claddagh🇨🇵 🏴☠️ @c14dd49h
Trust, but verify | Top 25 @yeswehack Discord: c14dd49h#7117 Stop killing children in Palestine 🇵🇸 Joined October 2020-
Tweets427
-
Followers261
-
Following739
-
Likes610
🤩 Experience our #LiveHackingEvent with @LouisVuitton! Held at their Paris HQ, #HMIF2 was an outstanding 30-hour journey for everyone involved. Thanks to the #LV_NEO team, participating hunters & all partners for making it a success! Here’s how it went 👇 #LHE #BugBounty
🔓 Abusing AWS S3 Bucket Permissions 👇 AWS S3 buckets are popular targets for hackers due to potential misconfigurations and improper access control. Let's dive into the techniques attackers use to identify and exploit vulnerable S3 buckets! 1️⃣ Bucket Recon: Spot S3 buckets…
We found a critical vulnerability in #Putty SSH client with NIST P-521 keys, that allows private key recovery from only 60 signatures, CVE-2024-31497! If you use #Putty or #Filezilla with ECDSA P-521, upgrade now and generate a new key! Joint work with @TrueSkrillor, details ⬇️
My coolest and longest to POC bug bounty report was a report @yeswehack for Open-Xchange (OX App Suite). Their whole stack is open-source and as I have received a CVE for the bug in question I thought I would talk about it as it's a class of bug that I enjoy exploiting and one…
Since EA 2024.3.1, it's possible to add custom columns to all the tables visible in Burp Suite In the following screenshot, I simply extract the value of the "Server" header
If you never used the Piper extension, I recommend to watch the 4-minute demo I gave last year during my talk at @NorthSec_io 🛠️ youtube.com/watch?v=N7BN--…
If you never used the Piper extension, I recommend to watch the 4-minute demo I gave last year during my talk at @NorthSec_io 🛠️ youtube.com/watch?v=N7BN--…
First LHE as a young BB hunter but definitely the best event of my career. The orga, the venue, the swag... Everything was amazing. Very happy with my performance: 1 crit, 1 high, 2 mediums. Gonna have to work to catch the top 10 next time 🤣 Really thank you @yeswehack #HMIF2
Time’s up for #HMIF2, our prestigious Live #BugBounty with luxury brand @LouisVuitton! Well done to all participants for another impressive bug haul – especially to our award winners: 🧥 Shellcode Stylist (1st place): @_godiego__ 🧵 Exploit Tailor (2nd place): @djurado9 🎀…
Live hacking event @c14dd49h @yeswehack #paris #bugbounty
Guess who’s back? We’re thrilled to share that Hack Me I'm Famous #2 is almost there! And by almost there… we mean it starts in 2 days’ time 💥 Around 40 European hackers will soon be in Paris for a #LiveHackingEvent that, trust us, will be extraordinary! #HMIF2 Stay tuned 😎
La communauté francophone de bug bounty est plus motivée que jamais! :p La semaine dernière, @adibousec nous a organisé une session de rump qui a rassemblé un peu plus de 75 personnes, directement sur Discord. Merci aux intervenants dont les sujets étaient vraiment cools :p…
Researchers found a zero-click Facebook account takeover securityaffairs.com/159782/hacking…
Nouvel épisode du podcast Hack'n Speak avec @mxrchreborn créateur de Ghunt 🔥 Un super projet open source accompagné d'une anecdote croustillante pour repérer les petits filous 😏 Bonne écoute à toutes et à tous 🎶 podcasters.spotify.com/pod/show/hackn…
Nice trick! PHP 🤝 UTF-8
No, this was no lucky find, but 7 months of pain for me! 7 months ago, I saw something I couldn't sleep on, while it consisted multiple pieces to it which i collected over the months, but it was not yet complete or had little hope to![Thread/2]
@Jayesh25_ There is now an extension available for Burp made by @_0x999 : github.com/0x999-x/jsluic… and it's so cool !
