Biswajeet Ray🇮🇳

Finally after lot's of hardwork and failure. Got Hall Of Fame from Microsoft. 🤩 #bugbounty #infosec #cybersecurity #recon #microsoft #security #bugbountytips #acknowledgment #osint #msrc #websecurity #pentesting #linux #vulnerability #india #bug #flaws @microsoft

@bizsprite @Uber_Support Another clown behaviour by Uber

@Uber_Support what crap is this. You donnot allow cancellation unless I accept to pay a fee. WHY WILL I PAY ANTTHING WHEN YOUR DRIVER REFUSED THE RIDE UNLESS I CANCELLED ABD PAID CASH.

Hi @assampolice @HardiSpeaks sir Kindly suspend this fake account using DGP Assam name. instagram.com/dgpassampolice…

Good initiative by Rekha Gupta I hope this is implemented well on ground. And I hope her govt is actually able to prevent every tree from being cut.

@Meta @metabugbounty @facebook

. * . 🪐 * . * 🌀 * . . * 🌔 * . * . * . 🌍 * * . * . ☄️ * . * 🛸 . * . . ☀️ * . * 🛰 . * ✨ * .

Compliance keeps you out of trouble; adversaries keep you out of business. -Biswajeet Ray

If you wanna stay on top of cybersecurity news, you need these sites in your RSS reader BleepingComputer DarkReading RecordedFuture - The Record SecurityWeek DataBreachedNet TheRegister HackerNews (hit or miss) KrebsOnSecurity 404Media ArsTechnica TechDirt

"Jung ka ek hi usul hai, vo hai jeet. May I assure you that we shall accomplish the same at all costs." - General Bipin Rawat

@yandex I reported multiple vulnerabilities but still no response yet even you blocked my Yandex mail this is very disheartening to see unprofessional behaviour by your team.

Top google Dorking Thread 🧵:👇 Here is how to find sensitive data issues: 1) publicly exposed documents :- site:target.com ext:doc | ext:docx | ext:odt | ext:rtf | ext:sxw | ext:psw | ext:ppt | ext:pptx | ext:pps | ext:csv #BugBounty #bugbountytips #infosec

Just came across this clean browser-based bug bounty toolkit 👀 hackermd-toolkit.netlify.app It’s basically a well-organized collection of recon + vuln testing commands you can copy-paste instantly — no setup, no clutter. Good for: • Quick recon workflows • Remembering tool chains • Speeding up hunting sessions Not a scanner. Not automation. Just a solid command hub 🧠⚡ Use it smart — not blindly. Real bugs still need real thinking. 💀 #BugBounty #CyberSecurity #Infosec

Bug Bounty Full Course: Recon, Dorking, XSS/LFI, CORS & Open Redirect on Live Targets | YesWeHack ✅ Subdomain Recon ✅ Google Dorking ✅ XSS & LFI ✅ CORS Misconfiguration ✅ Open Redirect Mass Hunt Perfect for beginners👇 youtu.be/wcZxhXel7jQ

⚡𝗕𝗿𝘂𝘁𝗗𝗿𝗼𝗶𝗱 𝟮.𝟬 - 𝗔𝗻𝗱𝗿𝗼𝗶𝗱 𝗦𝘁𝘂𝗱𝗶𝗼 𝗣𝗲𝗻𝘁𝗲𝘀𝘁 𝗔𝘂𝘁𝗼𝗺𝗮𝘁𝗼𝗿: 𝗦𝘁𝗿𝗲𝗮𝗺𝗹𝗶𝗻𝗲 𝗺𝗼𝗯𝗶𝗹𝗲 𝗽𝗲𝗻𝘁𝗲𝘀𝘁𝗶𝗻𝗴 𝘄𝗶𝘁𝗵 𝗮𝘂𝘁𝗼𝗺𝗮𝘁𝗲𝗱 𝗲𝗺𝘂𝗹𝗮𝘁𝗼𝗿 𝗿𝗼𝗼𝘁𝗶𝗻𝗴, 𝗙𝗿𝗶𝗱𝗮, 𝗮𝗻𝗱 𝗕𝘂𝗿𝗽 𝗦𝘂𝗶𝘁𝗲 𝗶𝗻𝘁𝗲𝗴𝗿𝗮𝘁𝗶𝗼𝗻. ✅github.com/Brut-Security/… ⭐𝗗𝗼𝗻'𝘁 𝗳𝗼𝗿𝗴𝗲𝘁 𝘁𝗼 𝗹𝗲𝗮𝘃𝗲 𝗮 𝘀𝘁𝗮𝗿 :) ✅ Join Telegram For More Content: t.me/brutsecurity ---------------------------------------------------------- ⭐ Found this helpful? Like, Share & Level Up Your Skills! #CyberSecurity #BugBounty #EthicalHacking #Infosec #BrutSecurity #Android #Pentesting

New Free Course is Now Live!🎬 Bug Bounty Full Course: Recon, Dorking, XSS/LFI, CORS & Open Redirect on Live Targets | YesWeHack ✅ Subdomain Recon ✅ Google Dorking ✅ XSS & LFI ✅ CORS Misconfiguration ✅ Open Redirect Mass Hunt Perfect for beginn👇 youtu.be/wcZxhXel7jQ

Hey @metabugbounty I reported a high severity vulnerability approx one month ago but still no response yet.

Nothing is more beautiful than this.

