br1pavesi @br1pavesi
IT Specialist - Pentester - Adversary Expert - Bug Hunter hack, pwn, sleep, repeat over the rainbow Joined April 2012-
Tweets163
-
Followers66
-
Following81
-
Likes2K
@h4x0r_dz @Hacker0x01 I have tested those uncountable times in the report comment section.
@Midjarmaksor The key is to not trust any word lists and read whatever is in front of you and understand the application flow.
#APT #backdoor #liblzma #InfoSec #xz #RedHat #FedoraLinux #xzLibrary #SupplyChainCompromise #Cybersecurity #CVE20243094 #OpenSSH #systemd #TechnologyNews #ssh #linux #kali #CVE-2024-3094
The thing is just that you need to learn how it works before you can learn how to hack it. #BugBountytip #BugBountytips #BugBounty
When there's complexity people take short cuts and things go wrong. #bugbountytip #bugbountytips #bugbounty
Rather than scanning for vulnerabilities, you need to scan for interesting behaviour. #bugbountytip #bugbountytips #bugbounty
It's always better to attempt an attack than assume it won't work. #bugbountytips #bugbountytip #bugbounty
You can never find anything on your first look. #bugbountytips #bugbountytip
Bug bounty hunting is like looking at 10000 things to find 1 thing. #bugbountytips #bugbountytip #bugbounty
Believe in your self. Be persistent. Keep on tring. #bugbountytips #bugbountytip
Don't look for bugs, look for differences. Use the differences to find bugs!
Recon is everything. #BugBountytips #BugBounty #BugBountytip
do not expect anything #BugBountytips #BugBountytip #BugBounty
"Your adversary does not wait for you to finish patching." - The Art of Cyber War
"The enemy does not care what systems were in scope for testing. Protect your weak points." - The Art of Cyber War
Ashley Campos @AshleyCamp88937
130 Followers 3K FollowingKim Young @KimYoun35476865
15 Followers 706 FollowingJustine @micelijustine87
193 Followers 3K FollowingAnastasia Vandergrift @AnastasiaV23382
78 Followers 5K FollowingIman Carlino @ImanC9420
66 Followers 5K FollowingCassandra Dyment @DymeCassand
86 Followers 5K FollowingMalaika Jamir @MalaiJami
88 Followers 5K FollowingStefania Geho @SGeho8444
97 Followers 5K FollowingMartha Dean @MarthaDean23122
72 Followers 5K FollowingLauritz @_lauritz_
2K Followers 1K Following IT-Security Researcher, Pentester, Bug Hunter Passionate about 💻, 🤽♂️, ⚜️, 🎸 and ⚽ (@VfLBochum1848eV ) @[email protected] | @ https://t.co/z4wa2kiTRT (bsky)Megan Frey @MeganFrey266626
74 Followers 3K FollowingOmar Ahmed @0x0ld
146 Followers 87 FollowingTiffany Nguyen @Tiffany8054112
50 Followers 2K FollowingRaffaele Forte @raffaele_forte
1K Followers 456 Following 'Cyber' Security Specialist, Founder and main developer @backbox_org - Proudly married to a Ukrainian woman 🇺🇦Dhinesh kumar @Dhinesh05744549
256 Followers 4K FollowingBetty @frohling95betty
91 Followers 3K FollowingGAMALIEL SANKAY TSHIS.. @SankayMarc22830
237 Followers 3K Followingsw33tLie @sw33tLie
7K Followers 819 Following Hacker and CS student, 23yo. Top 50 @ https://t.co/u2ia5UqJZA https://t.co/ukQXXGMJxT https://t.co/LGYK7tMOGoMaribel Tran @TranMaribe41994
110 Followers 3K FollowingJennifer Bullock @JenniferBu17434
89 Followers 3K FollowingNora @nora47harris
161 Followers 3K FollowingSincere Mays @SincereMay94781
154 Followers 3K FollowingKOUKI 🇹🇳🏴.. @TytylolMark
119 Followers 516 Following Bug bounty Hunter https://t.co/R9UnMz56xi https://t.co/JETwuhIGQ0 #bugbounty 🔮🔮🔮🔮🔮🔮🔮🔮🔮🔮🔮Akshay🚀 @akshay_pachaaer
398 Followers 2K Following Simplifying LLMs, MLOps, Python & Machine Learning for you! • Lead Data Scientist TomTom • BITS Pilani• 3 Patents • Join 2k+readers-›https://t.co/Fh7rvwwp5bThe Partner in Crime @researcher01012
90 Followers 261 Following Cybersecurity researcher and analyzer telegram: https://t.co/YvHB0rjRty github: Soon...Ash Carnov @AshCarnov
