elcezeri @xelcezeri
Joined March 2023-
Tweets784
-
Followers285
-
Following1K
-
Likes12K
Today i found a RCE in a bug bounty platform 1. found a bypass admin role with cve confluence 2. access and upload a plugin ( webshell) 3. turn on plugin in server and can run any system command HOPY THEY FAIR #BugBounty
The new writup is here: Account Takeover via Insecure Email Change — Critical Vulnerability medium.com/@3bddagg3/acco… #bugbountytips #bugbounty #hackerone
Through a simple path manipulation in the hostName parameter, I was able to escalate the issue into a One-Click Account Takeover medium.com/@Zeno_H2r/expl…
Tip: When testing, try injecting a null byte (\u0000) into unexpected parameters. You never know how the backend will handle it — sometimes a small injection can completely break features like the invitation system. #BugBounty #BugBountytips #Hacking #Cybersecurity
New Write-Up Published: One parameter. One click. One hijack. medium.com/@yassentaalab5… #BugBounty #BugBountytips
اللهم بارك بس انا عندي استفسار واتمنى ميتفهمش غلط ليه لما بشوف سيناريوهات زي دي بشوفها ساهلة ومع ان اغلب الحاجات دي بطبقها وانا بهانت بس عمرها ما جات لان استحالة حاجة زي دي تكون متسابة ودا بيخليني احس ان الناس دي البروجرامز بتاعتها غير بتاعتنا حرفيا بحسهم حاجة زي لابات بورتسويجر
اللهم بارك بس انا عندي استفسار واتمنى ميتفهمش غلط ليه لما بشوف سيناريوهات زي دي بشوفها ساهلة ومع ان اغلب الحاجات دي بطبقها وانا بهانت بس عمرها ما جات لان استحالة حاجة زي دي تكون متسابة ودا بيخليني احس ان الناس دي البروجرامز بتاعتها غير بتاعتنا حرفيا بحسهم حاجة زي لابات بورتسويجر
hardcoded credentials in javascript file xxxxxxx/static/js/main.xxxxx.chunk.js 🗣️ dp #bugbounty #bugbountytips #bugbountytip
How I Found a Critical Password Reset Bug in the BB program(and Got $4,000) s41n1k.medium.com/how-i-found-a-… #bugbounty
özlemişsinizdir. buyrun fırından taze çıktı dostlar youtube.com/watch?v=xNxyhD…
Blind XSS on Admin Portal Leads to Information Disclosure medium.com/@rohit443/blin… #bugbounty #bugbountytips
The $1000 Critical Bug: Unauthorised Access Leading to Support Admin Panel Takeover v3d.medium.com/the-1000-criti… #bugbounty #bugbountytips #bugbountytip
"The Anotomy of Critical Bug" is now live on @InfoSecComm 🔗medium.com/bugbountywrite… #bugbountytip #bugbountytips #bugbounty #CyberSecurity #Security #infosec #appsec #Hacking #vapt
$500 for Punycode email spoofing bug. Used comilav “m” to bypass email uniqueness check: >Register with [email protected] > Use same name as legit user > Invite real user to fake team Real user joins attacker’s team - gets locked out of real one #BugBountytips #BugBounty
#CryptoSecurity 🚨 - A massive supply chain attack on the NPM registry has compromised popular packages with over 2 billion weekly downloads, aiming to steal cryptocurrency from users. dailydarkweb.net/major-npm-supp…
🔍Discover More Exposed LLM Servers with ZoomEye ZoomEye Dork👉app="Ollama" || app="vLLM UI" || app="LLaMA Board" || app="LLaMA Factory" || app="Chat LangChain" || app="AnythingLLM" || app="Chat LangChain" ZoomEye Link: zoomeye.ai/searchResult?q…
🔍Discover More Exposed LLM Servers with ZoomEye ZoomEye Dork👉app="Ollama" || app="vLLM UI" || app="LLaMA Board" || app="LLaMA Factory" || app="Chat LangChain" || app="AnythingLLM" || app="Chat LangChain" ZoomEye Link: zoomeye.ai/searchResult?q… https://t.co/Z7mtEvIbUi
Cloudflare 403 bypass to time-based blind SQLi: PL: (select(0)from(select(sleep(10)))v) → 403 but PL: (select(0)from(select(sleep(6)))v)/*'%2B(select(0)from(select(sleep(6)))v)%2B'%5C"%2B(select(0)from(select(sleep(6)))v) → Time-based Blind SQLi #BugBounty #SQLi
Alhamdulillah I got 3 RXSS duplicates on a public Bugcrowd program. Write-up: zuksh.medium.com/how-i-discover… #BugBounty #RXSS #XSS #InfoSec #Bugcrowd
1. Register an account using [email protected] 2. Navigate to change email 3. Change it to [email protected] 4. Boom 💥 become the administrator and infrastructure takeover Rewarded $$$$$ #fuckbountytips
New Video Out 🔥 “AWS S3 Bucket Hacking Explained (Bug Bounty Hunters Must Watch)” youtu.be/_UlHLjIQeJM?si…
How I Found Cache Deception in a private bbp medium.com/@MoSalah11/how… @0x_MoSalah
edoggy777 @edoggy77
80 Followers 369 Following Cat dad hunting bugs | Sharing #BugBounty scripts & #CyberSec tips | GitHub: edoggy777
jp / kw0 @JoshuaProvoste
3K Followers 481 Following #BugBounty Hunter, 0-day Researcher & Exploit Developer.
