Data breach search engines for Penetration Testing and Threat Intelligence 📕 #infosec #cybersec #PenetrationTesting

0x0SojalSec's tweet image. Data breach search engines for Penetration Testing and Threat Intelligence 📕

#infosec #cybersec #PenetrationTesting

Beginners introduction to Linux kernel rootkits inferi.club/post/the-art-o… #Linux #infosec

0xor0ne's tweet image. Beginners introduction to Linux kernel rootkits

inferi.club/post/the-art-o…

#Linux #infosec

Use NextJS? Recon ✨ A quick way to find "all" paths for Next.js websites: DevTools->Console console.log(__BUILD_MANIFEST.sortedPages) javascript​:console.log(__BUILD_MANIFEST.sortedPages.join('\n')); Cred = linkedin.com/in/0xsojalsec?… #infosec #cybersec #bugbountytips

ofjaaah's tweet image. Use NextJS? Recon ✨

A quick way to find "all" paths for Next.js websites:
DevTools->Console

console.log(__BUILD_MANIFEST.sortedPages)

javascript​:console.log(__BUILD_MANIFEST.sortedPages.join('\n'));

Cred = linkedin.com/in/0xsojalsec?…

#infosec #cybersec #bugbountytips

Something BIG is coming next week 🤫 50+ pages of game-changing insights, prepared for the ongoing #CybersecurityAwarenessMonth! I can't say more yet, but if cybersecurity is on your radar, you'll want to see this. Stay tuned 👀 #CyberSecurityReport #InfoSec #ThreatIntelligence

PaulaCqure's tweet image. Something BIG is coming next week 🤫
50+ pages of game-changing insights, prepared for the ongoing #CybersecurityAwarenessMonth!

I can't say more yet, but if cybersecurity is on your radar, you'll want to see this.
Stay tuned 👀

#CyberSecurityReport #InfoSec #ThreatIntelligence…

Cloudflare WAF Bypass → XSS 💡 The vulnerability occurred because the URL was being printed directly in JavaScript. Used this payload to achieve reflected XSS: --'<00 foo="<a%20href="javascript:prompt(404)">XSS-Click</00>--%20// #CyberSecurity #InfoSec #BugBounty #XSS

bughuntar's tweet image. Cloudflare WAF Bypass → XSS 💡

The vulnerability occurred because the URL was being printed directly in JavaScript. Used this payload to achieve reflected XSS:

--&apos;&amp;lt;00 foo=&quot;&amp;lt;a%20href=&quot;javascript:prompt(404)&quot;&amp;gt;XSS-Click&amp;lt;/00&amp;gt;--%20//

#CyberSecurity #InfoSec #BugBounty #XSS…

"HTML Sanitizer Bypass Cloudflare leads to XSS"🛠️ payload: '<00 foo="<a%20href="javascript:alert('XSS-Bypass')">XSS-CLick</00>--%20/ #infosec #cybersec #bugbountytips

0x0SojalSec's tweet image. &quot;HTML Sanitizer Bypass Cloudflare leads to XSS&quot;🛠️ 

payload: &apos;&amp;lt;00 foo=&quot;&amp;lt;a%20href=&quot;javascript:alert(&apos;XSS-Bypass&apos;)&quot;&amp;gt;XSS-CLick&amp;lt;/00&amp;gt;--%20/  

#infosec #cybersec #bugbountytips
0x0SojalSec's tweet image. &quot;HTML Sanitizer Bypass Cloudflare leads to XSS&quot;🛠️ 

payload: &apos;&amp;lt;00 foo=&quot;&amp;lt;a%20href=&quot;javascript:alert(&apos;XSS-Bypass&apos;)&quot;&amp;gt;XSS-CLick&amp;lt;/00&amp;gt;--%20/  

#infosec #cybersec #bugbountytips

I was able to bypass rate limiting using this on mostly websites. #infosec #cybersec #bugbountytips

0x0SojalSec's tweet image. I was able to bypass rate limiting using this on mostly websites. 

#infosec #cybersec #bugbountytips
0x0SojalSec's tweet image. I was able to bypass rate limiting using this on mostly websites. 

#infosec #cybersec #bugbountytips

APK TOOL GUI Tools: easier for reverse engineering and Android pentesting - github.com/AndnixSH/APKTo… #infosec #cybersec #bugbountytips

0x0SojalSec's tweet image. APK TOOL GUI Tools:  easier for reverse engineering and Android pentesting 

- github.com/AndnixSH/APKTo…

#infosec #cybersec #bugbountytips

The payload contains '|/???/\b**\h,' which is meant to confuse WAF rules. Unusual characters are a common evasion tactic. image by: win3zz #cybersec #BugBountytips #infosec

0x0SojalSec's tweet image. The payload contains &apos;|/???/\b**\h,&apos; which is meant to confuse WAF rules. Unusual characters are a common evasion tactic. 

