Ankush Goel

2.4K posts

Ankush Goel

@0xankush

Sacramento, CA 参加日 Haziran 2012

3K フォロー中389 フォロワー

Ankush Goel@0xankush·22 Şub

@RomeProtocol compromised. validators, internal access, sensitive data. #Web3 #smartcontracts #bugbounty

Italiano

Ankush Goel@0xankush·5 Şub

Khalani network compromised. Check out github.com/mickeymou3e/kh… for their private data. Refused bounty after fixing the issue. #Web3 #khalaninetwork #CryptoNews #BugBounty #katana #SmartContracts

English

Ankush Goel@0xankush·17 Oca

@khalani_network compromised. check out github.com/mickeymou3e/kh… #CyberSecurity #blockchain #crypto

English

Ankush Goel@0xankush·21 Ağu

@iotex_io what is your discord invite link?

English

Ankush Goel がリツイート

Clint Gibler@clintgibler·20 Ağu

Slides for 3 cloud security talks from Hacker Summer Camp 1️⃣ Kicking in the Door to the Cloud: Exploiting Cloud Provider Vulnerabilities for Initial Access - By @Frichette_n docs.google.com/presentation/d… 2️⃣ Exploiting Common Vulnerabilities in AWS environments - By @sethsec docs.google.com/presentation/d… 3️⃣ Cloud Tripwires - By @jenkohwong github.com/edleft/present…

English

134

Ankush Goel がリツイート

HITBSecConf@HITBSecConf·7 Haz

#HITB2024BKK Secret Scanning in Open Source at Scale (in-depth) - Danish Tariq & Hassan Khan Yusufzai - conference.hitb.org/hitbsecconf202…

English

1.1K

Ankush Goel がリツイート

STÖK ✌️@stokfredrik·21 Eki

SCANNING AT SCALE (masscan, nmap, axiom, recon.dev) youtu.be/7ogiwKaIvxw #CyberSecurity #bugbounty #infosec

YouTube

English

183

Ankush Goel@0xankush·6 Şub

@arshadkazmi42 @Hacker0x01 Most companies won’t even pay to me or pay like $100-$300.

English

Ankush Goel@0xankush·6 Şub

@arshadkazmi42 @Hacker0x01 How do you negotiate with companies? Do you just report it to them and am then ask for bounty? Or first negotiate the bounty amount and then disclose?

English

162

Arshad Kazmi@arshadkazmi42·2 Şub

Yay, I was awarded a $3,000 bounty on @Hacker0x01! hackerone.com/codermak #TogetherWeHitHarder hub.docker.com is a gold mine of exposed credentials. Methodology: Checkout the thread.

Arshad Kazmi@arshadkazmi42

🕵️‍♂️ Inspired by @Godfatherorwa's GitHub recon methodology, I dug into Docker Hub layers & struck gold! 🪙 Bug bounty hunters, this is a treasure trove of exposed employee credentials! 🔍💰 (1/3)

English

148

14.5K

Ankush Goel がリツイート

Clint Gibler@clintgibler·1 Şub

😈 How to protect Evilginx using Cloudflare and HTML Obfuscation * Cloudflare's 'Under Attack Mode' * Geo-block connections outside of you/target * Use another server as a redirector * Use meta refresh and HTML obfuscation By @jackbutton_ #redteam jackphilipbutton.com/post/how-to-pr…

English

6.7K

Ankush Goel がリツイート

mgeeky | Mariusz Banach@mariuszbit·16 Ara

🔥 Having some hard time with Initial Access during your gigs? Join the February☢️Modern Initial Access and Evasion Tactics☢️ training round and dive deep into lesser known arcanes of common file vectors! Class trusted by many experienced fellow RTerz! binary-offensive.com/initial-access…

Sean 🏴󠁧󠁢󠁳󠁣󠁴󠁿@au5_mate

Just finished up @mariuszbit's initial access course. Despite being well-versed in the topic beforehand, I learned some awesome new tips and tricks, and gained some further knowledge of concepts that I just hadn't reached the same depth of understanding of before the course. Would definitely recommend it for anyone looking to upskill or reinforce their knowledge of initial access TTPs, lots for both Red & Blue teamers to take away from it!

English

6.9K

Ankush Goel がリツイート

Het Mehta@hetmehtaa·6 Kas

GCP Penetration Testing Notes📝: Part 1: 0xd4y.com/2022/10/01/GCP… Part 2: 0xd4y.com/2022/10/24/GCP… #TheSecureEdge #Infosec #cloud #hacking #gcp #Google

English

237

616

Ankush Goel がリツイート

Dark Web Intelligence@DailyDarkWeb·17 May

DetectDee - Hunt down social media accounts by username, email or phone across social networks. github.com/piaolin/Detect… #cybersecurity #OSINT

GIF

English

307

1.3K

326K

Ankush Goel がリツイート

Kubernetes with Naveen 🇮🇳@NaveenS16·23 Ağu

How Secrets Leak in CI/CD Pipelines Secrets leak in CI/CD pipelines routinely. CI/CD workflows typically require developers to provide valid credentials for the 3rd party resources their pipeline interacts with. 👀trufflesecurity.com/blog/secrets-l… #DevOps #Kubernetes #CICD

English

150

13.5K

Ankush Goel がリツイート

Angry Tom@AngryTomtweets·26 Tem

15 powerful AI tools to save hours of work:

English

337

1.2K

173.7K

Ankush Goel@0xankush·8 Ağu

@LocaliQ i have found a critical security vulnerability. Please reach out to me asap.

English

Ankush Goel@0xankush·2 Ağu

@Gannett do you not care about your data and its security? I found a critical security bug. Please reach out to me

English

Ankush Goel@0xankush·27 Tem

@mainmatter do you have a bug bounty program in place? i have discovered a critical bug. Please reach out to me asap

English

Ankush Goel@0xankush·26 Tem

@Gannett do you have a bug bounty program in place? I found a critical security bug and would like to report it.

English

Ankush Goel@0xankush·26 Tem

@getpantheon do you have a bug bounty program in place? I found a critical bug

English

ディスカバー

@RomeProtocol @khalani_network @iotex_io @Frichette_n @sethsec @jenkohwong @arshadkazmi42 @Hacker0x01