gr3y1nt 🇵🇸
@gr3y1nt
lonewolf,,,n00b hacker 💢 Hunter at @intigriti | @Hacker0x01 | @Bugcrowd 💤
Introducing HTTP Anomaly Rank New Burp Suite feature by PortSwigger’s @albinowax that automatically identifies the most interesting HTTP responses for your review. This can be useful for finding subtle vulnerabilities. The algorithm scores responses based on how different…
I missed many bugs because I didn't have good wordlists. This repo contains curated wordlists to fuzz smarter. github.com/0xPugal/fuzz4b…
I usually brute-force API paths with "Debug":true parameter and often it leads to reveal internal debug info to reverse proxies exposing API secrets and tokens.
mr @ZulkarnainSaer, where were you when extre/mist iskcon members openly sl@ghter advocate alif for arresting chinmoy k. das in chittagong. please investigate first and then say anyting about it.
Horrified by the video of a group of men publicly demanding the slaughter of ISKCON members in Bangladesh and bury them. The @ChiefAdviserGoB failure to condemn such violent rhetoric is unacceptable. They must take immediate-decisive action to demonstrate that such hatred has…
The creator of HackerNotes @gr3pme showed us his note taking methodology this week. Really cool and useful insights on how he approaches his note taking and how it helps him! You can find the templates in episode 145's HackerNotes: blog.criticalthinkingpodcast.io/p/hackernotes-…
I should start
A few months ago, I began studying bug bounties extensively. I've made my list public, and you can submit links to help expand it! docs.google.com/spreadsheets/d…
Most of the times its true..
Whoever that promises you their tool, their course or whatever will make you make big bucks is lying. Learn, work hard on your skills, understand the things. There is no other magic in the field. Don't listen those that are saying otherwise #bugbounty
✅Bug Bounty Tips 🐞403 bypass methodology🐞 #bugbounty #bugbountytips #Professor #CyberSecurity
Hello everyone, I created a Burp Suite extension for IDOR and authorization testing. I know there are a few similar extensions out there, but I built this one because most of them are outdated or tend to crash Burp (especially on Windows). Here’s the link: github.com/alpernae/AuthM…
🐞Bug Bounty Tips🐞 🕷️How to Find SQL Injection in Registration Page? 🐜Try this in the username/email injection point: #bugbountytips #bugbounty #bugbountytips #sqli #Professor #CyberSecurity #sqlinjection
This awesome 'FFuf Advanced Tricks' article by @noraj_rawsec needs a shoutout. I created my own FFuf script based on his tricks, and here is the result. #BugBounty acceis.fr/ffuf-advanced-…
This bug endpoint I've found using the web archive, and surprisingly there's no this url on my HTTP History on 3 days bug hunting. POC: 1. Open the web archive web.archive.org/cdx/search/cdx… 2. Open the endpoint directly. target.com/randompath/v2/… 3. This is looks like someone email…
I've made over 100k on SSRF vulnerabilities. They aren't always as simple as pointing it at localhost or AWS Metadata service. Here are some tricks I've picked up over the past 5 years of web app testing:
RCE Bug On T-Mobile's Custom Header Vulnerable Header: X-Export-Format: pdf ; Payload Tip: Always test your payloads on custom headers, as the header may be vulnerable, as in this case #BugBounty #bugbountytips #redteam #cybersecurity #Developers #pentest
💉 #BugBounty File Upload Bypass: Use null bytes to sneak past filters: shell.php%0d%0a.jpg Test all: %00, %0d%0a Hunt hard, stay legal! 🐛 #CyberSecurity #RedTeaming
United States Trends
- 1. Comey 53K posts
- 2. Thanksgiving 156K posts
- 3. Jimmy Cliff 28.4K posts
- 4. #WooSoxWishList 5,146 posts
- 5. #IDontWantToOverreactBUT 1,447 posts
- 6. Lindsey Halligan 9,067 posts
- 7. #NutramentHolidayPromotion N/A
- 8. DISMISSED 26.9K posts
- 9. Pentagon 10.5K posts
- 10. The Department of War 12.4K posts
- 11. Sen. Mark Kelly 17.1K posts
- 12. #MondayMotivation 14.5K posts
- 13. DOGE 242K posts
- 14. #stayselcaday 4,774 posts
- 15. TOP CALL 5,218 posts
- 16. Hal Steinbrenner N/A
- 17. Monad 182K posts
- 18. Victory Monday 5,261 posts
- 19. Justin Tucker N/A
- 20. Zach Bryan N/A
Something went wrong.
Something went wrong.