Not every reaction is instant some are delayed kinetic responses that hit harder. ~Biswajeet Ray

@blahkayyyy @usetraceix @Ferrari You can figure it out from the screenshot, just use intitle and site. E.g. intitle:"Confidential - Internal" site:blah

🧠 X Advanced Recon Methodology — v5 by @TheMsterDoctor1 ⸻ ⚡ PHASE 0 — Target Expansion (OWN THE ATTACK SURFACE) 🔥 Expand Beyond Domains (CRITICAL) # ASN → IP → Subdomains → Assets amass intel -org "Starbucks" -o intel.txt amass enum -passive -df domains.txt -o amass-passive.txt # Reverse IP expansion cat domains.txt | dnsx -resp-only -silent | sort -u > ips.txt cat ips.txt | mapcidr -silent > cidr.txt ⸻ 🛰 PHASE 1 — Multi-Source URL Intelligence (NEXT LEVEL) 🔥 Add MORE sources (this is where most hunters lose) # Combine EVERYTHING gau --threads 50 --subs domains.txt > gau.txt waybackurls < domains.txt > wayback.txt katana -list domains.txt -silent -jc -kf all -o katana.txt # AlienVault OTX (YOU already know 🔥) for domain in $(cat domains.txt); do curl -s "otx.alienvault.com/api/v1/indicat…" \ | jq -r '.url_list[].url' >> otx.txt done # GitHub leak endpoints github-subdomains -d starbucks.com -t YOUR_TOKEN > github.txt ⸻ 🧬 PHASE 2 — Deep Endpoint & Parameter Discovery 🔥 Extract parameters like a machine cat *.txt | sort -u > all-urls.txt # Extract parameters cat all-urls.txt | unfurl keys | sort -u > params.txt # Find high-value endpoints grep -Ei 'admin|api|internal|private|debug|test|dev' all-urls.txt > juicy.txt ⸻ ⚡ PHASE 3 — Smart Sensitive File Detection (UPGRADED) 🔥 Advanced patterns (not basic anymore) grep -Ei '\.(zip|rar|sql|env|conf|gz|bak|db|tar|7z|log|yml|json|pem|key|crt)(\?|$|")' all-urls.txt > sensitive.txt 🔥 Add misconfig endpoints grep -Ei '/\.env|/config|/settings|/backup|/dump|/\.git|/\.aws' all-urls.txt >> sensitive.txt ⸻ 🎯 PHASE 4 — LIVE VALIDATION (INTELLIGENT) httpx -l sensitive.txt \ -mc 200,302,403 \ -title -tech-detect -server \ -content-length \ -silent > live-sensitive.txt ⸻ 🧠 PHASE 5 — PRIORITY SCORING (THIS IS WHAT MAKES YOU ELITE) cat live-sensitive.txt | while read url; do score=0 [[ "$url" == *".env"* ]] && score=$((score+10)) [[ "$url" == *".zip"* ]] && score=$((score+8)) [[ "$url" == *"backup"* ]] && score=$((score+7)) [[ "$url" == *"config"* ]] && score=$((score+6)) [[ "$url" == *"admin"* ]] && score=$((score+5)) echo "$score | $url" done | sort -nr > prioritized.txt ⸻ 🚀 PHASE 6 — AUTOMATED DOWNLOAD + ANALYSIS mkdir loot # Download everything juicy cat prioritized.txt | head -50 | cut -d'|' -f2 | xargs -n1 -P20 wget -q -P loot/ # Extract archives automatically for f in loot/*.zip; do unzip -o "$f" -d loot/extracted/; done ⸻ 🔍 PHASE 7 — SECRET HUNTING (ADVANCED) # Scan extracted + JS files gitleaks detect --source loot/ -v > secrets.txt # Custom regex scan (your engine) grep -RniE "AKIA|AIza|sk_live|ghp_|PRIVATE KEY" loot/ >> secrets.txt ⸻ 💣 PHASE 8 — JS RECON + HIDDEN ENDPOINTS # Extract JS files grep "\.js" all-urls.txt | sort -u > js.txt # Crawl JS deeply katana -list js.txt -silent -jc -o js-endpoints.txt # Find secrets inside JS cat js.txt | xargs -n1 -P20 curl -s | grep -E "api_key|token|secret" ⸻ ⚡ PHASE 9 — AUTOMATED VULNERABILITY TRIGGERS # IDOR detection candidates grep "=" all-urls.txt | grep -Ei "id=|user=|account=" > idor.txt # Test automatically (basic fuzz) cat idor.txt | qsreplace 1 | httpx -silent -mc 200 > idor-test.txt ⸻ 🛡 PHASE 10 — NUCLEI (SMART MODE) nuclei -l live-sensitive.txt \ -t exposures/ \ -t misconfiguration/ \ -t cves/ \ -severity critical,high \ -o nuclei.txt ⸻ 🤖 PHASE 11 — AI-POWERED ANALYSIS (YOUR EDGE) This is where you DESTROY competition. # ai_analyzer.py import openai def analyze_finding(url): prompt = f""" Analyze this URL for bug bounty impact: {url} Identify: - Vulnerability type - Exploitability - Impact level - Suggested attack chain """ # send to GPT / local LLM ⸻ 🔥 FULL AUTO PIPELINE (REAL HUNTER MODE) cat domains.txt \ | gau \ | tee gau.txt \ | httpx -mc 200 -silent \ | tee live.txt \ | grep -Ei '\.env|\.zip|backup|config' \ | anew final-sensitive.txt

Attack surface.... attack surface everywhere