An IDOR, with just an incremental ID (around 200m if we consider the ID began to 1 - but that's a pure assumption), leaking billing details for all shops that have at least a bill. In my honest opinion, that throws the question about their custom CVSS score being unable to really…
An IDOR, with just an incremental ID (around 200m if we consider the ID began to 1 - but that's a pure assumption), leaking billing details for all shops that have at least a bill. In my honest opinion, that throws the question about their custom CVSS score being unable to really…
1. Found subdomain(404 asp[.]net) via recon and start fuzzing dir (aspx&asp) extention. 2. Discovered reset.aspx page (have input username) & paste payload (';waitfor delay '0:0:10'--) and delay worked ;D💸 Yay, I was awarded a $4,565 bounty on @Hacker0x01! #TogetherWeHitHarder
The old auth bypass by editing http responses from 302 to 200 never stops paying. 10 unique endpoints vuln to sqli. Always pay attention to 30x redirects with unusually long responses. Again, another occasion for the “expectation VS reality” check. Will find out soon enough
Noobosaurus R3x 🦖 @NoobosaurusR3x
2K Followers 578 Following L3 H4ck3r L3 Plu5 n00b Du w3b https://t.co/9Ey8TAzkLT https://t.co/jCTWg1DAPeAref Abdollahi @0xaref
16 Followers 265 FollowingK1nz @viet_kien16450
97 Followers 2K FollowingAethlios @AethliosIK
244 Followers 374 Following Technical Lead @YesWeHack | Bug hunter (approximately every 3 months) Need to switch https://t.co/nqVU1qsMX5Plxx @Synacktivs
59 Followers 322 Following Bug Bounty Enthusiast: Sharing insights, tips, and resources for ethical hackers and bug bounty hunters.🥷🏻 @reinuem_
53 Followers 323 Followingda'u @AbdaRamadhani
77 Followers 1K FollowingShivam Singh @ShivamS92846760
34 Followers 2K FollowingNicolas Grégoire @Agarri_FR
26K Followers 608 Following Web hacker and Burp Suite Pro trainer Refer to https://t.co/D5tRH7U2hg for trainings Follow @MasteringBurp for free tips and tricksNoam Hamnich @Noam_Hamnich
87 Followers 377 Following4|!/= @mishkat_alif
14 Followers 401 FollowingJean Jean @GoodVibs17
37 Followers 954 Following j’ai vu un homme aveugle louer du porno ... il doit vraiment aimer le tennisBen Roman @b3yondfi
122 Followers 611 Following web3 GTM Leader I Formerly @b3nFi10 @ Immunefi. On a mission to secure the future of web3. 👀 to connect with Hackers and web3 Projects.Mohamed Abdelaziz @S3ntago
458 Followers 839 Following Bug Bounty Hunter | Pentester | “ you only know what I want you to know, you only see what I want you to see."Dax_hunter @daxsec
1 Followers 74 Followingvandan_bhuva @vandan_bhuva
11 Followers 92 FollowingAbdel Hafid Ait Chikh @HafidAitChikh
809 Followers 3K Following h1 : https://t.co/PFrpt8XVJh Fb : https://t.co/4VPgJuI82lSäthëëshkümär E .. @Thaarai_Sec
31 Followers 671 Following Father, Husband, Son | Tamizhan, Kanadiga & Proud Indian | Hacker | Security Researcher |✨Ziz👑k0oo✨ @1AmrMohamed
93 Followers 742 Following . .🖤ليست بالمدة ، إنما بالعمق 🖤 https://t.co/95JpoAr3nRLee Sparkle @qtwltiger
19 Followers 820 FollowingConstant Learner 🇮.. @_mrbuddhu_
1K Followers 5K Following On Gap 🏖️ | 𝐄𝐧𝐭𝐫𝐞𝐩𝐫𝐞𝐧𝐞𝐮𝐫 🦄 | 360° 𝐄𝐧𝐠𝐢𝐧𝐞𝐞𝐫 🖥️ | Teacher 👨🏫Wheezy @wheezyness
14 Followers 559 Followingannumeena @annumeena19
62 Followers 4K FollowingEngr Shahid Hussain �.. @grShhdHussai1
191 Followers 1K Following 💻| Information Security 🛡 | Ethical Hacking 🏁 | CTF Player { THM ➡3% } 💀 | Pentesting 🐞 | Bug BountyEL Sayed Mohammed @Shari7a0X
484 Followers 1K FollowingAseem Yash 🇮🇳 @aseemyash01
