Thehidden13

Reversing for dummies - x86 assembly and C code (Beginner/ADHD friendly) 0x44.cc/reversing/2021… #c #reverse #asm

youtu.be/qpvPArc7Za0 Check out my new video on Penligent AI, a next-gen tool built for pentesting and bug hunting. I walk through the features, real use cases, and how it can help speed up your workflow. special thanks to cofounder @TuringNow for building something this solid and giving me the opportunity to explore it..

@InverseFinance Good evening, I would like to speak with the person responsible for the bug bounty program at your company, Immunefi, because I found a bug there and I'm unable to report it. How do I do that?

To fix interest rates, we had to reinvent the mechanism of debt. We replaced variable interest rates with a utility token: DOLA Borrowing Rights ($DBR). The math is absolute: 1 DBR = The right to borrow 1 DOLA for 1 year. If you hold the token, you own the rate. If you burn the token, you service the loan. No surprises.

@InverseFinance Good evening, I would like to speak with the person responsible for the bug bounty program at your company, Immunefi, because I found a bug there and I'm unable to report it. How do I do that?

Later this week, we will be releasing DumpBrowserSecrets which will extract passwords, tokens, cookies and more from Chrome, Edge, Brave, Opera, Opera GX, Vivaldi, and Firefox with one command. This will be an improved version of DumpChromeSecrets. github.com/Maldev-Academy…

🚨 CVE-2025-68461: XSS flaw in Roundcube Webmail (CVSS 7.2) via SVG animate tag. I've built a detection script here: github.com/rxerium/CVE-20… Patches are available - update to updated versions 1.6.12 and 1.5.12: roundcube.net/news/2025/12/1…

Exciting news for students enrolled in the malware development course. Later this week, all module code will be available for download in Rust. In total, more than 120 projects have been converted from C to Rust. This has been an ongoing project for months and would not be possible without @5mukx.

instead use this way~ cat domains.txt | httpx-toolkit -silent -sc -td | grep -Ei "Next\.js|React" cat domains.txt | httpx-toolkit -silent -sc -td | grep -Ei "Next\.js|React" | awk '{print $1}' | nuclei -t .local/nuclei-templates/http/cves/2025/CVE-2025-55182.yaml -silent after this use manual payloads+bypass methods or simply use extension..

@bigbluebutton Good afternoon, I would like to express my opinion regarding the bug bounty reward program you have at yeswehacker.com. The screening process is terrible and immature; they invent obstacles to avoid accepting genuine errors. If you re-evaluate this,

@yeswehack @samwcyo @shubhamxshah @saxrag @foobar_ramsay After today, your reputation has dropped significantly. I expected a top-tier platform with credibility and trustworthiness, but I don't think you are that.

@yeswehack @samwcyo @shubhamxshah @saxrag @foobar_ramsay I participated in the bug bounty program called bigbluebutton. I proved everything the screening asked for, but the screening is so bad and immature, it closed it as invalid. I spoke with your support and they didn't do the slightest thing. I will never recommend this platform to

@yeswehack @samwcyo @shubhamxshah @saxrag @foobar_ramsay The screening process is slow, they'll invent all sorts of excuses to avoid paying a bug bounty; I don't recommend anyone join this platform.

Our final ethical hacker roundup of 2025 features a @samwcyo @shubhamxshah collab, a pair of airline exploits ✈️ from @saxrag and @foobar_ramsay and a raft of writeups from the ever-prolific Eaton Zveare 👇 yeswehack.com/news/poker-cur…

A bit late on this one, but worth it. I’ve covered manual, extension based and automated methods in a very simple way. Even Noobs should be able to find and report this bug after watching this. youtu.be/Jfw618X7hEU

Here’s a clear and practical guide to session management bugs, explained in a simple and easy-to-understand way.. infosecwriteups.com/a-practical-gu…

Android bugs have their own gotchas. If you want to study disclosed Android reports, check out this repo: github.com/B3nac/Android-…