Frey

@r4nk0X @HackenProof I don't know anything about Bug Bounty what is this thing never heard of it

@HackenProof I’ll let @freypwn finish it

Continue the sentence: Bug Bounty isn't just a job, it's…

@albinowax @WebSecAcademy thanks for the labs learn a lot! its always dangerous to give your attacking agent a lot of permission. but I guess more and more companies are relaying on AI now while giving it all the permissions to write and make changes. love to see what future holds.

We've launched a new @WebSecAcademy topic on exploiting AI-powered security scanners! Learn how to use indirect prompt injection to steal data, cause damage & trigger exploit chains!

@freypwn bro it's time for the web3 arc as far as there's still money out there

So what is the best way to deal with this. As time will go more and more AI agents will keep on digging on the programs and there is no stopping of it. As someone said before in the future, it will be like your AI vs My AI

@Random_Robbie The AI protection layer for AI slops seems legit. "Also make no mistakes"

@freypwn triage with a claude subscription telling it to knock it down to real world impact no theory before triage get it lol

@MikeStatico2 wow this is cool! but its a scrapper which downloads the content of a module you already have access to

@freypwn Kindly check this: github.com/bl4d3rvnner7/h…

@4M_0_R3_M1A @k41ik4 All I guess from (1-999) I don't know if there are some hidden ones but you can also test it yourself

@freypwn @k41ik4 it’s full HTB cheatsheet? or it’s not completed yet?

@k41ik4 here you go bro github.com/freypwn/HackTh…

@freypwn yh , pls when u r done with it, let me know. I can't do that at the moment.

@r4nk0X lol what revenge its not like RCE lmao yeah but if it was udemy I will be in trouble but wait isn't HTB also an academy now hmmm but they will just let it slide as they said they only care about RCE onlyyyyyyyyy not any of the business logic issues

@freypwn Revenge arc

@secsystemd those are all just tire 0/1 I have included all of em those are present in the academy Till Tire 4 :) I inform them but they do not cares so in most of the cases they will fix it more make all of these public if they notice the post but I stopped testing

@freypwn Hey, they’ve already made it accessible without needing to unlock a module. Here you can find all the cheatsheets: hackthebox.com/cybersecurity-…

@secsystemd check out my github README github.com/freypwn/HackTh…

@OreoB1scuit Yes weird which makes me this what is it checking in the session well that's another day work lol. Don't wanna go deep in it.

@freypwn I tried using alt accounts, but for some reason when one account hits the limit and I try to generate thumbnails with another account, it fails. However, it can still generate other images. Really weird, super weird.

SSRF labs + youtube walkthrough done GitHub Repo : #server-side-request-forgery-ssrf" target="_blank" rel="nofollow noopener">github.com/freypwn/WebSec… youtube playlist : youtube.com/playlist?list=…

@k41ik4 Yo bro fk nice idea let me download all of em and share them on GitHub or somewhere. But you can also do it in one go. Use intruder and boom

@freypwn Have you shared these cheatsheets publicly?

@OreoB1scuit Use alts accounts! You probably have em lol yeah fixing resolution is a pain in the ass that's why I also give 1280x720 image cropping it myself lol. I will keep an eye on yours yt will take some inspiration 😜

@freypwn Yeah indeed, I’m trying to update all my YouTube video thumbnails, but due to GPT limits I’m only able to create only 4–5 thumbnails per day. Also, explicitly mention in the prompt to use 1280x720 px, otherwise it starts messing things up a bit.

@r4nk0X Great research bro but Any hardware wallet mobile apps on the list?

🧵 you can hold the most private coin on earth. doesn't matter if your wallet app pings 40 servers the second you open it. your IP is out before you generate a key. so I tested 13 web3 wallets on first launch: clean android, no sim apks via gplaydl wifi + vpn pcapdroid per app

@OreoB1scuit Damn wtf these are on another level last day I was scrolling on my feed and see one dudes yt video hit 500k views on basic google dorking. I might start creating these thumbnails but more importantly have to maintain some good quality of the videos and really provide something.

@freypwn brahh get yourself some nice thumbnail go to gpt and give this prompt "get inspired by all these thumbnails and quickly make a thumbnail for my youtube video, make it super interesting that people quickly want to to click on video" with these images

@_tadano__ Yeah crazzy to get banned soon lol

@freypwn Crazyyyy 🔥

@r4nk0X @MrBeast on 100M subs we will collab

@freypwn @MrBeast hire him, he is the best thumbnails guy

@r4nk0X RIP ranko (will miss ya)

Сходил к отоларингологу, так как в правом ухе уже неделю стоит какой-то звон. На снимке обнаружена какая-то бабка с открытым ртом. Эксперты, что это?