158 Followers 4K Following Cybersecurity student not a pro yet (A lone fighter, carving my own path)Xiety @_Xiety
285 Followers 237 Following Securing the internet one bug at a time :) | Top 15 @YesWeHackHitesh Ramnani @hiteshvramnani
3 Followers 34 FollowingJessica Robinson @JessicaRob46516
10 Followers 768 FollowingManish Dahal @Samayae_
3 Followers 66 Followingprécieux @prcieux28204
37 Followers 290 Followingrajab mubarik @MubarikRajab
53 Followers 116 FollowingJulian Fräbel @JulianFrabel
49 Followers 241 Following @LuccaSoftware developer & Alumni @EpitechNantes / @HeriotWattUni. All code is made with ❤? @0xdeadh
55 Followers 317 FollowingNoobosaurus R3x 🦖 @NoobosaurusR3x
2K Followers 578 Following L3 H4ck3r L3 Plu5 n00b Du w3b https://t.co/9Ey8TAzkLT https://t.co/jCTWg1DAPeCritical Thinking - B.. @ctbbpodcast
13K Followers 50 Following A 'by Hackers for Hackers' podcast focused on technical content ranging from bug bounty tips, to write-up explanations, to the latest exploitation techniques.mosesrenegade - #ReIn.. @mosesrenegade
3K Followers 2K Following BlueSky: https://t.co/0t3eCdEgFL Mastadon: [email protected] Moses Frost. RedTeam at Neuvik. SANS SEC588 AuthorNagli @naglinagli
94 Followers 156 Following חשבון לעברית Hacker, Entrepreneur, Founder @shockwave_sec Bug Bounty Hunter - Top 5 all time on HackerOne & Top 20 BugCrowd Main - @galnagliMasonhck357 @Masonhck3571
14K Followers 716 Following 🔍 Top 100 Bug Bounty Hunter @ Bugcrowd | 🇩🇴 Dominican | Ethical hacking fanatic | 🎮🎵 Lover | Keeping the digital world safe.Joel Margolis (teknog.. @0xteknogeek
14K Followers 1K Following AppSec by day, Hacker by night || Co-host of @ctbbpodcast || Puzzle addictAEMSecurity @AEMSecurity
9K Followers 2K Following Husband + Father | Penetration Tester / Hacker | Interested in Security - Bugbounty - Vulnerability/Exploit Research CVE-2016-0956, CVE-2013-6674, CVE-2014-2018ProjectDiscovery.io @pdiscoveryio
30K Followers 121 Following Making cybersecurity accessible to everyone. Join us for the security conference for all things open source: Hardly Strictly Security: https://t.co/R7NlVw3cBJAssetnote @assetnote
8K Followers 0 Following Assetnote combines advanced reconnaissance and high-signal continuous security analysis to help enterprises gain insight and control of their evolving exposure.chaos @pdchaos
922 Followers 9 Following APIs for the Internet! - A research project by team @pdiscoveryioYassine Aboukir 🐐 @Yassineaboukir
26K Followers 338 Following HackerOne Top 20, Pentest Lead, Ambassador, MVH Title and Hacker Advisory Board • Digital Nomad • Aspiring Athlete.dawgyg - WoH @thedawgyg
53K Followers 967 Following $2 Million Dollar Hacker thanks to @hacker0x01 #h1415 2020 MVH, Bug Bounty Hunter, Reformed Blackhat, Head of AppSec - BrazeEffrite @_cyber_djinn
28 Followers 11 Followinggodiego @_godiego__
3K Followers 1K Following Security researcher and bug bounty hunter. https://t.co/ybndhjqZ5z | https://t.co/ALWTKTdgwc | 🇪🇸Shielder @ShielderSec
1K Followers 2 Following InfoSec boutique. Owning things since 2014. We love to go for the extra mile, where we usually find the best 🦟🐞🪲🪳🐛🐜🕷 the others miss.Noam Hamnich @Noam_Hamnich
87 Followers 377 FollowingVidoc Security Lab @vidocsecurity
2K Followers 25 Following Building an AI Security Engineer to keep up with emerging threat of AI generated code. 🔧 https://t.co/epRtnyLvpTtruff @truffzor
187 Followers 468 FollowingAndrea Dattola @andreadattola96
