Armand J. @_Zer0Sec_
Pentester || Red Team Bro || Guitar Shredder bugcrowd.com/Zer0_Sec Joined August 2021-
Tweets199
-
Followers2K
-
Following158
-
Likes467
This week, Disclosed. #BugBounty Spotlight on CodeRabbit Exploit, NahamSec’s DEF CON vlog, Swiss Post’s €230K challenge, new tools for hunters, and more. Full issue → getdisclosed.com Highlights below 👇 @KudelskiSec details how vulnerabilities in CodeRabbit’s AI…
hacker summer camp @_Zer0Sec_ @VailSec @c7five
Love this, so sick! 🔥
The team did some damage over the weekend! Can’t wait till the next hack sesh! In IDORS/PrivEsc/Account Takeovers we trust! 🤙🏻💥 #bugbounty
The team did some damage over the weekend! Can’t wait till the next hack sesh! In IDORS/PrivEsc/Account Takeovers we trust! 🤙🏻💥 #bugbounty
Raining IDORs/Account Takeovers already! 💪🏻💪🏻
Raining IDORs/Account Takeovers already! 💪🏻💪🏻
Bug Bounty is painful stressful Im doing Web Application Security Since i was 10 and now im now 24 if you think Bug Bounty is easy or you can get quick cash from it, Bug Bounty is just not for you. #bugbounty #ethicalhacking
Okay real talk: if your only motivation to get into #BugBounty is money, you’re not going to make it as a bug bounty hunter. It’s not enough to get through the time it takes to learn, the hours on a single website to find a single bug. Money AND is okay but money alone is just…
This is going to be sick! 🤙🏻 #defcon #bugbountyvillage
This is going to be sick! 🤙🏻 #defcon #bugbountyvillage
Back from a bounty break and straight into some sick finds! 🤙🏻 Sometimes, things don’t have to be super technical! EX: If a path with .git/ = 403, then /.git/config might be 200! Then from there, the wonderful pillaging can begin! 😅 #git #bugbountytips #bugbounty
Checked out the leaderboard for October and saw that I made the P1-P2 rank train! 🤙🏻🤙🏻🤙🏻 Big props to @Bugcrowd for providing such an amazing platform to hack on! #bugbounty #ethicalhacking #bugcrowd
SQLi Tip - If you're able to find a JSON POST-based potential SQL injection (SQLi), remember to execute the SQLMAP query with -u and --data using JSON input. I've found more success using this method in SQLMap than when using a request file. #BugBounty #SQLi
Forgotten assets =🥰 Found subdomain Fuzzed > saw report/portal > 302 to /new_login.asp > SQLi failure Tried OLD_login.asp > saw older panel ' test = 500 error Sleep test = Response delay 👍 DB info w/ SQLMap Sleep payload: ';%20waitfor%20delay%20'0:0:6'%20--%20 #bugbountytips
Excited to launch my first browser extension, DOMLogger++! Now available for both Firefox and Chromium! 🎉 DOMLogger++ allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations 🔥 Check it out 👇 github.com/kevin-mizu/dom… 1/5
My Crackhead-Recon the past week was wild! 403's aren't so scary! 😎😈 Saw 403's > Read JS files > Collected endpoints via GAP/Scripts + heavy OSINT > Tested further for Access Control issues > Exposed PII/Confidential content. In that order. #ethicalhacking #bugbountytips
Back from a hack break! 😈 App allowed message sending > Subject was pre-filled Saw "message[body]" in the request Manipulated request to include "message[subject]" along with Blind XSS payload Admin reviewed message > triggered payload #weirdshit #bugbountytips #bugbounty
In this blog you can see how Path Normalization can help you find amazing bugs: How I Hacked A Crypto Company And Could Steal 1 Million Dollars Worth of Bitcoin zoidsec.medium.com/how-i-hacked-a… By @z0idsec #bugbounty #bugbountytip #bugbountytips #ethicalhacking
Ran into an XPath/Error based SQLi while waiting for my flight to Vegas!🤘 Saw MySQL error > poked around > extracted DB Payload: '+AND+extractvalue(rand(),concat(0x3a,(SELECT+concat(0x3a,schema_name)+FROM+information_schema.schemata+LIMIT+0,1)))+%23 #bugbountytips #defcon
