YesWeHack ⠵

9.1K posts

YesWeHack ⠵

@yeswehack

Offensive Security & Exposure Management Platform 🎯 https://t.co/57gODBq2WZ 👾 https://t.co/ICc6RyhJTp 💡 https://t.co/KNYxhkKuzt

World شامل ہوئے Temmuz 2012

3.4K فالونگ41.6K فالوورز

پن کیا گیا ٹویٹ

YesWeHack ⠵@yeswehack·25 Mar

Ever abused a wildcard to inject shell arguments? 👀 In the latest episode of #TalkiePwnii, @pwnwithlove dives into a community-made Dojo challenge by @zerodaygym! From argument injection to full directory search - see it in action 👇 youtu.be/xsaa7dBn1jg

YouTube

English

7.7K

YesWeHack ⠵@yeswehack·1h

Is @CaidoIO your favourite Bug Bounty tool? Then good news: you can now access ALL your @yeswehack programs directly inside Caido! Browse programs, view full details, and add assets/scopes instantly. Keep hunting without ever leaving your workspace. 👉 github.com/yeswehack/yesw…

English

350

YesWeHack ⠵@yeswehack·4h

@askilow That's great! Congratulations 👏

English

Skilo@askilow·3d

Just got a reward for a critical vulnerability submitted on @yeswehack -- Information Disclosure (CWE-200). yeswehack.com/hunters/skilo Big thanks to @TheLaluka for highly valuable collaboration 🥰 #YesWeRHackers

English

130

YesWeHack ⠵@yeswehack·4h

@0x4r1f That's great! Congratulations 👏

English

Arif Hossen@0x4r1f·3d

Just got a reward for a vulnerability submitted on @yeswehack -- Unrestricted Upload of File with Dangerous Type (CWE-434). #YesWeRHackers

English

YesWeHack ⠵@yeswehack·5h

@_axwr That's great! Congratulations 👏

English

Grandpa@_axwr·5d

Just got a reward for a vulnerability submitted on @yeswehack -- Insecure Direct Object Reference (IDOR) (CWE-639). yeswehack.com/hunters/grandpa #YesWeRHackers

English

243

YesWeHack ⠵@yeswehack·5h

@drak3hft7 Nice one drak3hft7 ! :)

English

160

drak3hft7@drak3hft7·5h

First time breaking into the Top 4 of the all-time leaderboard @yeswehack 👀😼 Still a long way to go, a lot to improve, and plenty to learn. #bugbounty #YesWeRHackers #bugbountytips

English

665

YesWeHack ⠵@yeswehack·3d

🚨Critical auth bypass in the WordPress Entra ID/Azure AD SSO plugin – attackers could potentially take over admin accounts and fully compromise sites. ⚠️ Root cause, patch analysis, PoC, threat landscape and mitigation steps for CVE-2026-2628 👇 yeswehack.com/news/auth-bypa…

English

2.3K

YesWeHack ⠵@yeswehack·5d

Ready to pwn Bucket Vault on Dojo? 🚩 Discover how you can bypass a dot-dot-slash filter and read the secret file! Hack the challenge and level up your YesWeHack profile 👉 dojo-yeswehack.com/challenge-of-t… #BugBounty #CTF

English

1.3K

YesWeHack ⠵@yeswehack·6d

If mastering open-source hacking is on your list, don’t miss this amazing content! Our latest guide breaks down every technique clearly, from simple workflows to advanced #BugBounty methods 🙀 Start learning here 👇 yeswehack.com/learn-bug-boun…

English

3.5K

YesWeHack ⠵@yeswehack·6d

@drak3hft7 Well done! Keep up the great work 💪

English

306

drak3hft7@drak3hft7·6d

Just got a reward for a high vulnerability submitted on @yeswehack -- Business Logic Errors (CWE-840). yeswehack.com/hunters/drak3h… #YesWeRHackers

English

640

YesWeHack ⠵@yeswehack·6d

@nurmukhamyed_kh That's great! Congratulations 👏

English

Нурмухамед Хурметхан@nurmukhamyed_kh·3 Nis

Just got a reward for a high vulnerability submitted on @yeswehack -- Improper Access Control - Generic (CWE-284). yeswehack.com/hunters/nurka #YesWeRHackers

English

YesWeHack ⠵@yeswehack·6d

@_axwr Well done! Keep up the great work 💪

English

Grandpa@_axwr·2 Nis

Just got a reward for a vulnerability submitted on @yeswehack -- Improper Access Control - Generic (CWE-284). yeswehack.com/hunters/grandpa #YesWeRHackers

English

382

YesWeHack ⠵@yeswehack·6d

@just_ismail_ Hello, It means that YesWeHack is awaiting information from the program managers. Regards, The YesWeHack team

English

isma@just_ismail_·2 Nis

hi @yeswehack, i got 5 reports on this, what does it mean exactly ? i've never had it before thank you

English

YesWeHack ⠵@yeswehack·6d

@11lunaric11 That's great! Congratulations 👏

English

Lunaric@11lunaric11·1 Nis

"Simple Login Bypass"? Pwned! It was a blast on @YesWeHack! Think you can take it on? 🌟 dojo-yeswehack.com/challenge/play… #YesWeHack #ChallengeAccepted

English

YesWeHack ⠵@yeswehack·6d

@SarojKanxa_ That's great! Congratulations 👏

English

Saroj Mukhiya@SarojKanxa_·1 Nis

Just got a reward for a vulnerability submitted on @yeswehack -- Race Condition (CWE-364). #YesWeRHackers

English

YesWeHack ⠵@yeswehack·6d

Secrets leaking in HTTP responses? 🔍 The TruffleHog Burp extension by @trufflesec passively scans proxy traffic for exposed credentials - API keys, tokens, SSH keys - directly in server responses. With 800+ detector types, it even checks whether secrets are still live. 👉 github.com/trufflesecurit… #BugBountyTips

English

150

6.4K

YesWeHack ⠵@yeswehack·6d

AI is changing Bug Bounty and ethical hacking - but only if you use it the right way. Treat AI as a hacking assistant, not a replacement for your knowledge and methodology. @amrelsagaei explains how in his latest video 👉 youtube.com/watch?v=Pi-sdK…

YouTube

English

186

6.7K

YesWeHack ⠵@yeswehack·3 Nis

“I was able to reset the password of every account in a large medical company” – @aituglo on his biggest #BugBounty find to date 💥 In this Q&A, he also shares how his dev background helps him find bugs, how he chooses targets & his top tip for newbies👇 yeswehack.com/community/deve…

English

2.3K

YesWeHack ⠵@yeswehack·2 Nis

Hey you! 🫵 What’s your favourite CWE? Our pick: CWE-78 Command Injection 💉 Don’t see your fav in the poll? Drop your go-to CWE in the comments 👇 #BugBountyTips

English

1.4K

YesWeHack ⠵@yeswehack·1 Nis

@Ussefessam1 That's great! Congratulations 👏

English

221

Ussef@Ussefessam1·31 Mar

Just completed the "Dojo #50 - Bucket Vault" challenge on @YesWeHack! Level up with me! 🌟 dojo-yeswehack.com/challenge/play… #YesWeHack #ChallengeAccepted

English

259

دریافت کریں

@CaidoIO @askilow @TheLaluka @0x4r1f @_axwr @drak3hft7 @nurmukhamyed_kh @just_ismail_