42 Followers 87 Following Penetration Tester | Bug Hunter | CVE-2022-28866, CVE-2021-26596, CVE-2021-26597 | Hall of Fame (Nokia: https://t.co/ejtedPcQJv)renniepak @renniepak
10K Followers 340 Following Self-XSS connoisseur. Elite Hacker. MVH H11337UPBash. One-Percent Man. Co-Founder @HackerHideout (he/him)Heli9 @Heli__9
1K Followers 200 Following Hacker | Bug Bounty | GWAPT | CEH | Security+ | University of VirginiaJustin Gardner @Rhynorater
27K Followers 2K Following Christian | Full-time Bug Bounty Hunter | Host of @ctbbpodcast | Advisor @CaidoIO | 2x HackerOne MVH | 🗣️ English, 日本語 | ♥️ @mariahchan_ ♥️Xiety @_Xiety
285 Followers 237 Following Securing the internet one bug at a time :) | Top 15 @YesWeHackMatan Berson @MtnBer
965 Followers 203 Following Hacking for fun | H1-65 Eliminator award | AWC23 Best New HackerDr. Serge Zaka (Dr. Z.. @SergeZaka
93K Followers 3K Following Dr. in agrometeorology | Administrator & Stormchaser @infoclimat | Speaker about #climate #agriculture #globalwarming #ClimateEmergency #FrAgTw 🇫🇷 🇱🇧Burp Suite Ninja🥷 @BurpSuiteNinja
376 Followers 1 Following Unleash the ninja within at https://t.co/Qhc8K1TD9a by SecProject Ltd. - This account is not affiliated with PortSwigger𝔸𝕪𝕚𝕣𝕒�.. @mahfujwhh
957 Followers 108 Following ᴄʏʙᴇʀ ꜱᴇᴄᴜʀɪᴛʏ ʀᴇꜱᴇᴀʀᴄʜᴇʀ ᴀᴛ ʜᴀᴄᴋᴇʀᴏɴᴇ | ʙᴜɢ ʙᴏᴜɴᴛʏ ʜᴜɴᴛᴇʀMohamed Fodil @_public_void
2K Followers 533 Following iOS Programming ~ Reverse Engineering | Electronic-ST | WhiteHat | Bug Bounty Hunter | Acknowledged By Apple 🍏Centho @Centho9
1K Followers 75 Following Je suis Centho, l'architecte du chaos virtuel, un agitateur qui sévit depuis des années contre des arnaqueurs en tout genre +33 7 54 46 92 70smaury @smaury92
3K Followers 2K Following Co-Founder @ShielderSec | Cliff Jumping Lover (23mt max so far) | I knew all the rules but the rules did not know me.Eldar @PikuHaku
960 Followers 162 Following Ex-developer| Cybersecurity analyst currently based in Sweden| Bug bounty hunter @Yeswehack, @Intigriti, @Bugcrowd.| CTF player @KalmarunionenDMDjamel Eddine Hakim G.. @djamel_ghorab
37 Followers 10 Following Reverse Engineering, Penetration Testing, Vulnerability Research, Exploits Coding. NodeJSTomNomNom @TomNomNom
69K Followers 1K Following Open-source tool maker, web security person, trainer, talker, eater. He/him. Tools: https://t.co/pVV3LH3UsU YouTube: https://t.co/03Nrl7oBZIBhavuk Jain @bhavukjain1
12K Followers 606 Following Trying to make internet a safer place for everyone. Pentester @Hacker0x01Mike Takahashi @TakSec
21K Followers 531 Following Pentester | Bug Bounty Hunter | AI Whisperer '><embed src=javascript%26%63%6f%6c%6f%6e%3balert('TakSec')>Thanks for the swag pack !! @yeswehack 🔥❤️
Thanks @yeswehack for Pulsar and Blackhole 😄💪🏻 Really nice graphics. #bugbounty
A couple of weeks ago I was in Paris sponsored by @yeswehack to hack @LouisVuitton - it has been GREAT! I scored the 5th place, even though some stuff might still change 👀 Leaderboard: event.yeswehack.com/events/hack-me… #LHE #BugBounty
🤩 Experience our #LiveHackingEvent with @LouisVuitton! Held at their Paris HQ, #HMIF2 was an outstanding 30-hour journey for everyone involved. Thanks to the #LV_NEO team, participating hunters & all partners for making it a success! Here’s how it went 👇 #LHE #BugBounty
Yay, I was awarded a $21,000 bounty on @Hacker0x01! Nice bug from months ago - chaining my own CVEs to get the full impact! hackerone.com/blaklis #TogetherWeHitHarder
The point of a VDP program is to keep you all busy while I find bugs on companies that pay money.