447 Followers 656 Following Cybersecurity | Bug Hunter | CompTIA Security+ | OSCP Loading... | Searching for interesting tools | DM if you know any cool projects, NO sponsorshipsLenita @mehtalenita62
184 Followers 3K FollowingKatherine @katherine_ford4
171 Followers 3K FollowingFist cnx @Zaaggy29
386 Followers 1K Followingowner_of_betting @OfficialOgni
14 Followers 137 Following Semplicemente il miglior Tipster grazie al supporto di un team proffessionale. Link del canale telegram dove seguire TUTTE le mie giocate in modo GRATUITO👇👇xxman @xxman1463108
30 Followers 366 Followingboy @boy126945842081
79 Followers 708 FollowingShizuka022560 @shizuka022560
102 Followers 833 Followingด้านมืด.. @dekdedodang
2K Followers 4K Following #หมู่ #ไฮ #ลอย #บิน. ผมได้หมดถ้าสดชื่น ฟิวนัวๆ เดี๋ยวหมู่ ได้หมด. กรุงเทพ ✈🛩🛫🛬อรรถพล @xrrthph62782499
291 Followers 3K Following01x00x01 @01x00x01
136 Followers 1K FollowingIbrahim Auwal @ibrahimatix0x01
2K Followers 404 Following Acknowledged by Google, Yahoo, U.S. Department of Defense, Logitech, Sony, MTN Group, SEGA and many more. https://t.co/8558meNGEPBrute Logic @BRuteLogic
59K Followers 283 Following #CyberSecurity R&D | #XSS | #WAF #bypass | #hack2learn | @rodoassis | @KN0X55 | https://t.co/vOa3E883V00xor0ne @0xor0ne
55K Followers 526 Following | CyberSecurity | Reverse Engineering | C and Rust | Exploit | Linux kernel | PhD | My Tweets, My Opinions :) |Eugene Yakovchuk @h1_sp1d3r
5K Followers 237 Following Toss a coin to your hacker, A friend of humanity.TESS @ArmanSameer95
6K Followers 818 Following Application Security Researcher https://t.co/g0QPLb24tI | https://t.co/XuUMBUWl0x | Most Valuable Hacker 2022 thanks to @bugcrowd | ex @pdiscoveryioKatie Paxton-Fear @InsiderPhD
82K Followers 2K Following Dr, apparently. Creator @traceableai, Lecturer & Hacker. #BugBounty hunter & #infosec YouTuber. APIs & Interlinked OffSec, PhD in AI+Sec @hacknotcrime. she/herMårten Mickos @martenmickos
32K Followers 173 Following On a mission to empower the world to build a safer internet. Believer in the freedom of speech.Chris Evans @scarybeasts
26K Followers 199 Following CISO and Chief Hacking Officer at HackerOne. Past: Founded {vsftpd, Chrome security, Google Project Zero}; Tesla; Dropbox. Hacker / Researcher. beebjit.Damian Strobel @damian_89_
6K Followers 731 Following Penetration tester/Ethical Hacker; Sold my eASM to a NASDAQ company; Founder of an IT security company; Building a Legal Tech AI startup in my spare time :PWebApp Hacker's Handb.. @wahh_fans
221 Followers 69 Following Just another fan of WAHH..by Marcus Pinto, Dafydd Stuttard from @portswigger , @burp_suite! we post excerpts from WAHH and other Infosec books!Supr4s @LdrTom
1K Followers 652 Following Open-source enthusiasts, System administrator and Bug Bounty Hunter on @Hacker0x01 @yeswehack (Top 20)Niv Levy 🇮🇱 @restr1ct3d
5K Followers 3K Following Penetration Testing Engineer / Offensive Security Certified Professional / Bug Bounty HunterWalid Hossain @walidhossain010
3K Followers 437 Following Web app tester || Everything is vulnerable! https://t.co/pReiIkBgEO for pentest: Dm meSickSec 🇲🇦 🇵.. @OriginalSicksec
6K Followers 329 Following SRT Member | I love GraphQL | Hackerone Ambassador 🇲🇦 | Tweets are my own | Riichi #Mahjong Player Master Tier | see https://t.co/hqRuoXEiRv before DM :)Debangshu 🇮🇳�.. @ThisIsDK999
5K Followers 934 Following default BURP user. loves to pwn AEMs and other CMSes. Top 200 @bugcrowdMoblig @Moblig_
5K Followers 121 Following BugCon Mexico 2021 & 2022 #1 Hacker | Offensive Security Engineer | Tweets are my ownFelipe Warrener-Igles.. @fwrnr
2K Followers 259 Following flexing on computers, every bone and muscle. Prev. Vulnerability Research @withsecure / @pwc_ukNathaniel @nnwakelam