JS file parse + Forced Browsing while unauthenticated 🤙🏻 😎 1. Saw admin endpoints in a JS file 2. Led to 403s 3. Fuzzed > found /adminarea/users/images but 403 again 4. Burp > Intruder > fuzzed /users/1-100 5. Large listing of actual user photos/PII #BugBountytips #BugBounty
Akinola Rhaj @AkinolaRhaj
2 Followers 126 Following
Elnur Atayev @ElnurAtaye76270
7 Followers 305 Following
.... @__qazxswe
1 Followers 1K Following
Leverage 12 @12Leverage
22 Followers 1K Following
7hund3r_4l4n @sibi_krishh
7 Followers 396 Following
mahmoud jamal @mahmoudjam56372
1 Followers 224 Following
Dummy Account @Asta_nine
1 Followers 612 Following
ᎷᎯ ᎷᎠᏫᏌ�... @roiyO5h61dJyfuy
1 Followers 101 Following
Mohammad Mansour @Mans4Hack
1 Followers 350 Following 🐞Bug Bounty Hunter | 🧑💻 Cyber Security Researcher | 💣 Breaking systems to make them safer
Ard Aguilar @mosesard95
14 Followers 267 Following
ability @abilityhac7er
1 Followers 99 Following
TESS @ArmanSameer95
7K Followers 946 Following Application Security Researcher https://t.co/g0QPLb24tI | https://t.co/XuUMBUWl0x | Most Valuable Hacker 2022 thanks to @bugcrowd | ex @pdiscoveryio
devops123 @devops12350265
3 Followers 198 Following
Ayegbusi Paul @zeteo_sec
325 Followers 527 Following Cybersecurity🫠 | ☁️ Cloud Security | Web3 Security | 🛡️ Breaking & Defending | 🚀 Documenting my journey | @veritas_hub_
Umme Tahura @ummetahura
15 Followers 264 Following Works about #wordpress, #webdesign, #elementor, #webdevelopment, #landingpage
Nis_sec @BugBugproofmind
52 Followers 881 Following cybersecurity guy | Breaking things so others can sleep better | Bug Hunter | Scope sniper #SecurityResearcher
LogicBreaker @sangithinba
113 Followers 2K Following 🐞 Bug Bounty Hunter | 🧠 Think like a dev, hack like a ghost Focus: Business Logic | RCE | LFI | SSRF On a $10K mission | #YesWeHack #bugcrowd
Bumblebee @Lolippop23
175 Followers 2K Following Cybersecurity & AI enthusiast | Offensive Security Learner | Building, breaking & understanding systems | Curious mind
The 0uts1der @The_Outs1derX
41 Followers 250 Following Bug Hunter | Vulnerability Researcher | Tools: EyeOfGod - Secret scanner (In development)
Muhammad Usman @Muhammad2983601
48 Followers 827 Following My name is Muhammad Usman and i am a student of BS in cyber security and also learn mern stack development from Smit
Gagan Mg @GaganMg8
8 Followers 147 Following
r3Y3r53 @r3y3r53
1 Followers 43 Following AI Security | Red Teaming | LLM Vulnerabilities | Researching adversarial ML & model safety.
Kyrillos Gabra @KeroGabra2
13 Followers 439 Following
Mokhtar Wael @mokhtar0x1
2 Followers 162 Following
JEJE × HACKS @hacks_je
15 Followers 238 Following
r00tdaddy @rootd4ddy
39 Followers 363 Following
Aymen Saleh @AymenSaleh45
2 Followers 52 Following
sherif @0xCOD3
71 Followers 1K Following ”I have seen everything that is done under the sun, and behold, all is vanity and a striving after wind“
Mr. @al1k0k
61 Followers 1K Following
比个心 @vbigthing
89 Followers 4K Following
acissmuss @Nathannn_7
2 Followers 281 Following
NullCore Labs @NullCoreLabs
2 Followers 269 Following Proactive security testing tailored for fast-moving startups and growing SaaS products.
Anaori @an40r1
1 Followers 140 Following
Asmaa Ibrahim @AsmaaElfet60908
348 Followers 2K Following just Security (ʘ‿ʘ) / bug hunter / web penetest /problem solver some knowledge in AI وما قتلَتْني الحادثاتُ وإنما حياةُ الفتَى في غير موضعه قَتْلُ
saroon @saroon1241
32 Followers 615 Following
apac-publisher @ApacPublisher
144 Followers 2K Following Asia Pacific Academy of Science Pte. Ltd. provides an important bridge for communication and sharing for academic groups around the world.
