Bug Bounty Insights 🪄

367 posts

Bug Bounty Insights 🪄 banner
Bug Bounty Insights 🪄

Bug Bounty Insights 🪄

@bbr_bug

Cybersecurity learning content. AI-assisted, expert-guided. Some posts are hypothetical for engagement. No bounties claimed, no spam.

Katılım Kasım 2022
27 Takip Edilen4.9K Takipçiler
Bug Bounty Insights 🪄
No bug bounty reports to feed Claude? Use disclosed ones. Point Claude at paid, disclosed HackerOne reports, filter High severity or above, build skills from those. Same result. You don't need history. You need the right reports. Full setup: @Aacle/the-claude-code-bug-bounty-run-part-1-of-2-how-a-live-hacking-40k-run-started-with-a-single-804183834a0b?sharedUserId=Aacle" target="_blank" rel="nofollow noopener">medium.com/@Aacle/the-cla…
English
0
0
6
506
Bug Bounty Insights 🪄
If your external recon stops at running Amass and a standard Nmap scan over an ASN, you’re missing 80% of attack surface. Real-world hunting means tracking → analytics tracking IDs, → fuzzing VHosts on naked IPs, → and watching CT log renewal clusters. Efficiency > scale.
Bug Bounty Insights 🪄 tweet media
English
0
1
3
356
Bug Bounty Insights 🪄
Recon pro-tip: Stop scanning just the official corporate GitHub organization. Developers constantly push corporate API keys and secrets to their personal repos by mistake. Track down the public profiles of the devs working there and run gitleaks over them. 🛠️
Bug Bounty Insights 🪄 tweet media
English
0
0
9
647
Bug Bounty Insights 🪄 retweetledi
Abhishek Meena 🏵️
1/ Everyone knows HackTricks and PortSwigger. These are the resources that actually find bugs. Less hyped, higher yield. A short list I keep going back to. 🧵
Abhishek Meena 🏵️ tweet media
English
2
20
70
3.9K
Bug Bounty Insights 🪄
Which of these is currently missing from your recon automation? Drop your stack below. 👇
English
0
0
0
40
Bug Bounty Insights 🪄
4/ Target the Developers, Not Just the Org: Want easy secrets? Use tools like Leakos to pull public repos of the developers working at the company. They often accidentally push corporate API keys to personal repos.
Bug Bounty Insights 🪄 tweet media
English
1
0
0
53
Bug Bounty Insights 🪄
Bug Bounty Tips Stop wasting time blindly brute-forcing millions of subdomains. External recon is about finding what traditional active scanners completely miss. Here are 4 advanced asset discovery tactics the top 1% of bug hunters use to map out hidden attack surfaces: 🧵👇
Bug Bounty Insights 🪄 tweet media
English
1
1
18
539
Bug Bounty Insights 🪄
Found a naked IP redirecting to a main hostname? Don't skip it. Fuzz the Host header directly against that IP: 👇 Easiest way to bypass front-facing WAFs & expose hidden staging endpoints. #bugbounty
Bug Bounty Insights 🪄 tweet media
English
0
1
12
1.1K
Bug Bounty Insights 🪄
Android bug bounty tips APK unpacking Never assume API keys or endpoints are hidden just because they are inside a mobile application. Use apktool to unpack the APK and then use grep (Linux) or ag (Silver Searcher) to find sensitive strings: #bugbountytips
Bug Bounty Insights 🪄 tweet media
English
0
1
9
549
Bug Bounty Insights 🪄 retweetledi
Abhishek Meena 🏵️
Everyone is using Claude Code in their bug hunting. Almost nobody is using it well. 10 habits that separate "I tried AI" from "AI found bugs I'd have missed." Thread 🧵
Abhishek Meena 🏵️ tweet media
English
1
14
54
3.6K
Bug Bounty Insights 🪄 retweetledi
Abhishek Meena 🏵️
Never used Claude Code in your bug bounty? You're leaving the boring half of your own workflow on the table. Step one isn't "find bugs." It's: export your HackerOne reports, feed them to Claude, & tell it to build skills Now it hunts like you, not like a generic pentester.
Abhishek Meena 🏵️ tweet media
English
0
3
22
1.4K
Bug Bounty Insights 🪄
Most people open Claude Code and ask it to find bugs. The hunter who made $40K at a live event did the opposite. He fed it his 2,000+ HackerOne reports first, then said: build skills from these. That self-updating brain is the real edge. @Aacle/the-claude-code-bug-bounty-run-part-1-of-2-how-a-live-hacking-40k-run-started-with-a-single-804183834a0b?sk=a9fc2194080e76dcc4b52acde0aad200" target="_blank" rel="nofollow noopener">medium.com/@Aacle/the-cla…
English
1
1
23
1K
Nick Frichette
Nick Frichette@Frichette_n·
It’s amazing to think there was a time when I considered some vulnerability classes too tedious to manually validate, test, and report. Now I can encode the workflow as a skill, run it against a dataset of endpoints I've gathered, and get back findings.
Nick Frichette tweet media
English
6
2
101
5.8K
gxjo
gxjo@gxjo_dev·
We got Liquid Glass IRCTC before GTA 6 💀
gxjo tweet media
English
19
0
73
3.6K
N$🌟
N$🌟@__nav1n_·
Just reported one of the biggest bugs of my bb carrier - a one-click exploit that lets an attacker discreetly access a victim’s webcam/mobile cam and mic until the attacker ends the session. A crit+ so hoping its not a dupe - or "Known Internally" to avoid paying. #bugbounty 🤞
English
6
0
88
4.8K