati.com/how-i-was-able-to-earn-1000-with-just-10-minutes-of-bug-bounty … https://link.medium.com/MgdJoyY2F3 https://link.medium.com/iRVWjs02F3 https://link.medium.com/roeUih12F3
#bugbounty -
@bugbountyvillag will be organized at@owaspseasides conference! We encourage local bug bounty hunters to submit their call for nominations. Rumor has it that there are some awesome prizes! Check it out! https://www.bugbountyvillage.com#bugbounty#bugbountyvillage#owaspseasidespic.twitter.com/jOPiz8keiN
-
Some
#bugbounty hunters made over €50.000 in bug bounties with this simple trick.
Thanks for the #BugBountyTip,@rez0__!pic.twitter.com/z9sPFJTNqV
Prikaži ovu nit -
#day49#bugbounty#learning My day ends at midnight 03:00am Busy making my tool after coming from the office Finally, it's done Just give a list of url's and this tool will do some enum. -Content-Lenght -Status_code -Dom-XXS -Forms -Title DAY ENDS :)
https://github.com/TROUBLE-1/codeza …pic.twitter.com/vSuQPMO8w0
Prikaži ovu nit -
CVE-2019-18426 From Persistent-XSS in Whatsapp to Reading from the File System on Mac/Windows with a potential for RCE Bounty: $12,500
#bugbounty https://www.perimeterx.com/tech-blog/2020/whatsapp-fs-read-vuln-disclosure/ … -
-
I earned 2x$350 for my 2 submissions on
@bugcrowd https://bugcrowd.com/luffydragneel . Both were stored XSS with a simple payload "><img src=x onerror=alert(1)>.#ItTakesACrowd#bugbountyPrikaži ovu nit -
Airbnb
#bugbounty https://link.medium.com/eC4n4GTUN3 https://xpoc.pro/oauth-authentication-bypass-on-airbnb-acquisition-using-weird-1-char-open-redirect … https://www.arneswinnen.net/2017/06/authentication-bypass-on-airbnb-via-oauth-tokens-theft … https://buer.haus/2017/03/31/airbnb-web-to-app-phone-notification-idor-to-view-everyones-airbnb-messages/ … https://buer.haus/2017/03/13/airbnb-ruby-on-rails-string-interpolation-led-to-remote-code-execution/ … https://buer.haus/2017/03/09/airbnb-chaining-third-party-open-redirect-into-server-side-request-forgery-ssrf-via-liveperson-chat … https://buer.haus/2017/03/08/airbnb-when-bypassing-json-encoding-xss-filter-waf-csp-and-auditor-turns-into-eight-vulnerabilities …#bugbountytips -
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
#infosec#pentest#bugbounty https://github.com/1N3/IntruderPayloads …pic.twitter.com/GMXxp8hQuT
-
Exploiting File Uploads Pt. 2 – A Tale of a $3k worth RCE.
#infosec#pentest#bugbounty https://anotherhackerblog.com/exploiting-file-uploads-pt-2/ …pic.twitter.com/reevHnmMfy -
Ooooh, wait until you see the giant set of new features I'm adding to Recon++.... It's going to become a tool you want to use every single day.
#BugBounty pic.twitter.com/zILel2Ay21 -
WooT! There is always a way. New
#bugbounty#pentest short write up! Chain the bugs till you get what you want.#bugbountytip#bugbountytips#hacking Some steps were not mentionned. RT, Like and Comments are appreciated. For any pentest work DM me:)
pic.twitter.com/nlAv4pMPhx
Prikaži ovu nit -
That monitoring service in
@shodanhq is just awesome and saves a lot of time :)#BugBounty pic.twitter.com/ku4j7ZBfZQ
-
Fuzzing Web Applications https://medium.com/swlh/fuzzing-web-applications-e786ca4c4bb6 … I Opened My Connection To SSH Attacks, And These Were The Requests I Saw https://link.medium.com/1RNbGlIJE3 Indexing Network Traffic with Moloch and Elastic https://link.medium.com/aGNjnbYbP3
#Cybersecurity#bugbounty -
Leaking support inbox of identity confirmation process between Facebook and political advertisers By
@bazzounkassem Bounty: $5000#bugbounty https://bugreader.com/kbazzoun@137 -
#bugbountytips#bugbounty Guys, what are your thoughts on@gsoc . Is there anyone who made into it? Any suggestions or personal experiences are appreciated. -
Shows of hands, if you’ve got the
#airtel#bugbounty invite and going to be there! -
Into
#bugbounties? Here's how you can take your#bugbounty game to a higher level!!#bugbountytips#bugbounty#bughunting#ethicalhacking#hacking#bugcrowd#hackerone#hacker101#bugbountyhunting#webapplicationtesting#webapplicationsecurity#infosec#CyberSec#cybersecuritypic.twitter.com/ADaW6rShGz
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.