Mr. RaNa 🇧🇩 @0xraselrana
Bug Bounty Hunter & Cybersecurity Researcher hackerone.com/0xraselrana Dhaka, Bangladesh Joined March 2019-
Tweets392
-
Followers371
-
Following168
-
Likes5K
6 tools which will help you in bypass 403/404 status codes to get $$$$ // A THREAD //
Alhamdulillah , I was awarded a $900 bounty on @Hacker0x01! hackerone.com/0xraselrana #TogetherWeHitHarder
Alhamdulillah , I was awarded a $100 bounty on @Hacker0x01! hackerone.com/0xraselrana #TogetherWeHitHarder
This Ramadan, may your fasting be easy, your prayers be answered, and your heart be filled with faith.
Directory-brute forcing? You should NEVER filter based on status code. Paths can exist and return a 404. I’ve seen this so many times: /noexist/ -> 404 Not Found. /api/ -> 404 Not Found, but different response body (JSON formatted) /api/endpoint -> 200 OK Filter by…
👋 Hey folks! Welcome back to API Hacking Series. Don't miss your hunt today!😉 Today let’s learn about OWASP Top 4 API Bug - Unrestricted Resource Consumption Let's explore together! 🚀 #typefully #day4
Scan for JetBrains TeamCity Authentication Bypass Vulnerabilities using @pdnuclei CVE-2024-27198 (Critical) - github.com/projectdiscove… CVE-2024-27199 (High) - github.com/projectdiscove… #pdteam #hackwithautomation #jetbrains #CVE
For the first time in VDP.
🎁 If you're a beginner in #bugbounty hunting and in need of a roadmap, do checkout this wonderful resource. github.com/bittentech/Bug…
SQL Injection is a P1 critical vulnerability and you will get $$$$ for reporting this. Learn how to use SQLMap to find your first SQL Injection vulnerability in this thread 👇
Amazing resource to find account takeover vulnerability🖤 medium.com/@iknowhatodo/t…
Try these 7 when you’re testing for Password Reset functionality 🧵👇 PS: Testing on this functionality is very crucial and it can easily give you P1/critical vulnerabilities.
Amazing resources to bypass 403 &401 bypass💥 book.hacktricks.xyz/network-servic…
🕵️♂️ Inspired by @GodfatherOrwa's GitHub recon methodology, I dug into Docker Hub layers & struck gold! 🪙 Bug bounty hunters, this is a treasure trove of exposed employee credentials! 🔍💰 (1/3)
Yay, I was awarded a $900 bounty on @Hacker0x01! (Alhamdulillah for first bounty in 2024) hackerone.com/0xraselrana #TogetherWeHitHarder
Yay, I was rewarded $44 bounty on @Hacker0x01 Hackerone Profile: hackerone.com/mufaasa
Khyruddin Hashanulla @KhyruddinKH
1K Followers 3K Following 👨💻 SOFTWARE ENGINEER | CS Engineering Student 🚀| Passionate about crafting elegant code and solving complex problems🖥️ | 2.7K+ followers on LinkedIn✨Salma | ⚙️👨.. @Glycolysiss
261 Followers 501 Following '22 | ENFJ-T | bukan akun mengambiez seperti duluRefactor Security @refactorsec
299 Followers 1K Following Refactor Security is a cyber security company focused on application security and penetration testing.sajj @QiasSajad
0 Followers 697 Following)̛̖̖̖̖̖̗̗̗̗.. @alert010
79 Followers 2K Followinghehe @v4ndenbill
11 Followers 362 FollowingOmar Faruk @Omar_Faruk_0x01
1 Followers 74 FollowingAzhari harahap @blackarazi
418 Followers 999 Following Security Researcher | Senior Engineering ManagerFaiz Raza @faiz334799
52 Followers 957 FollowingJosuke @Jotar056
0 Followers 1K FollowingSujeet Rimal @sujeet_rimal
15 Followers 525 Followingan0nbil 🇵🇰 🇵.. @an0nbil