Naim Shaikh @NaimShaikh4211
26 Followers 486 Following Cyber Security Expert | Bug Bounty Hunter | Expert Speaker
Prophet Media @media_prophet88
0 Followers 12 Following
badmash jatt @badmash1337
573 Followers 798 Following 📍سرزمینیں پاکستان | منزلیں بہادروں کا استقبال کرتی ہیں بزدلوں کو تو راستے کا خوف ہی مار دیتا ہے
Epic186 @epic18612495
30 Followers 1K Following
Coffin @coffinxp7
25K Followers 207 Following 🕵🏻♂️| ꜱᴇᴄᴜʀɪᴛʏ ʀᴇꜱᴇᴀʀᴄʜᴇʀ | ᴄᴏɴᴛᴇɴᴛ ᴄʀᴇᴀᴛᴏʀ | ᴡʀɪᴛᴇᴜᴘꜱ: https://t.co/xRCKfLzQG7 |ᴡᴇʙꜱɪᴛᴇ: https://t.co/pjFfqTxbZO | ᴄᴏᴍᴍᴜɴɪᴛʏ: https://t.co/5p05U7h0BM
Chintan 'Frogy' Gurja... @iamthefrogy
4K Followers 131 Following Threat Detection Manager | OSCP CEH CTIA CCFA CCFH | Focus: CTI/SIEM/TH/VM/Pentest | Ex. TikTok, KPMG, M&S, Tesco #cybersecurity #bugbounty #pentest #infosec
TESS @ArmanSameer95
7K Followers 946 Following Application Security Researcher https://t.co/g0QPLb24tI | https://t.co/XuUMBUWl0x | Most Valuable Hacker 2022 thanks to @bugcrowd | ex @pdiscoveryio
Claude @claudeai
140K Followers 1 Following Claude is an AI assistant built by @anthropicai to be safe, accurate, and secure. Talk to Claude on https://t.co/ZhTwG8dz3D or download the app.
xss0r @xss0r
6K Followers 3K Following xss0r Deploying an alert box in a web app is like having a tiny pop-up comedian shout 'Surprise!' whenever you least expect it! #xss0r #ibrahimXSS #Blindxss0r
Dave W Plummer @davepl1968
89K Followers 75 Following Hi! I'm Dave Plummer. You might remember me from such Windows components as Task Manager, Windows Pinball, Calc, ZIPFolders, Product Activation, etc. Cheers!
Bug Bounty Village @BugBountyDEFCON
8K Followers 579 Following Official X account for the Bug Bounty Village @DEFCON. Founded by @infinitelogins and @arl_rose.
Profundis.io @profundisio
900 Followers 0 Following Mapping the internet - turning DNS/host data into intel for sec teams, OSINT & bug-bounty hunters. Automated recon & real-time alerts.
Phil Winwood @yppip
622 Followers 2K Following All things security - pentester - bug hunter - researcher
Akshansh Jaiswal @Akshanshjaiswl
2K Followers 635 Following Security Engineer @CRED_club , Curious about things revolving tech, AI and Red Team 😛 https://t.co/8OrW8kFChm
Intigriti @intigriti
195K Followers 657 Following Bug bounty & VDP platform trusted by the world’s largest organisations! 🌍
Gi7w0rm @Gi7w0rm
18K Followers 801 Following Threat Intelligence Analyst | See my Linktree for other socials | In case I post false intel, contact me! Support me: https://t.co/5WgDqr0K8p 🇪🇺🇩🇪🇺🇦🌈
Wario64 @Wario64
1.3M Followers 675 Following video games. I tweet deals which may contain affiliate links. As an Amazon Associate I earn from qualifying purchases. Epic Creator Code: Wario64
Soroush Dalili @irsdl
20K Followers 912 Following Hacker (ethical), web appsec specialist, trainer, tools builder & apps breaker, @SecProjectLtd founder 🕸️https://t.co/YipuTcYnWc🥷 🍏A dad-joke maker🍐
Dean Pierce 🐘🌿�... @deanpierce
2K Followers 1K Following Security researcher from Portland Oregon. @deanpierce | https://t.co/Vg8VrpaM0z, lens, farcaster, bsky, discord, telegram, etc.
ramsexy @plmaltais
8K Followers 755 Following French-Canadian hacker 🇨🇦 Full-time bug bounty hunter 🐛💥 Strava Local Legend 🏃♂️💨 Surfing the web and hacking the waves 🌊🏄
Anonymous @YourAnonCentral
5.3M Followers 928 Following Actions Not Nouns. All that exists is interaction. #Anonymous #BindingChaos Follow us on Bluesky https://t.co/WHmDQZjkDZ
mr.d0x @mrd0x
45K Followers 297 Following Security researcher | Co-founder https://t.co/QxBlzp9A8w | https://t.co/zqMXQRZjQN | https://t.co/Fq7WSqTBva | https://t.co/eKezFcO6nd
MrRecon @MrReconOfficial
7 Followers 39 Following ⚡Living on caffeine & exploits | 🏎️ Boosted rides & endless nights | 🛠 Tinkerer for life | 🔧 Building, breaking, fixing | 💬 Always up for tech
Burp Suite @Burp_Suite
132K Followers 14 Following Burp Suite is the leading software for web security testing.