Qelau @Qelau02181
12 Followers 661 Following
Nonoyso @NonoysoSbUzZnt
118 Followers 7K Following
Eren Hasipek🇹🇷 @hspkeren
272 Followers 361 Following Türkiye Siber Güvenlik Kümelenmesi - Cyber Security Instructor | 0x11
Nestoy @Nestoyroub0r
69 Followers 4K Following
BOPotato @BO_Potatos
15 Followers 112 Following
Breysho @BreyshoI6jI
54 Followers 4K Following
Nessitio @NessitiofukjwM
31 Followers 4K Following
Smouppeer @SmouppeeraWKXP
122 Followers 7K Following
Sinuo @SoseathZm
43 Followers 575 Following Girls who love to laugh will never have bad luck. I also hope to meet my prince charming.
Gloiqe @Gloiqe30668
15 Followers 2K Following
0xm1racle @0xm1racle
893 Followers 2K Following Bug Hunter Aspirant I hacking for fun and profit | Thank you h1 | views and opinions on tweets are mine alone
Sctorez @SctorezgeelU
55 Followers 4K Following
Maya @NoresmorlMlR0P
66 Followers 4K Following
Gilga#Adalıİstifa @nemesis7789
58 Followers 695 Following
Frozt Nova @FroztNova127
502 Followers 1K Following Bug hunter https://t.co/nKsZi9MB64 https://t.co/lyDCJaFahc https://t.co/Zaj4aNwLtf
Nealoosm @NealoosmCG7
48 Followers 5K Following
Ceeixa @Ceeixa10052
35 Followers 4K Following
Slaird @Slaird52K
64 Followers 5K Following
NullQore @nullqore
36 Followers 13 Following
Hietea @Hietea94586
18 Followers 4K Following
Doydni @DoydniHIuk
47 Followers 4K Following
0xArektQ @AshiqAhamed_
99 Followers 591 Following Web3 Sec , Smart Contract Auditor , ZK + Noir explorer , Building a name in Code4rena / Sherlock , Dreaming Aztec
Pleembar @Pleembar938530
24 Followers 3K Following
Rhuwi @Rhuwi0039991
12 Followers 2K Following
MouhannadlrX(Mouhanna... @MouhannadlrX0
498 Followers 2K Following @HackenProof Security Researcher , in love with diving deep and chains issues toghether to achive most impact possible , CVE-2022-36178
Muhammed Emir ARSLAN @MrM3ARS
175 Followers 123 Following 💻 Penetration Tester | Offensive Cyber Security Consultant | a.k.a MrM3ARS
Ooxeegau @Ooxeegau0819
24 Followers 3K Following
Tytueski @TytueskiMpcIFK
48 Followers 4K Following
$~ Hey :D ~$ @broken_link420
276 Followers 724 Following Internet of Shitz welcome 2 Cyberia punk -tequila_ninja Bug bounty ⚪#FFFFFF Boy SZN 🫡👨🍳 DEFCON 34🏴☠️💯 🇺🇸USA 🇺🇸🇭🇷 Croatia🇭🇷 Cali ❤️🔥
Sunflower @Sunflower726384
53 Followers 3K Following
Berat_Blmz @Beratblm
36 Followers 72 Following
Md. Jakirul Alam @Jakirpentest
381 Followers 2K Following Aspiring Ethical Hacker | Learning Cyber Scurity | Post Office Entrepreneur
Romit Acero @AceroRomit
7 Followers 421 Following
phasenull.dev @phasenull
133 Followers 398 Following kişisel not nefterim, konular hakkındaki kişisel görüşlerim ve arşiv (kısaca boş konuşuyorum)
Maria Rossi @Mariaross88
212 Followers 7K Following
OlamDeen @Olamdeen
969 Followers 713 Following Cybersecurity Researcher | 💻 Penetration Tester | Bug Bounty Hunter | @HackenProof Security Researcher | Unofficial @ireeteeh mentee
Surffi @SurffiqBYG
148 Followers 5K Following
Ahmed Nasser @AhmedGonamy12
303 Followers 583 Following Mobile application developer | Flutter developer 💙🧑💻
edoggy777 @edoggy77
80 Followers 369 Following Cat dad hunting bugs | Sharing #BugBounty scripts & #CyberSec tips | GitHub: edoggy777
Cameron!! @cameronmattis
3K Followers 811 Following platform sales @stripe. points helper at https://t.co/lSW2qx6rCb. ❤ my life and my wife. all opinions are my own. yes, even yours.
