(inc0gbyt3)
@incogbyte
pentester/infosec/ infosec researcher of nothing
You might like
Every day, I remind myself that the security community's obsession with rockstars and their narrow definition of what is considered 'technical' can be toxic. Instead of seeking validation from others, what truly matters is working on the things I am passionate about.
In this post, I dive into how Flutter apps generally encrypt requests using RSA, how to analyze the compiled binaries, and how I reverse using frida, blutter Check it out here: incogbyte.github.io/posts/flutter-… thanks @fridadotre @enovella_ @sleepya_ #infosec
It's been a while – here's a brand new reversing short on how to interpret log messages in Apple's binaries! youtu.be/-uIeRISQaiI #reversingshorts
Our #r2Frida trainees put their knowledge in practice and it publicly! n0psn0ps.github.io/2024/06/07/mac… If you have lost the opportunity, you have another chance to learn from it in our next @_ringzer0 Training in Las Vegas with @Hexploitable and me. ringzer0.training/doubledown24-m…
Shosubgo now accepts a wordlist of subdomains. Checkout GitHub.com/incogbyte/shos… v3.0 thanks 🙏
Thanks @Jhaddix mentioned shosubgo github.com/incogbyte/shos… at @SANSOffensive . Awesome talk, and good tips for cloud recon 👾👾👾
I just completed the #burpchallenge. I found a logic bug where after requesting a password reset, the link sent to the email had a token that did not expire and had a predictable pattern, after understand the pattern, it was possible to account takeover of any user
With the arrival of @palera1n, I made a script, using frida, to bypass jb checks based on relative paths and also include some bypass for more common antitampers like ptrace, geppid. codeshare.frida.re/@incogbyte/ios… @fridadotre and thans to @ios_euphoria for the GUI♥️
I'm sharing a script using frida, to bypass sslpinning more common (Android). gist.github.com/incogbyte/1e0e… codeshare.frida.re/@incogbyte/and… #BugBounty #bugbountytips #fridadotre @fridadotre
thanks @Informatica it's an honor to contribute =) informatica.com/trust-center/s…
small write up about PHPIPAM CVE-2022-23046 with exploit, incogbyte.github.io/post/2022-01-2… #bugbounty #bugbountytips #infosec #beginner
📲 We are pleased to present the utility developed by our researcher @lmpact_l for Flutter apps traffic monitoring. Just make app trust installed certificates by repacking it with reFlutter and hunt bugs using Burp Suite. No root, no VPN, no more hassle! github.com/ptswarm/reFlut…
I added a template, for nuclei to identify a XSS without authentication in Lucee check. github.com/projectdiscove… #bugbountytips #nuclei
Those who haven't seen my tool on h@cktivitycon, this one [github.com/incogbyte/shos…] and the conference also so you didn't see [youtube.com/watch?v=qLTe6Z… ] thanks to @Jhaddix @0x0g @Hacker0x01 #bugbountytips #BugBounty
youtube.com
YouTube
h@cktivitycon 2020: The Bug Hunter's Methodology v4: Recon Edition by...
I wrote a small tool to grab subdomains from Shodan github.com/incogbyte/shos… yeah.. i know that this already exist but.. i made another ;) #peace #golang
thanks @Philips it's a honour contribute.. philips.com/a-w/security/c…
Check this out if you want to learn about a lesser known IDOR variant, how to leverage markdown for hacking, what Jason Haddix & Frans Rosén are up to these days & more! #hacking #websec #InfoSec #bugbountynews #T5HN #pentesting #bugbounty #pentest pentester.land/newsletter/202…
I wrote a little bit about a pentest that I did, and I got domain admin incogbyte.github.io/domain-admin/ #BugBounty #PenTest
how to detect if someone is using burp suite? it's possible ? incogbyte.github.io/detecting-burp/
I wrote a small guide with some common techniques to bypass WAF, focus on SQL injection.. incogbyte.github.io/sqli_waf_bypass #bugbountytips #bugbountytip
United States Trends
- 1. Pond 215K posts
- 2. Kim Davis 2,951 posts
- 3. #IDontWantToOverreactBUT N/A
- 4. $BNKK 1,056 posts
- 5. Go Birds 5,727 posts
- 6. #MondayMotivation 40.3K posts
- 7. Semper Fi 6,909 posts
- 8. Happy 250th 8,394 posts
- 9. $LMT $450.50 Lockheed F-35 1,109 posts
- 10. $SENS $0.70 Senseonics CGM N/A
- 11. $APDN $0.20 Applied DNA 1,100 posts
- 12. Good Monday 46.8K posts
- 13. #MYNZ N/A
- 14. Obamacare 214K posts
- 15. Edmund Fitzgerald 5,776 posts
- 16. Obergefell 2,058 posts
- 17. Victory Monday 2,916 posts
- 18. #USMC 1,331 posts
- 19. Talus Labs 26.4K posts
- 20. Rudy Giuliani 30.2K posts
You might like
-
Vipin Panchal
@dirtycoder0124 -
Jonathan Bouman
@JonathanBouman -
HAHWUL
@hahwul -
j3ssie (Ai Ho)
@j3ssiejjj -
Aditya Gujar
@fyoorer -
Damian Strobel
@damian_89_ -
Hossam Sec
@HossamSec -
Walid Hossain
@walidhossain_ -
John
@JohnH4X00R -
The Bug Bounty Hunter
@tbbhunter -
@v!b$123!
@vibs123i -
Supr4s
@LdrTom -
Eduard T - [email protected]
@edu4rdshl -
sushiwushi
@sushiwushi2 -
r00tz 🇮🇳
@yaser_s
Something went wrong.
Something went wrong.