locolocosec @locolocosec
Dev & Security Researcher l Loves Cooking & Football 🌿🌞 Joined November 2023-
Tweets1K
-
Followers60
-
Following570
-
Likes2K
@wearehackerone Not any time soon I don't think.. Did you see this new article by @pwnwithlove? Maybe it will help 🙏 yeswehack.com/learn-bug-boun…
Blind XSS in Email Portal Leaking Email Logs Payload Used : ';"/></textarea></script><script src="https://test"></script> #bugbountytips
Google Dork - XSS Prone Parameters 🔥 site:example[.]com inurl:q= | inurl:s= | inurl:search= | inurl:query= | inurl:keyword= | inurl:lang= inurl:& Test for XSS in param value: '"><img src=x onerror=alert()>
Google Dork - High % keywords 🚀 inurl:conf | inurl:env | inurl:cgi | inurl:bin | inurl:etc | inurl:root | inurl:sql | inurl:backup | inurl:admin | inurl:php site:example[.]com Find exposed endpoints worth looking at 👀
Thank you @Adobe its my pleasure to work with you very professional team appreciate it ❤️✨ I Achieve Remote Code Execution in Dev Server's Severity 10 #bugbounty #Alhamdolilah
Use NextJS? Recon Tip by renniepak A quick way to find "all" paths for Next.js websites: DevTools->Console console.log(__BUILD_MANIFEST.sortedPages) javascript:console.log(__BUILD_MANIFEST.sortedPages.join('\n')); #infosec #cybersec #bugbountytips
Common Bug Bounty Myths That Are Holding You Back - Think you can’t start bug bounty hunting? These myths are why — here’s the truth. - Are these bug bounty myths stalling your hacking career? Let’s bust them. - Common bug bounty myths holding newcomers back — what no one tells…
Google Dork - my favorite one site:example[.]com ext:php inurl:?
The best single #XSS vector you'll ever have! Payload : JavaScript://%250Aalert?.(1)// '/*\'/*"/*\"/*`/*\`/*%26apos;)/*<!--> </Title/</Style/</Script/</textArea/</iFrame/</noScript> \74k<K/contentEditable/autoFocus/OnFocus= /*${/*/;{/**/(alert)(1)}//><Base/Href=//X55.is\76-->
Thank you @msftsecresponse 🙌🏻❤️
Hunters 🔥 Trying to increase attack surface? Check out hidden parameters 🔎 Hidden parameter hunting is one of the easiest ways to find high-impact bugs 🪲 1⃣ JS bundles & client code (.js, .map) — search for keywords like: payload, params, body, admin, is_ 2⃣ OpenAPI / Swagger…
💡 Novel SSRF Technique Involving HTTP Redirect Loops Blog: slcyber.io/assetnote-secu… author: @infosec_au
I've made $500k+ from SSRF vulnerabilities. Here are my tricks:
Today's finding with the team @d3q0w & @amsubedi2
CSRF reported today: Tip: - when there's a CSRF token in the request, just deleting it sometimes gives you 401. - Try to bypass it by deleting all the unnecessary cookies, to remain with the ones just validated specifically for that request. -Now delete the CSRF token. @4osp3l
Day 24 - Bug Bounty 1. Looking for hidden endpoint on js files but nothing interesting so far 2. Testing more graphql query and mutation, one of the mutation require auth, then I remember specific rest api endpoint that does the same doesnt require auth, auth bypass submitted
Never be afraid of big targets for the following reasons : 1- daily code change 2- new updates 3- overlooked corners 4- everyone is avoiding them and saying "it's too crowded for me to test in it" {second pic is an advice i received from bugcrowd support team months ago}
The easiest bugs for beginners (with @InsiderPhD) 👇 youtube.com/watch?v=kYetdP…
Wordlists specially for API routes fuzzing 📒 wordlists-cdn.assetnote.io/data/automated/ #infosec #cybersec #bugbountytips
New Video Out! 🤠 Mastering DOM XSS for Bug Bounties: DOM Invader & Bug Bounty Reports! youtu.be/okEmVk8MtEA?si…
Frozt Nova @FroztNova127
421 Followers 985 Following Bug hunter https://t.co/nKsZi9MB64 https://t.co/lyDCJaFahc
Kalis @jaczkal
629 Followers 1K Following tech lead @ackeeblockchain security researcher pursuing phd while touching grass between audits
Connie Tremblay @ConnieTrem40461
94 Followers 4K Following
Fodhil Benhiba 🇵�... @BenhibaFodhil
102 Followers 187 Following Computer Science Student | Bug Bounty Hunter | Cyber Security Enthusiast | CTF player @h3avensbirds
