Guilherme Xavier

@ott3rly Can you explain with us how this works? Please!!!

Left codex overnight + half day with /goal on. Still going. Reports ready to review. It still needs human, but I love the idea that its working while I am away

@samu_etc boraaaaaaaaa

Terminando de exportar o vídeo de hoje pessoal, daqui a uns 30 minutos tá no ar Lembrando que sai primeiro no youtube e uns 30 minutos depois eu posto aqui

Day THREE of FIVE days of celebrating our 2 year ARCANUM-VERSARY! @arcanuminfosec 4th Giveaway = FOUR seats to our FLAGSHIP course on modern application assessment and recon: The Bug Hunter's Methodology! 👍 1 Like = 1 Entry! ♻️ 1 Share = 2 Entries! Winners announced 1/21! Syllabus link below 👇

Happy Arcanum-versary! @arcanuminfosec 's 1st giveaway for the week is FOUR seats to our EPIC Advanced Client-Side Hacking course by myself and @xssdoctor ! 👍 1 Like = 1 Entry! ♻️ 1 Share = 2 Entries! Winners announced 1/21! Syllabus for the course below 👇

Dia incrível. Parabéns a todos pelo grande trabalho e organização. Foi mto bom participar....

Where there’s bug bounty, there’s #Bugcrowd. 😉✨ We’re honored to have supported the @BugBountyBr at H2HC in #Brazil, big thanks to @bsysop! Seeing the hacker community come together with such passion was nothing short of amazing (as always). 🥲 Huge thanks to the organizers, sponsors, and everyone who joined—you made it unforgettable! 🎉💚

Se você que aprender Ansible, se liga no vídeo de apenas 12 horas sobre essa ferramenta que todo DevOps, SRE e cia devem conhecer. Essa é somente a primeira parte. youtube.com/watch?v=VOQ2Zn…

@coffinxp7 Wow man its awesome. Can you share new link for me please?

@coffinxp7 Why you grep "SUCCESS" in this onliner?

$$ mass hunting of /.git cat git.txt | grep "SUCCESS" | gf urls | httpx-toolkit -sc -server -cl -path "/.git/" -mc 200 -location -ms "Index of" -probe t.me/lostsec

@lu3ky13 How you Discovery this payload using kxss,?

XSS Payload confirm?.(1) Add to your List by knoxss #bugbounty #bugbountytips

@blau_araujo Meu voto é que um livro seu, com sua didática seria muito bacana. O seu livro de Shell taí pra não me deixa mentir. Meu voto é sim kkk

@InfoSecComm @SaveToNotion #tweet #idor #P1

New Write-up on InfoSec Write-ups publication : "How these IDOR vulnerability earned 5000$ | Hackerone Reddit Bug Bounty" #bugbounty #bugbountywriteup #bugbountytips ift.tt/b7DlVxq

@krishnsec @SaveToNotion #tweet #rubyonrails

LFI in misconfigured rails application `accept: ../../../../../../../../etc/passwd{{` ``` def index render file: "#{Rails.root}/some/file" end ``` #lfi #bugbountytips #bugbounty github.com/mpgn/CVE-2019-…

@infoslack @SaveToNotion #tweet #tips

@thebinarybot @GodfatherOrwa @InfoSecComm @SaveToNotion #tweet #tips #xss #auto

I re-watched @GodfatherOrwa 's talk at @InfoSecComm 's IWCON 2.0 and must say it's super informative. The talk is ~45 minutes long but I have condensed the talk for you to read in 2 minutes.

Agora é a hora do show da @_ibmenezes falando sobre a integração entre o Hashicorp Vault e o Kubernetes! Bora lá pois a aula é ao vivo e começou agora! youtube.com/watch?v=ONXlx_…

@digdimsoufoda Boa. Realmente é complicado essa fita.

E pensar que 17.000,00 reais CLT viram 12.562,08 líquido. O Governo abocanha 26% do seu salário. E tem gente que gosta disso ainda...

@c4ng4c3ir0 Toba

Sugiram formas de levantar uma grana rápida, preciso trocar o escape do carro Só vale resposta errada

1 Review your submitted reports with paid bounties where you found hacking manually. 2 Check the endpoints where you have found the bug. 3 Search burp history for similar keywords. 4 Fingers crossed, you could find a similar issue. #BugBounty #bugbountytip #bugbountytips

Sobre observabilidade, se você não trata TODO alarme que aparece, seu monitoramento vai perder credibilidade. Cada alerta precisa ser tratado de duas formas: - Marcado para reavaliação - Tratado de fato sobre o problema que ele reporta