38K Followers 1K FollowingFat @fattselimi
12K Followers 7K Following Hacking for fun and profit @Hacker0x01 @Bugcrowd @intigriti #CyberSecurity #1 @BMWGroup | Pentester @CytadelEuSix2dez @Six2dez1
9K Followers 508 Following Ethical hacker | bash lover | https://t.co/UoQ57OTS7f | reconFTW | @vismaAkita 🇦🇷 who Am.. @akita_zen
25K Followers 1K Following Hacker / Zen Monk / Energy Master / Bugbounty Hunter Founder of Nothing - Being Nothing - Silence - NoTime - only SpaceShreyas Chavhan @shreyas_chavhan
2K Followers 288 Following Hacker | Secured Microsoft, OpenSea & more | Slaying Bugs Full Time with My Nichirin Sword (aka Burp) since Aug 2023 | Analytical Psychology Enthusiast - Ni DomOffSec @offsectraining
311K Followers 119 Following Empowering the world to fight cyber threats with indispensable cybersecurity skills and resources. Build the path to a secure future with OffSec.Burp Suite @Burp_Suite
118K Followers 13 Following Burp Suite is the leading software for web security testing.publiclyDisclosed @disclosedh1
56K Followers 2 Following This is an unofficial HackerOne public disclosure watcher who keeps you up to date about the recently disclosed bugs. By @NOBBD[email protected].. @IAmMandatory
12K Followers 486 Following Red Teamer, meme archivist, XSS Hunter author, DNS/TLD/web security researcher.Youstin @iustinBB
4K Followers 299 Following Bug Bounty https://t.co/zHVPVuGKCf https://t.co/yOdrIW1G71Nagli @galnagli
33K Followers 556 Following Hacker, Bug Bounty Hunter - Top 5 All Time @Hacker0x01, Top 20 @BugCrowd. Live Hacking Events Winner & Founder of @shockwave_sec - Attack Surface ManagementJuan Francisco Bolív.. @JFran_cbit
1K Followers 1K Following Cyber Security Professional / https://t.co/IUjNkOiegi / https://t.co/7KuvbyStUYValerio Brussani @val_brux
3K Followers 860 Following Hacker / Bug Bounty | @nozeroio | @Hacker0x01 Ambassador | @SynackRedTeam SRT | Lead Pentester @Cobalt_io | @BugCrowd | CTF @mhackeroniharris0ft @harris0ft
2K Followers 107 Following Hacker, Independent Security Researcher. hackerone All-Time Top 100 | https://t.co/ylJxk5BU2Kmhmd berro (badcracke.. @badcrack3r
4K Followers 260 Following 21 Years old. Researcher at hackerone. Known as badcracker. Listed at more than 100 companies hacker's hall of fame.Aditya Shende @ADITYASHENDE17
51K Followers 422 Following MS Cyber 🇬🇧 | Bugcrowd Top 100 | Overseas Pentest Trainer | Keynote Speaker | Professional Biker | 🌎 @kong_sec 🦍Bhavuk Jain @bhavukjain1
12K Followers 606 Following Trying to make internet a safer place for everyone. Pentester @Hacker0x01Lauritz @_lauritz_
2K Followers 1K Following IT-Security Researcher, Pentester, Bug Hunter Passionate about 💻, 🤽♂️, ⚜️, 🎸 and ⚽ (@VfLBochum1848eV ) @[email protected] | @ https://t.co/z4wa2kiTRT (bsky)smaury @smaury92
3K Followers 2K Following Co-Founder @ShielderSec | Cliff Jumping Lover (23mt max so far) | I knew all the rules but the rules did not know me.Eldar @PikuHaku
960 Followers 162 Following Ex-developer| Cybersecurity analyst currently based in Sweden| Bug bounty hunter @Yeswehack, @Intigriti, @Bugcrowd.| CTF player @KalmarunionenDMCritical Thinking - B.. @ctbbpodcast
13K Followers 50 Following A 'by Hackers for Hackers' podcast focused on technical content ranging from bug bounty tips, to write-up explanations, to the latest exploitation techniques.d0xing @d00xing
6K Followers 790 Followingshubs @infosec_au
50K Followers 2K Following Co-founder, security researcher. Building an attack surface management platform, @assetnoteOops !! seems someone has been scammed... This issue wasn't reproducible when I rechecked it after resolved, but now it appears the issue has been reappeared and someone sent a report but this triager reopened this from nowhere and probably duplicated that one #bugbounty
