kiyoooooo
@heapbytes
What you're not changing, you're choosing.
Missing Security Headers hackerone.com/reports/3310318 #bugbounty #bugbountytips #bugbountytip
Hey guys, If anyone’s going @nullcon Goa and is looking for a group for stay, let me know. I need a friend/group for the same.
You're missing out if you're in Web3 security and haven't seen this repo yet. It lists ~ 200 smart contract hacks in the DeFi space and reproduces them using Foundry. Learn from past mistakes, anon! 🫡🔥 See below 👇 github.com/SunWeb3Sec/DeF…
Cert Exam Voucher Giveaway provided by @ablativetech Prizes: 1 Security+ exam voucher 1 CCNA exam voucher How to enter: - RT - comment which voucher you want Winner will be picked next week. Good luck!
🥷𝗖𝗵𝗮𝗹𝗹𝗲𝗻𝗴𝗲 𝘁𝗶𝗺𝗲, 𝗺𝘆 𝗱𝗲𝗮𝗿 𝗮𝘂𝗱𝗶𝘁𝗼𝗿 𝗳𝗿𝗶𝗲𝗻𝗱𝘀: 🐛This is a vulnerable code snippet of Deus Finance (Lending Contract) which led to loss of $3.1 million Can you spot it ?
We’re launching the HackTricks Assistant Chatbot hacktricks.ai for everybody! - It has access to the comprehensive HackTricks & HackTricks Cloud knowledge base - You can get answers on technical cybersecurity topics and generate practice facts and questions for…
"I Stole My Own Reddit Account" -- a session hijacking demo! With background context on cookies, initial access via LNK cradle, running custom infostealer payloads in PowerShell, and a full account takeover that we explore with an anti-detect browser! 😈 jh.live/hdE4l6O_xXM
DevOps & Cloud (Role Based Certification) 👇 ++++++ Docker Course for Free👇
BEN SAID I COULD DO A GIVEAWAY TOO 🥳 HackingHub Black Friday deal: hhub.io/tQWXgd $39 for lifetime access ♾️ OR $19 for a month trial ⏰ AND I can match his giveaway-- 2️⃣ WINNERS (1 each) - Full cert bundle - Lifetime access To enter: ↪️ retweet and reply w/ 🦃
If you like bounties, I highly recommend this presentation from @tincho_508 on novel web cache deception techniques. It comes with @WebSecAcademy labs too! youtube.com/watch?v=70yyOM…
youtube.com
YouTube
DEF CON 32 - Gotta Cache ‘em all bending the rules of web cache...
IDOR on HackerOne Embedded Submission Form medium.com/pinoywhitehat/… #infosec #bugbounty #TogetherWeHitHarder #inbbupdatesblogs
Authorization bypass due to cache misconfiguration (For more join on discord : discord.gg/Y467qAFM4X) #bugbounty #bugbountytips #bugbountytip rikeshbaniya.medium.com/authorization-… credit:rikeshbaniya
you can try this Cloudflare rocketloader nuclei template for SSRF and Finding Origin ip behind WAF helpful in WAF Bypass.. github.com/coffinxp/nucle…
38: 0-100k in bug bounty with a 9-5 job Continued reading more IDOR reports. Unfortunately due to loads of office work, am not able to give a lot of time to Bugbounty. This is getting even tougher than I estimated, but anyways I wont stop. For IDOR Resources👇 @Rhynorater
IDOR leads to the deletion of main group (or all groups) using "/v1/groups" endpoint (€500) 1) In the redacted app, admins can edit and delete the groups section. But, users don't have permission to delete the main group. So, users cannot edit or delete the other groups. 👇
Hey @CoinDCX_Cares @CoinDCX I’ve reached out to you through dm, kindly check my concern. And update your app support, or Atleast change name from support->Faq(frequently answered questions) to stop misleading 🙂
cve-2024-10914 GET /cgi-bin/account_mgr.cgi?cmd=cgi_user_add&name=%27;<INJECTED_SHELL_COMMAND>;%27 FOFA:app =D_Link-DNS-ShareCenter #exploit #poc #IoT
How I Scored 1K Bounty Using Waybackurls by @OriginalSicksec Link: infosecwriteups.com/how-i-scored-1… #bugbounty #bugbountytip
United States الاتجاهات
- 1. #LingOrm1st_ImpactFANCON 283K posts
- 2. #BUNCHITA 1,467 posts
- 3. Frankenstein 81.7K posts
- 4. Tulane 4,451 posts
- 5. #KirbyAirRiders 1,879 posts
- 6. Giulia 15.5K posts
- 7. taylor york 8,777 posts
- 8. #SmackDown 47.7K posts
- 9. Supreme Court 182K posts
- 10. Aaron Gordon 4,942 posts
- 11. #TheLastDriveIn 4,016 posts
- 12. Pluribus 31.1K posts
- 13. Brown Jackson 5,653 posts
- 14. Justice Jackson 6,044 posts
- 15. Connor Bedard 3,195 posts
- 16. Gozyuger 2,191 posts
- 17. Russ 14.3K posts
- 18. Tatis 2,232 posts
- 19. Guillermo del Toro 25.8K posts
- 20. Northwestern 5,130 posts
Something went wrong.
Something went wrong.