image by:  win3zz

#cybersec #BugBountytips #infosec

"HTML Sanitizer Bypass Cloudflare leads to XSS" payload: '<00 foo="<a%20href="javascript​:alert('XSS-Bypass')">XSS-CLick</00>--%20/ #infosec #cybersec #bugbountytips

viehgroup's tweet image. &quot;HTML Sanitizer Bypass Cloudflare leads to XSS&quot;

payload: &apos;&amp;lt;00 foo=&quot;&amp;lt;a%20href=&quot;javascript​:alert(&apos;XSS-Bypass&apos;)&quot;&amp;gt;XSS-CLick&amp;lt;/00&amp;gt;--%20/ 

#infosec #cybersec #bugbountytips

🎉 Happy to share I received a $440 bounty from Yandex for reporting an Email HTML Injection on their bug bounty program. A huge thanks to @Rohit_443 for his constant support and motivation throughout this journey 🙌 #BugBounty #InfoSec #CyberSecurity #WebSecurity #XSS

anand___73's tweet image. 🎉 Happy to share I received a $440 bounty from Yandex for reporting an Email HTML Injection on their bug bounty program.
A huge thanks to @Rohit_443  for his constant support and motivation throughout this journey 🙌
#BugBounty #InfoSec #CyberSecurity #WebSecurity #XSS

AI-powered tool for automated penetration testing with multi-agent support and built-in security tools Fully autonomous AI Agents system capable of performing complex penetration testing tasks. - github.com/vxcontrol/pent… #infosec #cybersec #bugbountytips


Airline breaches; Qantas leak exposed names, emails & loyalty IDs but no passports-enough for fraud and shows risk (Salesforce). Secure identity data. thecyberexpress.com/why-airline-da… #infosec #DataBreach


SUSE: 2025:036291 : for gstreamerpluginsrs - * bsc#1223219 * jsc#PED13826 CrossReferences: * CVE202432650 # Security update for gstreamerpluginsrs Announcement ID: SUSESU2025:03629... #SuSE #Linux #infosec #opensource #linuxsecurity tinyurl.com/23jfhfqo

LS_Advisories's tweet image. SUSE: 2025:036291 : for gstreamerpluginsrs - * bsc#1223219 * jsc#PED13826 CrossReferences: * CVE202432650 # Security update for gstreamerpluginsrs Announcement ID: SUSESU2025:03629... #SuSE #Linux #infosec #opensource #linuxsecurity tinyurl.com/23jfhfqo

Welcome to “Digital Jenga,” where the tower’s made of cloud apps, power cords, and fragile backup plans and every pulled piece brings us closer to chaos. Read and listen 👉 lttr.ai/Aj7ra #InfoSec #HIPAA

HelpMeWithHIPAA's tweet image. Welcome to “Digital Jenga,” where the tower’s made of cloud apps, power cords, and fragile backup plans and every pulled piece brings us closer to chaos.

Read and listen 👉 lttr.ai/Aj7ra

#InfoSec #HIPAA

Unauthenticated API Key Creation in better-auth (CVE-2025-61928) Attackers can generate valid API keys in better-auth without authentication. Immediate patching is critical. For more details, read ZeroPath's blog on this vuln. #AppSec #InfoSec #Authentication


Microsoft Disrupts Ransomware Campaign Abusing Azure Certificates: ift.tt/dNhGkEV by darkreading #infosec #cybersecurity #technology #news


Mango respondió con disculpas oficiales, reconociendo que falló en proteger la información. Prometen protocolos de seguridad mejorados, inversión en sistemas más robustos y aconsejan a clientes estar alerta ante emails o mensajes sospechosos 🛡️📢 #InfoSec


In cybersecurity, curiosity beats speed. 💡 Every scan, every log, every error — it’s all part of the learning. Stay consistent. Stay curious. Keep building. 🔐 #CyberSecurity #Motivation #InfoSec #EthicalHacking


Palo Alto Networks spots new China espionage group showcasing advanced skills ift.tt/PSKX35k #infosec #cybersecurity #china

johnmcclure00's tweet image. Palo Alto Networks spots new China espionage group showcasing advanced skills ift.tt/PSKX35k #infosec #cybersecurity #china

Why did the startup bring SecuQuestlyAI to the demo day? To impress investors with a security posture tighter than their VC handshake! Lock down your code, conquer compliance, sleep easy. #AIsecurity #InfoSec #CloudSecurity #GRC #ZeroTrust A cartoon startup founder on stage, with…


Data breach search engines for Penetration Testing and Threat Intelligence 📕 #infosec #cybersec #PenetrationTesting

0x0SojalSec's tweet image. Data breach search engines for Penetration Testing and Threat Intelligence 📕

#infosec #cybersec #PenetrationTesting

APK TOOL GUI Tools: easier for reverse engineering and Android pentesting - github.com/AndnixSH/APKTo… #infosec #cybersec #bugbountytips

0x0SojalSec's tweet image. APK TOOL GUI Tools:  easier for reverse engineering and Android pentesting 

- github.com/AndnixSH/APKTo…

#infosec #cybersec #bugbountytips

I was able to bypass rate limiting using this on mostly websites. #infosec #cybersec #bugbountytips

0x0SojalSec's tweet image. I was able to bypass rate limiting using this on mostly websites. 