Aryabhatta @_mrbuddhu_
2K Followers 8K Following @SanganakHQ | Branding + Design + Apps + AI, Blockchain + Growth | Trusted by 15 elite clients across 6 continents
Türk Telekom @TurkTelekom
429K Followers 29 Following Hayatta değer verdiğiniz ne varsa onun için çalışıyoruz. Türk Telekom #DeğerliHissettirir. Soru, öneri ve görüşleriniz için @TTDestek hesabına ulaşabilirsiniz.
International Cyber D... @IntCyberDigest
11K Followers 3K Following Your weekly go-to cybersecurity newsletter, curated and commented on by our senior analysts. Got tips? Signal: IntCyberDigest.17
Ahmed Abdel Rasoul�... @0xbartita
651 Followers 2K Following Just a bug-hunter from a fucken planet.🚀| eWPTXv3 | eMAPT
Aditi Singh @aditi_singghh
13K Followers 757 Following Bug Bounty Hunter | Cyber security Researcher
Roy Davis @Hack_All_Things
3K Followers 175 Following Security Engineer, Penetration Tester, Security Researcher, Bug Bounty Manager @ Zoom, 2+ year ALS Survivor.
stockfish🎣🇰🇪 @trevorsaudi
5K Followers 2K Following Cyber Security | Coding | Chess | Speedcubing | CTFs with @fr334aks
Kur'an-ı Kerim @_AyetHadis
90K Followers 17K Following Alemlere bir uyarıcı olsun diye kuluna Furkan’ı indiren Allah’ın şanı yücedir. (25/Furkan, 1) Arapça-@Almosahf
Eren Hasipek🇹🇷 @hspkeren
272 Followers 361 Following Türkiye Siber Güvenlik Kümelenmesi - Cyber Security Instructor | 0x11
sudi @sudhanshur705
5K Followers 706 Following Remember, whatever happens... There's always a vulnerability https://t.co/FFVfnf39jY
NullSecX @NullSecurityX
6K Followers 106 Following Hacking Group https://t.co/4D4Ewi7xmL collaborations & sponsorships; [email protected]
Mustafa Öksüz @mustafa0x01
171 Followers 69 Following Türk | Siber Güvenlik Mühendisi | Kriptoloji Uzmanı | Bug Bounty Hunter
Yusuf Elw @elovneq
301 Followers 18 Following Average cybersecurtiy enjoyer | My Bug Bounty Journey ⬇️
BOPotato @BO_Potatos
15 Followers 112 Following
BTK @BTKbasin
55K Followers 30 Following Bilgi Teknolojileri ve İletişim Kurumu (BTK) / Information and Communications Technologies Authority (Türkiye)
Elif Bilge @elifbilgepp
12K Followers 1K Following iOS dev @ TurkishTechnology | cute apps & curious mind
SecInterviewHub @sec_hub93028
3K Followers 2K Following Daily cybersecurity interview questions, tips, and industry insights. Check the articles tab ⬇️
D3k0w 🇰🇪 @d3q0w
350 Followers 82 Following just a guy with a laptop | Football as hobby | Security Researcher |
kuzushi @kuzushi
1K Followers 473 Following offsec & ai research at @udegcucei co-founder: @cactuscon advisor: @hackgdl ex: @bishopfox @spiderlabs @mvpaward no easy answers - sola gratia opines are mine
xssdoctor @xssdoctor
4K Followers 373 Following hacker and cardiologist… not necessarily in that order
hesar @hesar101
950 Followers 762 Following
BugBounty Writeups @bbwriteups
74 Followers 0 Following Instant Security Writeups | Threat Insights & Bug Hunting | Web3, Malware, & Ransomware Defense.
Shodan @shodanhq
109K Followers 2 Following Monitor your external network, search the Internet of Things and perform empirical market research. You can also find us on https://t.co/nPLFbFy8R5
NullQore @nullqore
36 Followers 13 Following
batuu @int20z
289 Followers 43 Following
0xArektQ @AshiqAhamed_
99 Followers 591 Following Web3 Sec , Smart Contract Auditor , ZK + Noir explorer , Building a name in Code4rena / Sherlock , Dreaming Aztec
ZoomEye @zoomeye_team
9K Followers 507 Following A cyberspace search engine built for security researcher Daily Tricks || Latest Vulnerability Updates Email: [email protected] https://t.co/AUq5jNpKkl
Adam Deziri @adamdeziri
841 Followers 704 Following Dev and security 💻 European Institute of Technology 🎓 Bug-Bounty hunter🧑💻 [email protected] 📧
ASHISH KUMAR @ydvashish224
204 Followers 309 Following Cyber Security Learner |Dream/Work/ Achieve 🔥| Crowdsourced Security Researcher at Bugcrowd
Owen Lee 🦀 @0xenzo_eth
978 Followers 3K Following Smart Contract Researcher || 📍🇰🇪 AKA The Bread Guy 🍞 Obsessed with Rust 🦀
YADA @Rmyada1
280 Followers 2K Following
Trends for United States
You might like