Look at all the fun we had during @yeswehack x @LouisVuitton live event "Hack Me I'm Famous 2" youtube.com/watch?v=-GRPi9…
🤩 Experience our #LiveHackingEvent with @LouisVuitton! Held at their Paris HQ, #HMIF2 was an outstanding 30-hour journey for everyone involved. Thanks to the #LV_NEO team, participating hunters & all partners for making it a success! Here’s how it went 👇 #LHE #BugBounty
Had an incredible time at my first Live Hacking Event in Singapore! Huge thanks to @Hacker0x01 and @salesforce for their excellent organization and for their efficient handling of bug reports. Can't wait for the next one! #H165
🔓 Abusing AWS S3 Bucket Permissions 👇 AWS S3 buckets are popular targets for hackers due to potential misconfigurations and improper access control. Let's dive into the techniques attackers use to identify and exploit vulnerable S3 buckets! 1️⃣ Bucket Recon: Spot S3 buckets…
🎁 Hunters, our new achievements are on their way! Keep an eye on your inbox, you might be in for a surprise if you're eligible! ➡ More information on this subject and how to get yours: yeswehack.com/community/new-… #BugBounty #YesWeRHackers
wow wow. Thanks @yeswehack , I'm patiently waiting for them to put in my hacking room. #BugBounty #YesWeRHackers
@galnagli also, shout-out to @yeswehack for their position on this subject: literally 0 VDP on their BBP platform, afaik. That's the way to go!
📣 New target alert! Hunters, you can now look for bugs on the all-in-one mobility service @SNCFConnect 🚅 Featuring 3 web apps and 1 API in scope, this new public #BugBounty Program offers rewards of up to €10K! Time to get started 👉 yeswehack.com/programs/bug-b… #YesWeRHackers
Our #LiveHackingEvent with @LouisVuitton is under the spotlight on @ctbbpodcast 🎙️ Big thanks to @Rhynorater and @0xteknogeek for the shout out, highlighting the awesome target and swag. We'd love you to join our next #LHE - the ball is in your court 😉 youtu.be/PNaXwJlpcuI?si…
My coolest and longest to POC bug bounty report was a report @yeswehack for Open-Xchange (OX App Suite). Their whole stack is open-source and as I have received a CVE for the bug in question I thought I would talk about it as it's a class of bug that I enjoy exploiting and one…
Have you spotted the unique names of our awards? 🤩 At our #LiveHackingEvent with @LouisVuitton, winners received special awards, whose names highlighted the fusion of two supposedly unrelated worlds: fashion & hacking. A successful combination! 🤝 #HMIF2 #HackMeImFamous #LHE
💡 #Cybersecurity student and bug hunter: discover the story of @pwnwithlove! Pwnwithlove starting her journey at our #LiveHackingEvent during @_leHACK_ 2023. Despite not uncovering any bugs on that occasion, she persisted, leveraging the opportunity to connect with the…
Join the hunt 🚀 @sovtechfund launched two public #BugBounty programs on our platform! 1️⃣ @SequoiaPGP, an open-source OpenPGP library, with 21 modules in scope 👉 yeswehack.com/programs/sequo… 2️⃣ systemd, a suite of basic building blocks for Linux, featuring 17 scopes 👉…