125 Followers 158 Following -Ethical Hacker and Cyber Security Researcher 👾 -Bug Hunter 🐞 -EHE Certified 🧑💻 -Photoshop Artist ✍ -Programmer (Python/HTML) 👨💻 -Learning JavaScript 🧠josephkerefu @Kerefu_js
52 Followers 1K FollowingSecurity Path @securitypath
27 Followers 55 Following I try so hard to shitpost here in my spare time | 7+ yrs into #Infosec, still figuring out my journey in cybersecurityinara @Asadriza6Riza
4 Followers 98 FollowingPrince @SamhithReddy888
3 Followers 219 Following Dream,dream,dream. Dreams transform into thoughts and thoughts result in action |Security Researcher|#bugbounty #cybersecurityCem Ozan Bitgul @ozanbitgul
113 Followers 2K Following Senior Information Security Specialist | Ozyegin University '16Anis LOUNIS @AnixPasBesoin
138 Followers 2K Following - I turn bugs (🐞) into features (🕵️) one gadget (🤖) at a time... YKWIM 😜 - Patriote de toutes les patries opprimées - Follows and retweets ≠ endorsementSalik Seraj Naik @code_with_ssn
818 Followers 350 Following 🧑🏻💻 Learning FullStack | 🤖 Exploring AI | 🧠 Delving into ML | 🛡️ Cybersecurity Enthusiast | CSE`2027Goat Sniff @GoatSniff
451 Followers 738 FollowingELON MUSK @EMusk77509
59 Followers 2K Followingfoysal_joy @Error_foysal
374 Followers 281 FollowingShazzad Hossain @ShazzadHos87166
9 Followers 114 FollowingMD JAHIDUL ISLAM @Jahidul_islam55
14 Followers 231 Following Red Teaming || Penetration-Tester || Bug-Hunter || CTF Player || Ethical Hacker ||Mohammad Mansour @0X_Mans1337
11 Followers 830 Following 0X_Mans1337 Bug Bounty Hunter Web Penetration Tester Cyber Security ResearcherAnonyVoid @AnonyVoid
59 Followers 781 FollowingH∆©K£₹ @12ak30gs
110 Followers 2K FollowingFarid Uddin @br34kc0d3
2 Followers 50 FollowingKenyon!🛡️ @PetersOluwafem_
843 Followers 948 Following Cybersecurity (in training) | AWS CCP | n00b | Chess | Martial Artist | BSc Mass communication (in view)📚🧑🏽💻🥋🏆Rafiqul Islam @RirRipon
39 Followers 241 Following They plan. And Allah plans. And Allah is the best of planners. ~ Qur'an 8:30lazyhackerbd @lazyhackerbdX
22 Followers 445 Following Cyber Security Analyst || Penetration Tester || Bug Hunter|| Security Researcher || Certified SOC Analyst || Certified Network Security PractitionerYasin Arafat Tanim @yatanim007
7 Followers 316 FollowingSalik Seraj Naik @code_with_ssn
818 Followers 350 Following 🧑🏻💻 Learning FullStack | 🤖 Exploring AI | 🧠 Delving into ML | 🛡️ Cybersecurity Enthusiast | CSE`2027Rafiqul Islam @RirRipon
39 Followers 241 Following They plan. And Allah plans. And Allah is the best of planners. ~ Qur'an 8:30Sayim @sayim0x
693 Followers 300 Following Cyber Security Researcher || Ethical Hacker || Bug Bounty || Pentester at YogoshaArshad Kazmi @arshadkazmi42
685 Followers 332 Following 🚧 https://t.co/CmNev0yU4Q 🔍 https://t.co/y9nGPrujbt 🔔 https://t.co/uWsbL0pbvz 👁️ https://t.co/OB1Xq7HxKh 🚀 https://t.co/DBEssD8gUk 👥 https://t.co/1ocXNqlm41Rasel Mir @araselmir
1K Followers 1K Following Intigriti Top 25 || Intigriti 2023 Q3 Leaderboard 1st || Bug Hunter || Penetration Tester || Programmer || StudentNazmul Hossain Nirab @x1337loser
3K Followers 43 Following A 23 yr old Hacker, Gamer, Eater, Trainer, programmer(python, go, bash) Hungry learner, Noob at bug bounty😪😪Alwoares Naeem 🇧�.. @a1woareS
1K Followers 220 Following Cyber Security Researcher || Ethical Hacker || Dreamer || ewptX || Penetration Tester @YogoshaOfficialLeonidas D. Ace (Md R.. @L3onid1s