PenguinWeb3 @PenguinWebz3
499 Followers 6K Following Narratives & DeFi. Crypto Penguin is always on its way to help!🐧| DM's open 24/7
CarolCarroll @9nB0tZ8i4rfS2
100 Followers 3K Following
VINCHI @iamvinchi
348 Followers 2K Following Learning @CyfrinUpdraft | Web3 security researcher | Smart contract Auditor in progress.
Rosalia @rosaliastrain99
252 Followers 3K Following
Andrea Hamilton @AndreaHami81231
2 Followers 176 Following Recruiting webshell engineers to penetrate websites, with a monthly salary of up to $100,000. If interested, pl ease contact https://t.co/84g3zO1JtM
Ysoohawx @Ysoohawx327882
54 Followers 971 Following
me @Paul14218670
7K Followers 234 Following
Kam Khan Sang @r1skkam
81 Followers 1K Following
Surya Vijayan @abcdxyz3210
1 Followers 158 Following
PaulHaykeens @haykeens_
31 Followers 465 Following an optimistic being....Curiosity is the only crime 🧑💻
linillo @linilloCS
7 Followers 274 Following
Abdullah Nawaf (Hacke... @XHackerx007
8K Followers 434 Following Hackerx007 Bug hunter FB/Twitter/Mail.ru HOF 41 Bugcrowd rank 11 Bugcrowd P1 rank with 226 p1 :) In love with P1 ;)
Mr Owl @ziko29504803
648 Followers 1K Following Bug Bounty Hunter - BBH Top 10 OWASP vulnerabilities Cyber Security It's better to lose yourself when you hacking
Cherlyn @hallcherlyn11
208 Followers 3K Following
McDadore @McDadorew6zh8
15 Followers 1K Following
Carrie @carrieparis81
285 Followers 3K Following
Harkamal Singh @H3LLD3V_K
0 Followers 202 Following
Spark Alchemist @Spark_Alchemist
2 Followers 3 Following Website Design and Copywriting Studio! Delivering consistent value and creating magic, together.
MouhannadlrX(Mouhanna... @MouhannadlrX0
499 Followers 2K Following @HackenProof Security Researcher , in love with diving deep and chains issues toghether to achive most impact possible , CVE-2022-36178