#infosec #cybersec #bugbountytips
0x0SojalSec's tweet image. I was able to bypass rate limiting using this on mostly websites. 

#infosec #cybersec #bugbountytips

The payload contains '|/???/\b**\h,' which is meant to confuse WAF rules. Unusual characters are a common evasion tactic. image by: win3zz #cybersec #BugBountytips #infosec

0x0SojalSec's tweet image. The payload contains &apos;|/???/\b**\h,&apos; which is meant to confuse WAF rules. Unusual characters are a common evasion tactic. 

image by:  win3zz

#cybersec #BugBountytips #infosec

"HTML Sanitizer Bypass Cloudflare leads to XSS"🛠️ payload: '<00 foo="<a%20href="javascript:alert('XSS-Bypass')">XSS-CLick</00>--%20/ #infosec #cybersec #bugbountytips

0x0SojalSec's tweet image. &quot;HTML Sanitizer Bypass Cloudflare leads to XSS&quot;🛠️ 

payload: &apos;&amp;lt;00 foo=&quot;&amp;lt;a%20href=&quot;javascript:alert(&apos;XSS-Bypass&apos;)&quot;&amp;gt;XSS-CLick&amp;lt;/00&amp;gt;--%20/  

#infosec #cybersec #bugbountytips
0x0SojalSec's tweet image. &quot;HTML Sanitizer Bypass Cloudflare leads to XSS&quot;🛠️ 

payload: &apos;&amp;lt;00 foo=&quot;&amp;lt;a%20href=&quot;javascript:alert(&apos;XSS-Bypass&apos;)&quot;&amp;gt;XSS-CLick&amp;lt;/00&amp;gt;--%20/  

#infosec #cybersec #bugbountytips

Beginners introduction to Linux kernel rootkits inferi.club/post/the-art-o… #Linux #infosec

0xor0ne's tweet image. Beginners introduction to Linux kernel rootkits

inferi.club/post/the-art-o…

#Linux #infosec

Something BIG is coming next week 🤫 50+ pages of game-changing insights, prepared for the ongoing #CybersecurityAwarenessMonth! I can't say more yet, but if cybersecurity is on your radar, you'll want to see this. Stay tuned 👀 #CyberSecurityReport #InfoSec #ThreatIntelligence

PaulaCqure's tweet image. Something BIG is coming next week 🤫
50+ pages of game-changing insights, prepared for the ongoing #CybersecurityAwarenessMonth!

I can&apos;t say more yet, but if cybersecurity is on your radar, you&apos;ll want to see this.
Stay tuned 👀

#CyberSecurityReport #InfoSec #ThreatIntelligence…

Series on Linux kernel exploitation by @ri5255 r1ru.github.io/categories/lin… #infosec #Linux

0xor0ne's tweet image. Series on Linux kernel exploitation by @ri5255

r1ru.github.io/categories/lin…

#infosec #Linux

Use NextJS? Recon ✨ A quick way to find "all" paths for Next.js websites: DevTools->Console console.log(__BUILD_MANIFEST.sortedPages) javascript​:console.log(__BUILD_MANIFEST.sortedPages.join('\n')); Cred = linkedin.com/in/0xsojalsec?… #infosec #cybersec #bugbountytips

ofjaaah's tweet image. Use NextJS? Recon ✨

A quick way to find &quot;all&quot; paths for Next.js websites:
DevTools-&amp;gt;Console

console.log(__BUILD_MANIFEST.sortedPages)

javascript​:console.log(__BUILD_MANIFEST.sortedPages.join(&apos;\n&apos;));

Cred = linkedin.com/in/0xsojalsec?…

#infosec #cybersec #bugbountytips

Blog posts, write-ups, papers and tools related to cybersecurity, reverse engineering and exploitation github.com/0xor0ne/awesom… #infosec

0xor0ne's tweet image. Blog posts, write-ups, papers and tools related to cybersecurity, reverse engineering and exploitation

github.com/0xor0ne/awesom…

#infosec
0xor0ne's tweet image. Blog posts, write-ups, papers and tools related to cybersecurity, reverse engineering and exploitation

github.com/0xor0ne/awesom…

#infosec

0x0SojalSec's tweet image. RediShell exploit :

- github.com/raminfp/redis_…

#infosec #cybersec #bugbountytips

💥 Wiz Research has uncovered a critical Redis vulnerability that's been hiding for 13 years We found RediShell (CVE-2025-49844): an RCE bug in Redis that affects every version of Redis out there. It's rated CVSS 10 - the highest severity possible. The vulnerability lets…

wiz_io's tweet image. 💥 Wiz Research has uncovered a critical Redis vulnerability that&apos;s been hiding for 13 years

We found RediShell (CVE-2025-49844): an RCE bug in Redis that affects every version of Redis out there. It&apos;s rated CVSS 10 - the highest severity possible.

The vulnerability lets…


Loading...

Something went wrong.


Something went wrong.


United States Trends