2K Followers 625 Following Bug Bounty Hunter || Top 4 Security Researcher in @TecnoSRC 2022Sagor Khondokar @SagorKhond52880
59 Followers 207 FollowingSyed Mushfik Hasan Ta.. @SMHTahsin33
4K Followers 337 Following Cyber Security Enthusiast | Learner | Free Time Bug Bounty Hunter | Ambitious | eWPTXv2 | Admin @bbcbd_official🇧🇩Dolphin Bhuyan @DolphiN_NA3
11 Followers 260 FollowingJerry @JerryShah33
838 Followers 161 Following | Penetration Tester | 🐞 | Digital Forensics | 🔎 | Threat Hunting | 🚨 | CISP | eJPTv2 | eWPTXv2 | CPTC | Database Security for Cyber ProfessionalsTahsin Akbar Ohi @akbar_ohi
574 Followers 281 Following 19 Years old || Bug Bounty Hunter || Tech Enthusiast || BusinessmanYoussef Sammouda (sam.. @samm0uda
32K Followers 430 Following Hacker, bug bounty hunter, guy behind https://t.co/TBAtP71Cop. 1st in Meta bug bounty program for the last 5 years. YES Team Memberzax @itsz4x
853 Followers 677 Following Security Researcher | Security Stuffs Learner | Explorer | Self Learner | Biker | Tourer | Movie Lovers | Foodie🤘--------- Let's Break SecuritiesXSS Payloads @XssPayloads
43K Followers 0 Following_A_S_H_ @0x0Ashik
26 Followers 291 FollowingSunil Yedla @sunilyedla2
9K Followers 230 Following Trying to make Internet a safer place 👨🏼💻 by helping companies find security loopholes. Hustling to make my parents proud! 🧡Sam Curry @samwcyo
77K Followers 949 Following Hacker, bug bounty hunter. Run a blog to better explain web application security.Sayaan Alam @ehsayaan
9K Followers 955 Following Offensive Security Researcher /Student/Bug Bounty Hunter | SRT Hero at @Synack Red Team | H1/Bugcrowd - sayaanalamNir Goldshlager @Nirgoldshlager
9K Followers 592 Following Senior Director of Product Security at https://t.co/vjnYDTNyOW Disclaimer: I speak for myself, not my employer.Hisxo @adrien_jeanneau
9K Followers 1K Following 📍 @yeswehack (aka Hisxo) - I love to break things (and I'm paid for that) - Bug Hunter 🔗 Check my Github repository https://t.co/Sj3prhiZyu #BugBountyShristy Singh @shut_up_shristy
13 Followers 173 Following A Comp Sci Student who thinks that she can find bugs in apps. Lmao Deleted previous ID Due to anxiety issue. Now Just following Hackers😎Pranav Bhandari @PranavBhandari6
515 Followers 5K FollowingShakti Ranjan Mohanty.. @3ncryptSaan
4K Followers 149 Following Hackerone Brand Ambassador || Ethical Hacker || Penetration Tester || Bug hunter || H1 verified Clear Hacker | Lead Security Manager @threatsysnadino @Agornello
1K Followers 178 Followingroot@AkashHamal0x01:~.. @AkashHamal0x01
7K Followers 691 Following Solo | https://t.co/I6KH8WN8nm | Community Helper 🤝| WebApp Security 🐞 | Avid Learner 📖 | Male | Father of One | Married 💍Ashraful Aashiq @ashraful_aashiq
9 Followers 17 Followingshubs @infosec_au
50K Followers 2K Following Co-founder, security researcher. Building an attack surface management platform, @assetnoteKatie Paxton-Fear @InsiderPhD
82K Followers 2K Following Dr, apparently. Creator @traceableai, Lecturer & Hacker. #BugBounty hunter & #infosec YouTuber. APIs & Interlinked OffSec, PhD in AI+Sec @hacknotcrime. she/herKeshav Tiwari @krasivyy_keshav
110 Followers 27 Following Man On Mission, Slow-Motion Multitasking 💥💥, trying to find out real meaning of worldBug Bounty Community .. @bbcbd_official