Marilyn @marilynsapp42
295 Followers 3K Following
Megan @gilbertmegan77
250 Followers 3K Following
Tunahan TEKEOĞLU @tun4hunt
635 Followers 509 Following 🇹🇷 Senior Cyber Security Consultant | Bug Bounty Hunter
Jessie @harrison_jessie
266 Followers 3K Following
n1nja007 @n1nja007
85 Followers 4K Following
Pwnr @pwnx0
459 Followers 2K Following Pentester | BBH | CPTS, eWPTx, eCPPT, eMAPT, CAPen, CAPenX, C-APIPen, CMPen-A
Muhammad Farhad Ansar... @fteagleeye1
698 Followers 3K Following Fundamentalist Muslim | Student | Bug Bounty Hunter
sandesh @onceuponahacker
397 Followers 1K Following cybersecurity , ethical hacking ...ALL VIEWS expressed here ARE MINE... 🇮🇳 Jai Hind !
Aditya Bhandari @adityabhandari1
335 Followers 4K Following Designing with purpose. ✷Brand Identity ✷ Website ✷ Strategy | TEDx Speaker | UN_GirlUp Speaker 🌿🌻
Mary @mary71barr
378 Followers 3K Following
Jackie @g_jackie84
288 Followers 3K Following
Elizabeth @treadwayelizabe
285 Followers 3K Following
Debra @debra64garay
305 Followers 3K Following
Mastering Burp Suite ... @MasteringBurp
16K Followers 0 Following Tips and tricks for Burp Suite Pro Managed by @Agarri_FR | Not affiliated with @Portswigger More free resources at https://t.co/MWqXmV66lr
Gospel @4osp3l
16K Followers 7K Following Offensive Security | Christain | Bug Bounty Hunter | Vulnerability Researcher | 0x19 | Pentester | WoT | God Is Everything
Kuldeep Pandya @kuldeepdotexe
5K Followers 349 Following OSINT | Web | Binary | [email protected] | @SynackRedTeam Envoy && Hero
Hero_of_Digital @_MK_Mustafa
148 Followers 59 Following 27y & oil engineer & penetration tester & investment trading & still learning..I love sports & traveling and 🪂🏊✈️🤵☃️🌄🌍🎹. 🇮🇶
drop @dropn0w
2K Followers 570 Following Offensive Security Consultant | HackerOne Ambassador for 🇧🇪 Belgium | Security Researcher | Views are my own
r00tz 🇮🇳 @yaser_s
1K Followers 2K Following 🚀CFP & Speaker Ops @BugBountyDefcon🏅@Hacker0x01 Brand Ambassador Canada🎖️@Bugcrowd Hacker Advisory Board 🏆Top Spots-US DoD🥈H1 Hack the Airforce7'22🥇HackUS
Faav @efaav
769 Followers 176 Following Developer @ https://t.co/qiMEJOTD1H (& NameMC Extras), Web developer, Bug hunter.
Vincent @vinhacks
552 Followers 242 Following 🇨🇦⚜️ 18 y/o Bug hunter : https://t.co/PdrXkrMVCS | https://t.co/QnXe4wtL11
Priyanshu @priyanshu_xo
2K Followers 662 Following full time bug bounty hunter https://t.co/Z1PExchTcf
GiuseppeDeLaZara @windhustler
4K Followers 812 Following Ex-Petroleum Engineer | Solidity Developer | Chief of Security @BurraSec | Security Researcher @spearbit, @zenith256 | Mentor @TheSecureum
xploiterr @_xploiterr
2K Followers 931 Following Let everything happen to you, just keep going… like she said. ✍️ Write-ups → https://t.co/2ki4J3756e
Eno Leriand @0x3n0
5K Followers 154 Following Cyber Security, mostly on hacking, chasing flags & life goal? idk | Red team @Synack | Researcher @YogoshaOfficial • Discord: 0x3n0 (UTC+8) No DM without scope
Lee | 33Audits @33audits
4K Followers 294 Following auditing, researching, building | DM for audits/dev work
Muqsit 𝕏 @mqst_
8K Followers 98 Following Sharing resources from the cybersecurity community • Passionate learner and creator • YouTube: https://t.co/1BmE6QOd0D • Turn ON Notifications 🔔
Profundis.io @profundisio
885 Followers 0 Following Mapping the internet - turning DNS/host data into intel for sec teams, OSINT & bug-bounty hunters. Automated recon & real-time alerts.
Devansh (⚡, 🥷) @0xAsm0d3us
16K Followers 3K Following Pwn, Security Research & Math ⚡ Views are personal
Dark Web Intelligence @DailyDarkWeb
139K Followers 0 Following Daily Dark Web dose from the dark side.
