Hazem El-Sayed 🇵🇸
@zomasec
Bug Hunter | Offensive Security Engineer @DeepStrike_io
Talvez você curta
Here is a write-up for how I got a Full Account takeover with a new hidden AWS Cognito Misconfiguration. Here is the link: shorturl.at/b5VbS #BugBounty #bugbountytips #bugbountytips
Sometimes when I work with teammates across multiple programs, Android app bug hunting becomes tedious and wastes time that could be spent finding web bugs. I built **apkX** to automate the repetitive startup steps, give a quick preview of an app’s internals, and let you test…
🎙️ Hunter Cust #3 – Hazem El-Sayed (zomasec) رحلته في السيكيورتي، ونصايح مهمة لأول شغل في مجال الـ Pentesting 👨💻 كلام واقعي، مصادر قوية، وتسويق لنفسك في السوق المصري 🇪🇬 📺 شاهد الحلقة: 🔗 youtu.be/Zyrez7QfxBQ 📌 شكراً @zomasec على الحوار الرايق والمفيد ❤️ #BugBounty
youtube.com
YouTube
Hunter Cust #3 – Hazem El-Sayed: Tips to Get Your First Job in...
I hope some one find this usefull 😁
Want to master client-side bugs? 😎 Check out this extensive GitHub repository with tens of different resources curated by @zomasec! 🔗 github.com/zomasec/client…
Use NextJS? Recon Tip by renniepak A quick way to find "all" paths for Next.js websites: DevTools->Console console.log(__BUILD_MANIFEST.sortedPages) javascript:console.log(__BUILD_MANIFEST.sortedPages.join('\n')); #infosec #cybersec #bugbountytips
With @Amr_MustafaAA we got this awesome bug 3> GET /api/nonsensitive/123%23non.svg The endpoint initially didn’t return sensitive data, but after being cached, it started exposing user PII. found on @yeswehack #BugBounty #bugbountytip #bugbountytips #Pentesting #websecurity
نفاق واضح
الدول "العلمانية" الأوروبية عادي تحط الصليب على علم دولها أما في بلد نسبة المسلمين فيه 90 بالمئة وكان الدين سبب في تحريرهم ويضعوا كلمة التوحيد بجنب علمهم، فهذا طائفية والعياذ بالله غرد كأنك علمنجي
see our changes here
Tools Updates: - ffuf: -unique filters unique responses by size.- - Subfalcon: Single-domain input, -sdt for Azure takeover. - Paramx: -at for all tags, -ap for all params(no need for gf any more). Tools Here: github.com/cyinnove Happy Automation! #CyberSecurity #Automation
If you're scratching your head after the @matanber episodes, here's a demo to show you how to: - Enable developer mode - Download extension's crx file Debugging: - Enable "Search in anonymous and content scripts" - Disable Ignore List "Content scripts injected by extensions"
To succeed in bug bounty, be a specialist feat. @snyff #bugbounty #bugbountytips #bugbountyhunter
I recently reported an RCE to Happy-DOM (a Node.js HTML parser), and it’s now fixed! The bug itself wasn't complex, but since finding an RCE in an HTML parser isn’t very common, I'm quite happy with this one :D github.com/capricorn86/ha…
Here is my writeup for how i could find 22 LFI In the same program using automation tricks 🤯 medium.com/@zomasec/how-i… #bugbounty #bugbountytip #bugbountytips #websecurity #hackerone
CSRF in JSON requests is often overlooked, but it's a hidden threat! In my latest post, I break down how to spot JSON-based CSRF before generating a PoC. 🔍 Check out how I caught it in a pentest at @CyberAR_LLC: #bugbountytips #csrf linkedin.com/posts/h0tak88r…
عندما شاهدت هذا الفيديو من انتصارات اليوم في السودان ورأيت هذه الوجوه الطيبة وفيها الدين والخلق لأبطال القوات المسلحة السودانية، تذكرت بداية حرب #السودان حين قالت #الامارات نحن ندعم ونقف مع مليشيات الدعم السريع للقضاء على الإسلاميين؟! حقيقة الإمارات تريد وجوه العربدة والفساد
Hello everyone , i coded a new golang package for bughunters who want to use webarchive in their tools , i am the first one that do this package in golang community with full documentation github.com/zomasec/webarc… #BugBounty #bugbountytip #bugbountytips #golang #tools
United States Tendências
- 1. #FaithFreedomNigeria N/A
- 2. Good Wednesday 25.5K posts
- 3. #hazbinhotelseason2 77.4K posts
- 4. Hump Day 9,980 posts
- 5. #wednesdaymotivation 5,617 posts
- 6. Peggy 22.2K posts
- 7. Happy Hump 6,344 posts
- 8. #Wednesdayvibe 1,725 posts
- 9. For God 213K posts
- 10. Dearborn 276K posts
- 11. #InternationalMensDay 32.4K posts
- 12. Abel 15.7K posts
- 13. Cory Mills 12.9K posts
- 14. Gettysburg Address N/A
- 15. Kwara 205K posts
- 16. LeBron 94.4K posts
- 17. Tinubu 169K posts
- 18. Grayson 7,580 posts
- 19. Nigerians 149K posts
- 20. Baxter 2,977 posts
Talvez você curta
-
Abdelhy khaled🦅
@cysky0x1 -
Hagar Yousef
@alien0x_ -
Mohamed Mater🇵🇸
@micro0x00 -
Omar Nasser 🇪🇬🇵🇸
@Sisi0_x -
Khaled Samy
@khaleedsamy12 -
Mohamed reda ameen
@AlQa3Qa3M0x0101 -
Yousef
@iYousefAlotaibi -
M0hamed_Gamal0
@M0hamedGamal0 -
عبدالرحمن | Abdulrahman
@73CHN0L06Y -
عرفات
@ImXhandle -
Maverick🇵🇸
@mavric1337 -
Osama Ayman
@OsamaAyman__ -
Salman Saif-ElDin 🇵🇸
@Salman_0x00 -
Pepo Root
@mahmmoudel5ateb
Something went wrong.
Something went wrong.