2K Followers 9 Following Bangladesh's Bug Bounty Community Official Twitter , Stay Tuned For Updates About Bangladesh Bug Bounty / Infosec Events and ChallengesFaizan Nehal @faizannehal1
1K Followers 309 Following Blockchain Security Engineer/Ethical Hacker | @Hacker0x01 | DM for AuditsHasan Khan @Hasan_Khan0X
848 Followers 1K Following Web Penetration Security Testing Engineer | Bug Bounty Hunter | Ethical Hacker | Cyber Security ExpertI learnt many good stuffs with @ptsecurity at @GISECGlobal! #GISEC2024
Yeay, I was awarded for a valid submission on @HackenProof hackenproof.com #hackenproofed #bugbounty
"Right now, it's really not challenging to execute a prompt injection and have an AI model do something it's not supposed to do - there are a lot of tricks. It's hard to fully trust something until you've really pressure tested it yourself." -Tanner Emek, hacker. #SecurityAt
@jobertabma Was waiting for this feature for a long time… ✨
يا راجل لا لا لا لا
OctaSpace is the epitome of DePIN. A platform that offers👇 - Fastest rendering solution with an unparalleled throughput of 17,000 tasks per second - Train exclusive AI models and launch groundbreaking AI apps - VPN: offering complete anonymity by bypassing geo-restrictions.
How I escalated to admin through an import feature. The writeup is up. #pentesting #appsec #cybersecurity #infosec cristivlad.medium.com/privilege-esca…
Security leaders, ethical hackers, and HackerOne experts have gathered in SF for stop #2 of the #SecurityAt Global Tour! 🙌 The star of the show? A deep dive into HackerOne's GenAI copilot, Hai, which is now generally available for all HackerOne customers. Here we go!
R'evolution is here Iterating on the source code level, Glide.r.xyz is the only tool offering running taint, variant, and data flow analysis scenarios for all deployed smart contracts across any EVM chains Discover unlimited use cases of an unmatched query language
Another day, another #SQLInjection. This time, it's in the User-Agent header, leading a full database takeover. Keep testing SQLi on everything and everywhere... #SQL #SQLInjection #BugBounty.
Faster Than Flash ⚡️ How a ‘.git’ file Leads to Zendesk Panel Takeover by @sl4x0 link.medium.com/5qMoLTSB5Ib
I'm working on a CTF and need a clever name: What does JWT stand for? Wrong answers only!
The impending merger between Dialog Axiata and Bharti Airtel will drive synergies and unlock improved economies of scale, accelerating shared efforts to deliver market-leading telecommunications services to Sri Lankan customers #AdvancingAsia #ThisIsAxiata
Seasoned hackers: Give your best advice for someone interested in pursuing a career in cybersecurity.
When you’re moving funds cross-chain, security isn’t a nice to have–it’s a necessity. Announcing Transporter. Level-5 Security, 24/7 customer support, and the easiest user experience in crypto.
Fantastic final day at @GISECGlobal, Engaging discussions, innovative insights, and valuable connections made. Can't wait for next year's event! #CyberSecurity #BugBounty
Just a while ago, I found a pretty interesting Stored XSS which was injected by visiting the URL: https://www\.target\.com/redirectEndpoint.do?redirectPage=redacted&itemFromOrder="'`//><Svg+Only%3d1+OnLoad%3dconfirm(atob("WW91IGhhdmUgYmVlbiBoYWNrZWQgYnkgb3R0ZXJseSE"))> For some…
@h4x0r_dz i get 40k bounty for this, why did you not report before? xd