Hossam A. Mesbah 🇵... @m359ah
4K Followers 232 Following Sr. Security consultant | Bug bounty hunter https://t.co/tuKTyrFrWo | https://t.co/PGSwsav7HG | https://t.co/Z6BCawM3XF
Ron Chan @ngalongc
19K Followers 501 Following
Ackee Blockchain Secu... @AckeeBlockchain
8K Followers 798 Following Cybersecurity experts | We audit Ethereum and Solana | Creators of @WakeFramework, Solidity (Wake) & @TridentSolana | Educational partner of Solana Foundation
MoveJay @movebrah
2K Followers 627 Following Move SR @spearbit | Ambassador @Suinetwork @Walrusprotocol
phil @philbugcatcher
3K Followers 698 Following Breaking down smart contracts | Security Researcher @CertoraInc | @CyfrinUpdraft alumni
Alon Leviev @alon_leviev
1K Followers 182 Following Vulnerability Researcher at Microsoft | Researcher, Speaker, BJJ Black Belt, Former BJJ World and Euro Champion
djurado @djurado9
6K Followers 672 Following Security Researcher at @xbow - Former @microsoft Activision Blizzard King - Bug Bounty Hunter https://t.co/l69MUUXLBA
OffSec @offsectraining
325K Followers 119 Following Empowering the world to fight cyber threats with indispensable cybersecurity skills and resources. Build the path to a secure future with OffSec.
Trend Zero Day Initia... @thezdi
83K Followers 16 Following Trend Zero Day Initiative™ (ZDI) is a program designed to reward security researchers for responsibly disclosing vulnerabilities.
CVE @CVEnew
56K Followers 3 Following Official account maintained by the CVE™ Program to notify the community of new CVE IDs. Posts contain abbreviated details. Full CVE Records on https://t.co/ALn4YvUtom
c4ng4c3ir0 @c4ng4c3ir0
7K Followers 621 Following Que meus advogados não falhem. Que meus pecados sejam perdoados.
g @gjaldon
4K Followers 255 Following LSW @sherlockdefi | @blackthornxyz | 6x 🥇 wins (91 contest days) | Infra and Contracts Expertise | Rust Go Solidity | https://t.co/kbiPdpKeLS
Cubed @Cubed_h1
2K Followers 346 Following Career in hacking into stuff on https://t.co/9wUU4HbNMO | Security Researcher @hacker0x01. Half 🇷🇴 and half 🇪🇬
Aditya sharma 🇮�... @Assass1nmarcos
6K Followers 56 Following Cyber Security Researcher, Hacker🇮🇳 Love to get unauthorized access in your Server. HOF from Google | Microsoft | Apple | Meta | Adobe | Oneplus
Mehdi @silentgh00st
5K Followers 2K Following 🔎 @mapperplus 🥷 Cyber Security Engineer - Penetration Tester 🔴 Synack Red Team Member 💻 Coding enthusiast ... --------------- OSCP-CRTO
0x0smilex @assa2940
918 Followers 96 Following bug hunter 🐛 ethical hacker / noob 🤓/ Follow for more cool tips & stuffs! 🤙🏻 hungry for knowledge
Louis Nyffenegger @snyff
20K Followers 591 Following Founder/CEO/Trainer/Researcher/CVE archeologist @PentesterLab. Security engineer. Bugs are my own, not of my employer...
harris0ft @harris0ft
5K Followers 99 Following Christian, Hacker, Independent Security Researcher. https://t.co/7rmqelX5L4
MorboAalst - Kitty @MorboAalst
1K Followers 581 Following Amateur dartplayer, repping the hello kitty brand. Part of the @Intigriti family
Md Ismail Šojal �... @0x0SojalSec
31K Followers 5K Following Cyber_Security_Re-searcher || 0SINT || Malware Analysis II Pwn || Ai Re-searcher || Project @AIStrikeSec || 0ld Accounts Suspended @0xSojalSec ||
Barracks @BarracksArmy
284 Followers 39 Following Beyond the lab rut. Barracks forges hyper-realistic WarZones mirroring appsec chaos. Adapt. Report. Thrive. Build skills that cash actual checks.
Sandeep | CEO, Polygo... @sandeepnailwal
343K Followers 5K Following Absolute-Individual-Freedom Maximalist. Founder & CEO @0xPolygon Foundation, Founder @cryptorelief_, Co-founder @SentientAGI . Re/tweets are not endorsements.Trends for United States
You might like
