noobSecurity

1.2K posts

noobSecurity

@noobsec_org

One mistake can make you crazy! mailto:[email protected]

/dev/null Katılım Mayıs 2018

216 Takip Edilen1.5K Takipçiler

Sabitlenmiş Tweet

noobSecurity@noobsec_org·16 Şub

Here is write-up. noobsec.org/project/2020-0… #bugbounty #facebook #whitehat #bugbountytips

dw1@dwisiswant0

Open-redirect (Bypass Linkshim) on Facebook. 🙏 #BugBounty #ItTakesACrowd

English

135

noobSecurity@noobsec_org·2 Eyl

@m359ah Bam bum bam bum

English

483

Hossam A. Mesbah 🇵🇸@m359ah·1 Eyl

1. Register an account using admin@gmail.com 2. Navigate to change email 3. Change it to admin@target.com 4. Boom 💥 become the administrator and infrastructure takeover Rewarded $$$$$ #fuckbountytips

English

288

18K

noobSecurity retweetledi

IDSECCONF@idsecconf·2 Mar

Innalillahi wa inna ilaihi rojiun telah berpulang ke-Rahmatullah salah satu aktivis cyber security indonesia yang merupakan salah satu komite #IDSECCONF, Randi Malikul Mulki (Cybertank) hari ini. Semoga diampuni segala dosanya dan diterima amal ibadahnya, Aamiin 🤲🏻

Indonesia

1.9K

noobSecurity@noobsec_org·20 Tem

@imspicynoodles @pwn0sec He is a scammer 100%

English

Chi Tran@imspicynoodles·20 Tem

@pwn0sec what say you?

Janggggg@testanull

I don’t really care much about the credit story, but this guy is trying to clone my blog post and claim all of credits in the org post. I have no idea about their purpose but be careful while working with them

English

noobSecurity@noobsec_org·3 Tem

@akita_zen Thank you and good luck for your next journey!!! Happy to know you 🔥

English

445

noobSecurity retweetledi

dw1@dwisiswant0·25 Ara

Did you know that you can use ngrok for detecting out-of-band requests? I just built ngocok, yet another Burp Collaborator for free. It effortlessly wraps ngrok tunnels and captures incoming requests seamlessly. 👉 github.com/dwisiswant0/ng… #bugbounty #bugbountytip #bugbountytips

English

17.3K

noobSecurity retweetledi

YoKo Kho@YoKoAcc·4 Kas

The Prophet (ﷺ) said, "A believer to another believer is like a building whose different parts enforce each other." The Prophet (ﷺ) then clasped his hands with the fingers interlaced. (Shohih Al-Bukhari No. 6026).

Català

1.7K

noobSecurity retweetledi

dw1@dwisiswant0·6 Eki

It’s publicly released now 👉 github.com/kitabisa/teler…

dw1@dwisiswant0

Check out the teler WAF proxy (soon) demo vid below where it's slaying DVWA over teler-proxy. No more hassle with complex configurations! 🤡

English

685

noobSecurity retweetledi

bugcrowd@Bugcrowd·7 Ara

noobsec: @noobsec_org mrdoel mtdta noobsec rugb

Slovenščina

noobSecurity retweetledi

Nuclei by ProjectDiscovery@pdnuclei·7 Ara

New - Grafana unauthorized arbitrary file read Template: github.com/projectdiscove… by z0ne, dhiyaneshDk Reference: nosec.org/home/detail/49… #bugbounty #pentest #appsec

English

177

544

noobSecurity retweetledi

IDSECCONF@idsecconf·3 Ara

Dear ID-Hackers, pendaftaran ditutup hari ini jadi masih bisa registrasi di 2021.idsecconf.org/p/registrasi.h…, bagi yang sudah daftar, sudah bayar dan belum terima link zoom segera kontak @azisaz atau email ke viska[at]idsecconf.org atau WA ke: +62-851-6253-1337, see you \o/

Indonesia

noobSecurity@noobsec_org·1 Ara

Leaderboard p1 and p2 on @Bugcrowd

English

noobSecurity@noobsec_org·7 Eki

@bishal0x01 @Bugcrowd thank youu!🤩🤩🤩🤩

English

Bishal Shrestha@bishal0x01·7 Eki

@noobsec_org @Bugcrowd congratulations!🎉

English

noobSecurity@noobsec_org·7 Eki

After several years of hunting in @Bugcrowd, now we reach 100k

English

296

noobSecurity retweetledi

dw1@dwisiswant0·9 Ağu

Now #apkleaks v2.6.0 released! - GitHub Access Token - Discord BOT Token - JSON Web Token - MAC Address - CTF Flags: — DEF CON — HackerOne — TryHackMe — HackTheBox

dw1@dwisiswant0

#apkleaks release v2.5.0! Added patterns: FB Secret Key & ClientID, Twitter ClientID & Secret Key, Artifactory API Token & Pass, Authorization Basic & Bearer, Basic Auth Credentials, Cloudinary Basic Auth, Mailto, Vault Token. - more at... github.com/dwisiswant0/ap… #bugbountytips

English

noobSecurity retweetledi

dw1@dwisiswant0·2 Ağu

Got 1 new advisory, CVE-2021-37216. twcert.org.tw/tw/cp-132-4962…

English

noobSecurity retweetledi

dw1@dwisiswant0·15 Tem

ppfuzz v1 released! Now, if it's indeed vulnerable: it'll fingerprinting the script gadgets used and then display additional payload info that could potentially escalate its impact to XSS, bypass/cookie injection. Bump now! — github.com/dwisiswant0/pp… #bugbountytips

English

134

noobSecurity retweetledi

dw1@dwisiswant0·4 Tem

Been learned for ~2 weeks, this is my first #Rust program: a fast tool to scan prototype pollution vulnerability. github.com/dwisiswant0/pp… Thanks to @R0X4R for the tip! #infosec #bugbounty #bugbountytips

English

311

noobSecurity@noobsec_org·20 May

@KAshhadali10 @Bugcrowd IDOR, XSS, PRiV ESC

Svenska