bladee

I'm also got swag by @HackenProof Glad to have an opportunity to participate in such a program, making the internet and banking system more safer to use. Thanks, @0day_exploit_ , @d0rsky, @dkrtkkh & @DmytroMatviiv #bughunter #infosec #hackers #hackenproof

Thanks @0day_exploit_ Found critical misconfiguration to whole 0 click ATO #BugBounty #bugbountytips #infosecurity

Top JS Bugs Thread 🧵:👇 Here is how to find Exposed : 1) collect all the js endpoint by lazyegg github.com/schooldropout1… - using automatic tools find sensitive data chromewebstore.google.com/detail/endpoin… #BugBounty #bugbountytips #infosec

@0day_exploit_ Thanks very usefull 😍

Top AWS S3 Bugs Thread 🧵:👇 Here is how to find Exposed 1) Misconfigured AWS S3 buckets that may expose sensitive data we can manually check by %c0 on the XML error page or Wappalyzer AWS technology #BugBounty #bugbountytips #infosec

@0day_exploit_ Thanks a lot sir gyes check this out @sudhanshur705 ,@bishal0x01 @hrithikbot @ThisIsDK999 @SilverPoision

Top Browser Extensions Thread 🧵:👇 Here is 30 Best extension used for attackers: 1) nuclei-ai-extension -> Browser Extension for Rapid Nuclei Template Generation github.com/projectdiscove… #BugBounty #bugbountytips #infosec

Day 8 of COESIS Knowledge Quest. Today I learned about how to do more advance way of bug bounty presented by @0xLupin In @NahamSec 2022 #30dayslearningchallenge #COESIS #COESISKnowledgeQuestFuzzing

Day 6 of COESIS Knowledge Quest. Today I learned about how api testing can be taken in next level attack by @pauloasilva_com @SecurityBSides #30dayslearningchallenge #COESIS #COESISKnowledgeQuestFuzzing

Day 5 of COESIS Knowledge Quest. Today I learned more about Fuzzing the Web for Mysterious Vulnerabilities by Andre Baptista It's mainly dependent on regex #30dayslearningchallenge #COESIS #COESISKnowledgeQuestFuzzing

Day 4 of COESIS Knowledge Quest. Today I learned more about more new attack type and methodology by @GodfatherOrwa #30dayslearningchallenge #COESIS #COESISKnowledgeQuest

Day 2 of COESIS Knowledge Quest. Today I applied xss on different websites help and support using bxsshunt and successful exploited 3 websites payload used javascript:{ alert`0` } 1'"><img/src/onerror=.1|alert``> #bugbountytips #30dayslearningchallenge #COESIS #COESISKnowledge

Day 1 of COESIS Knowledge Quest. Today I learned about the bug xss and more advance topic of it's like dom base xss system on which we learned about how source and sink can be used to exploit it by integrity website and video #30dayslearningchallenge #COESIS #COESISKnowledge

What exactly is the CSP ?? Thread 🧵:👇 1) CSP is being used to prevent attacks such as XSS, that is not it's only purpose. It also protects against data injection attacks for example. Can be devastating. #BugBounty #bugbountytips #infosec #developers

@0day_exploit_ check this out @GokTest @chux13786509 @0xcm1k3 @tarun_sec @0x_rood @vinodsparrow

Top JWT Attacks 😀 Thread 🧵:👇 Here is how to find JWT issues: 1) JWT or JSON web tokens are widely used these days for authorization purposes so it pays off to learn about what JWT’s entail and how we can abuse them. #BugBounty #bugbountytips #infosec

@0day_exploit_ You are on next zone sir great work keep on growing 😍😍😍😍😍 #hacktheworld

Let's start with Aerospace Cybersecurity: Satellite Hacking Thread 🧵:👇 Here is the basic topic you can follow to learn it : 1) We need to understand about DVB and vulnerabilities like DNS spoofing and TCP hijacking, attacking GRE Packets #infosec #Hacking #satellite

@0day_exploit_ @JerryShah33 @0_0eth0 @ome_mishra after all big followers come with haters bro no problem you doing great 🥰😍

Top Microsoft IIS Thread 🧵:👇 Here is how to find IIS bugs 1) Collect a huge number of targets, subdomains, and ports and even brutforceing the targets 2) Short the IIS services nuclei-templates/fuzzing/iis-shortname.yaml #BugBounty #bugbountytips #infosec @GodfatherOrwa

@0day_exploit_ @VladPandichi @VagettaxX @SaveToNotion #Thread #bugbounty

Top Registration bug Thread 🧵:👇 Here is how to find an account takeover : 1) Duplicate registration overwrite existing user by using specific keywords and even work with bigger characters {"email":["v@g.com","a@g.com"]} , %20 , %00 #BugBounty #bugbountytips #infosec #BUGS