Awazez

907 posts

Awazez

@awazez

Bug bounty hunter ǀ Chess Player

Caen, France Katılım Ekim 2015

454 Takip Edilen225 Takipçiler

Awazez@awazez·16 Haz

@Shabosec @Apple @Olamdeen @sachin_pandey98 @ladebw @GodfatherOrwa @badcrack3r @fattselimi @thedawgyg @XHackerx007 Congratulations !

English

348

Koupon@Shabosec·16 Haz

Yandex Dork is insane 🔥🔥🔥 My Report got Resolved @Apple Can’t wait to see my name in Hall of Fame 🔥🔥🔥 Thank you so much @Apple Big up @Olamdeen @sachin_pandey98 @ladebw @GodfatherOrwa @badcrack3r @fattselimi @thedawgyg @XHackerx007 Your methodology help a lot 🔥

English

155

Awazez@awazez·16 Haz

@0xb4dg0d Nice one !

English

121

b4dg0d@0xb4dg0d·15 Haz

Finally! Waiting for the payout is always the hardest part.

English

170

6.8K

Awazez@awazez·16 Haz

@R1s666 @yeswehack Nice one !

English

106

R1s@R1s666·15 Haz

Just got a reward for a vulnerability submitted on @yeswehack -- Cross-site Scripting (XSS) - DOM (CWE-79). If you control the scheme of location.href = param, send javascript:alert(document.domain)//.

English

146

Awazez@awazez·11 Haz

I just got my first invitation to a private bug bounty program! :)

English

Awazez@awazez·6 Haz

@N0ur2dd1n2 Congrats ! Is that a polyglot ?

English

NoZe 🏳️@N0ur2dd1n2·5 Haz

I got the First Stored XSS #hackthebox #pentesting #hacking #infosec #CPTS #OSCP #hack #ippsec #xss

English

2.4K

Awazez@awazez·6 Haz

Woooh what a write up !

Medusa@medusa_0xf

New Blog! Exploiting XSS with Javascript/JPEG polyglot. #xss #infosec #javascript @Medusa0xf/exploiting-xss-with-javascript-jpeg-polyglot-4cff06f8201a" target="_blank" rel="nofollow noopener">medium.com/@Medusa0xf/exp…

English

125

Awazez@awazez·5 Haz

@lukashanren1 Junior maybe, newbie certainly not !

English

Lucas Futures@lukashanren1·5 Haz

I really enjoy chatting with others about bug bounty experiences and discussions, and I’m also very grateful to those who are willing to talk with me. Because I’m still a newbie when it comes to bug bounty.

English

134

Awazez@awazez·4 Haz

@demicannon001 @only01Essential Good game !

English

demicannon001@demicannon001·3 Haz

First bug bounty paid out. On to the next! 🏃🏿🏃🏿🏃🏿 Big thanks to @only01Essential for teaching, mentoring, and giving me tips on how to approach bug bounties.

English

150

8.4K

Awazez@awazez·2 Haz

@syaedowais I commented it. Thanks for the advice !

English

Owais@syaedowais·2 Haz

linkedin.com/posts/cyber-ar…

ZXX

274

Awazez@awazez·2 Haz

Have you finished this path on @hackthebox_eu ? I'm at 19.4%.

English

116

Awazez@awazez·1 Haz

@whoareme33 Good game !

English

Nick Mykhailyshyn 🇺🇦@whoareme33·1 Haz

I earned a $22,500 bounty from Airbnb using a custom Opus 4.7 workflow built with MCP and Skills. It feels like bug bounty hunting has changed forever

English

1.1K

63.7K

Awazez@awazez·1 Haz

Let's give a try !

Pashov Audit Group@PashovAuditGrp

We are doing some things that we have never done before at Pashov Audit Group. The times are changing, technologies are changing, so we are changing as well. For our efforts, we need a lot of experts doing a lot of work. We must work with 100+ people in just first week of June🫡

English

129

Awazez@awazez·31 May

@MiningTk Je penses que l'on pourra tout payer en Bitcoin un jour comme à Lugano. C'est juste une question de temps.

Français

Monsieur-TK@MiningTk·31 May

Vous pensez qu'un moment, la crypto va finir par s'installer dans le paysage comme la bourse / tradFi ? Dans le sens où investir dans le domaine ne sera plus considéré comme un truc de gambling / scams / arnaques Ou alors, cela restera toujours un domaine marginal ?

Français

Awazez@awazez·31 May

@MiningTk Zcash. Je vois bien les private crypto currency peser dans la balance sérieusement prochainement.

Français

507

Monsieur-TK@MiningTk·31 May

Si je vous donne 1000$ à investir maintenant, d'un seul coup sûr Bitcoin ou Ethereum : vous investissez sur quoi et surtout, pourquoi ? 🤔 PS : il y aura peut-être bientôt un concours, donc je prends les devants 👀

Français

122

18.5K

Awazez@awazez·31 May

The simpler the better.

soloboy@alial1shan

A simple OTP bypass resulted in a €2,000 bounty. 1. Request some OTP codes. 2. Test one of them randomly. 3. If accepted, try to bypass the OTP request limit. How the exploit works: enter victim's email, request 99999 OTP codes, then submit any random code like 77777 and log in.

English

205

Awazez@awazez·28 May

Received and put on my Mac ! Thanks @PentesterLab

English

4.8K

Awazez@awazez·28 May

@Shabosec @badcracker What’s next ?

English

542

Koupon@Shabosec·28 May

I’m in love with Next.js 🔥 Tips: I found the admin portal using Yandex dork: Rhost:*.target.* Then I look up the js which they use Next.js look into main,chunk and search for api endpoint which I found /v2/admin/dashboard/Contacts also you can use @badcracker api extension