Top 100 #BugBounty tips I could gather. If you found this useful please share so more people can take advantage of these #BugBountytip!
thexssrat.podia.com/full-house-bun…
Read the program policy twice; list explicit out-of-scope patterns.
Build a target map: assets, subdomains, APIs,…
GIVEAWAY!! 🔥
We’re giving away 1 seat of @AlteredSecurity Certified Evasion Techniques Professional (CETP) – Evasion Lab. 🚀
👉 How to participate:
1️⃣ Like 👍 this post
2️⃣ Repost🔁
3️⃣ Comment 💬 what makes it useful to you
4️⃣ Follow @nikhil_mitt & @AlteredSecurity
A random…
🚨 50 Places Hackers Always Check for Leaks (and Devs Always Forget) 🚨
thexssrat.podia.com/full-house-bun…
If you don’t look here… the rats will.
/robots.txt – hidden endpoints
/sitemap.xml – juicy URLs
.git/ – repo dump (thanks for this one @bl4ckh4ck5 )
.svn/ – old school loot…
ONLY 2 DAYS TO GO! ⏳
Just 2 more days until "From Day Zero to Zero Day" ships from Amazon! This book means a lot to me and I want to thank everyone who’s joined and supported this journey 🙏
Pre-orders still open - link in comments! 💌
🚨New Black Hat research released: Over $200k in bounties earned in just two weeks. Join the movement to kill HTTP/1.1 today ⬇️
🔍PortSwigger’s James Kettle (@albinowax) introduces two new classes of HTTP desync attacks capable of compromising credentials on tens of millions of…
Not at Black Hat / DEF CON? You can still join the mission to kill HTTP/1.1:
- Watch the livestream from #DEFCON at 16:30 on 8th
- Read the whitepaper on our website
- Grab the HTTP Request Smuggler update & @WebSecAcademy lab
Follow for updates & links. It's nearly time!
If you want to be good you need to check for good quality content. @spaceraccoonsec did a master piece. “From Day Zero to Zero Day”
Grab yours. I just did.
nostarch.com/zero-day
963 Followers 3K FollowingAll opinions are my own unless I borrowed them from someone else.
Founder & Queen of Details @AppSec_Village
Head of Field/Channel Marketing, EMEA @Penterasec
11K Followers 6K FollowingAppSec Village @DEFCON & @RSAConference
A volunteer-run, non-profit focused on education, awareness, and community. Founded by @erezyalon and @tzionit411.
83K Followers 16 FollowingTrend Zero Day Initiative™ (ZDI) is a program designed to reward security researchers for responsibly disclosing vulnerabilities.
11K Followers 393 FollowingWeb security news and views. The latest on bug bounty programs, technical research, hacking tools, and more. DMs open for tips.
20K Followers 438 FollowingHacker, Infosec Researcher, Military Affairs & History, PowerShell, AD and Azure pwner, Creator of Nishang and others :)
Founder @alteredsecurity
6K Followers 421 FollowingAntisyphon Training is here to disrupt the traditional training industry by providing high-quality and affordable education to everyone.
2K Followers 1K FollowingDirector of Kindness and Generosity @BHInfoSecurity ~ lover of Jesus ~ wife of a mountain man ~ mom of 4 wiglets ~ friend of many ~ fan of humans & adventure
10K Followers 1K FollowingPenetration Testing, Purple Team, Red Team & Adversary Emulation, Security Posture Review and Training
Let our Offense, Prepare your Defense.
#weareoffensive
241K Followers 1K FollowingCreator of @haveibeenpwned. Microsoft Regional Director. Pluralsight author. Online security, technology and “The Cloud”. Australian.
17K Followers 3K FollowingCo-Founder of @CygentaHQ former head of cyber research @Raytheon - Keynote Speaker, ethical hacker and physical security specialist. Author of How I Rob Banks.
65K Followers 2 FollowingThis is an unofficial HackerOne public disclosure watcher who keeps you up to date about the recently disclosed bugs. By @NOBBD
57K Followers 875 FollowingBuilding communities one event at a time. Thirteen years, over eight hundred events, and we're just getting started.
@[email protected]
242K Followers 869 FollowingThe only magazine dedicated to the strategy and technology of information security, delivering critical business and technical information for IT professionals.
62K Followers 307 FollowingPresident SANS Technology Institute College. SANS Fellow. CEO @CounterHackSec. @RSAConference Keynoter. IANS Faculty. BoD @manasquanbank & https://t.co/WD7vkoH5lH.
55K Followers 3K FollowingDirector of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]
332K Followers 2K FollowingIndependent investigative journalist. Author of 'Spam Nation,' a NYT bestseller. Former Washington Post reporter. Mastodon: https://t.co/fTKNavlMwp
349K Followers 325 FollowingWe are prioritizing security above all else through our Secure Future Initiative (SFI). Explore SFI principles, pillars, and progress here ⬇️
2K Followers 78 FollowingFounded by Lena Yu aka @LambdaMamba | Run by World Cyber Health (WCH) Non-Profit | Discord: https://t.co/JE25nRRco6 | Email: [email protected]
145K Followers 215 FollowingWe are the Microsoft Security Response Center. To report security vulnerabilities or abuse in Microsoft products, visit https://t.co/kxEbdfMny1.
43K Followers 284 FollowingYapping about AI, AppSec, Hacking, & Cybersecurity • Helped secure organizations like Google • Opinions are my cat's • Part-time shitposter