It took 3 years but finally I feel ready to release my Pwn2Own 2021 exploit code. 💖 Video talk covers my full research workflow, from attack surface modeling and reverse engineering, to vulnerability discovery and systematic exploit engineering, enjoy! #Pwn2Own
Release: VM Escape Exploit for Parallels Desktop Hypervisor (Pwn2Own 2021) zerodayengineering.com/research/pwn2o… A virtual machine escape exploit will typically require kernel privileges in the guest OS. In this exploit I chose to offload the reverse-engineered toolgate protocol…
Byte Fallback XSS Vector <Scri%7Kt> %7Krompt%6K1%6K </Scri%7Kt> PoC brutelogic.com.br/tests/byte.php… Useful to bypass WAFs in some Java apps. Included in @KN0X55 Credit:@BRuteLogic #BugBountytips #BugBounty
Bypass open redirection whitelisted using chinese dots: %E3%80%82 Tip: Keep eyes on SSO redirects #bugbounty #bugbountytips #bugbountytip
@nnwakelam Mhm... Auth Bypass to a portal of a car sharing company which allowed access through a hidden backdoor (which I also discovered) to an (middle eastern country here) police/law agency... Got critical payout plus bonus
Introduction to Linux kernel exploitation main concepts by @Coiffeur0x90 Part 1: therealcoiffeur.com/l0.html Part 2: therealcoiffeur.com/l1.html #Linux #cybersecurity
This is first writeup of my friend's @0x0ld ! #bugbountytips
My First Writeup, Hope you guys like it medium.com/@0xold/null-by…
Join me on tomorrow's Off By One Security stream at 11AM PT, as we cover a bit on getting started with reverse engineering and debugging. This will be a series to help those of you preparing for your self-learning journey or an upcoming course! youtube.com/watch?v=pgkAmg…
This Friday's Off By One Security stream will be on the topic I've "Quote Retweeted." We're going to start with the introduction to reverse engineering. It will be technical, but introductory, and then we'll ramp up through a series over the coming months. Come with questions!
🌟Hunting Blind XSS on the Large Scale🌟 👉Part 1- lnkd.in/g-RyKvUm 👉Part 2- lnkd.in/gQnY69wZ 📥t.me/brutsecurity #bugbountytip #bugbountytips #ethicalhacking #CyberSecurity #Pentesting #sqli #xss #CyberSecurityAwareness #bugbounty #GitHub #oswe #offsec
Writeup on exploiting Kernel SMB Daemon (ksmbd) in Linux kernel Credits @notselwyn buff.ly/3NhKYEr #Linux #kernel #infosec
This repository contains a lot of web and api vulnerability checklist Source: github.com/Az0x7/vulnerab… Credits:@wtf_brut #bugbountytips #bugbounty #bugbountytip #bugbounty #infosec #datasecurity #networksecurity #cyberaware #cyberdefense #cyberthreats #cybersafety #cyberattack
A very digestible presentation about fuzzing with LibAFL and QEMU. Slides: fahrplan.events.ccc.de/congress/2023/… Code: github.com/AFLplusplus/Li… #37c3
See our (@aflplusplus team's) talk on how to "Fuzz Everything, Everywhere, All at Once" with LibAFL and QEMU today at 13:50 on Stage 1 at #37c3 #LibAFL #Fuzzing
SSRFire - an automated SSRF finder ow.ly/KoON50QlPbl #infosec #cybersecurity #redteam #pentest #pentesting #hacking #hackers #coding #opensource
Parte 3 del CURSO de reversing de C++ youtu.be/E_ct-gB6nsc
Google Dork - Open Redirects inurl:(url= | return= | next= | redirect= | redir= | ret= | r2= | page=) inurl:& inurl:http site:example[.]com
#BidenCash, the market place for stolen credit cards, has released a new and free archive with over 1 million cards! 🚨 This is the fourth archive to be released in two years, generally the data is true and from web skimmers! 💳 #creditcard #dataleak
Spray365 - a password spraying tool that identifies valid credentials for Microsoft accounts (Office 365 / Azure AD) ow.ly/belK50QjgiY #infosec #cybersecurity #redteam #pentest #pentesting #hacking #hackers #coding #opensource