Justin Gardner @Rhynorater
35K Followers 2K Following Christian | Full-time Bug Bounty Hunter | Host of @ctbbpodcast | Advisor @CaidoIO | 4x LHE MVH | 🗣️ English, 日本語 | ♥️ @mariahchan_ ♥️
ProjectDiscovery @pdiscoveryio
38K Followers 132 Following Detect real, exploitable vulnerabilities. Harness the power of Nuclei for fast and accurate findings without false positives.
vxdb @vxdb
19K Followers 418 Following Journalist | Cybercrime News | Signal - vxdb.99 | PGP - https://t.co/VWwniNXrEc
IntelBroker @IntelBrokerBF
7K Followers 64 Following XMPP: [email protected] HackForums: IntelBrokerBF BF: IntelBroker
Dr. Nestori Syynimaa @DrAzureAD
20K Followers 2K Following Principal Identity Security Researcher at Microsoft. Ex-Secureworks. (MSc, MEng, PhD, CITP, CCSK). And yes, opinions are my own ;)
LeakIX @leak_ix
7K Followers 236 Following Provide comprehensive visibility into internet-facing assets. Looking for vulnerabilities and misconfigurations 24/7 since 2020. https://t.co/MEjkffN1xg
FBI @FBI
3.9M Followers 2K Following Official FBI X account. Submit tips at https://t.co/tGqFRcJykB. Public info may be used for authorized purposes: https://t.co/x6bfDUEYeJ.
Stephan Berger @malmoeb
28K Followers 1K Following Head of Investigations @InfoGuardAG https://t.co/A5lnFAu7eX
Dr. Dave Venable @davevenable
13K Followers 10K Following Chair @ISRSngo | Former U.S. Intelligence Officer, NSA, TAO, & StateDept | CISO-in-Residence | @TheCipherBrief | @AiiNonProfit | Art & Rare Book Collector
JayCarnicomDAP @jaycarnicomdap
420K Followers 105 Following Veteran catching child predators, & helping sexual assault victims regain power. Join my Locals for hundreds of full videos!
Shua Mundy @shuamundy
144K Followers 2 Following Creator of Dads Against Predators Click the link for full videos!
Joe Stocker @ITguySoCal
8K Followers 1K Following Christian Family Man, CEO of Patriot Consulting (Microsoft Security Partner) Author of "Securing Microsoft 365" Microsoft MVP (Security) (2020-present)
Delaware Hackers Soci... @DelawareHackers
6 Followers 33 Following DHS is a loosely affiliated group of hackers and security professionals that meet monthly to talk about hacking, infosec, and general geekery.
splitcaber @splitcaber
10 Followers 95 Following Hacker and infosec professional. Founder of @delawarehackers.
Aidan Matzko @AidanMatzko
790 Followers 503 Following you can automate anything | opinions are my own | husband, rock climber, festival goer
Nathan McNulty @NathanMcNulty
17K Followers 1K Following Loves Jesus, loves others | Husband, father of 4, security solutions architect, love to learn and teach | Microsoft MVP | @TribeOfHackers | 🦋@nathanmcnulty.com
John Hammond @_JohnHammond
300K Followers 3K Following Cybersecurity Researcher @HuntressLabs || Just Hacking Training @JustHackingHQ w/ @ethicalhacker || https://t.co/UtsNJiyQtS || https://t.co/narO3sz7y6
Dorki @attaxapty
1K Followers 2 Following Our main product, Dorki, is live at https://t.co/Pt1j4OaROO, and our Attack Surface Management (ASM) platform is coming soon! 🚀🚀
Fox_threatintel @banthisguy9349
15K Followers 265 Following Just a person who is against cyber crime and dictators like Putin
𝚖𝚎𝚛𝚝 🦧 @mertistaken
8K Followers 496 Following mert tasci, bug bounty hunter, all-time rank#1 on critical/high submissions https://t.co/djEccIlebyTrends for United States
You might like
