Elnour SA_44 @Rambo_nmap
Into Ethical Hacking and Machine learning Lisbon, Portugal Joined April 2022-
Tweets367
-
Followers44
-
Following422
-
Likes412
افضل الكتب تعلم لغة go بسهولة Essential go essential-go.programming-books.io The Little Go Book openmymind.net/The-Little-Go-… golang-book.com golangbootcamp.com/book
💻 Common 403 Bypasses Part 1 💻 👉🏻 Author : @ott3rly 👉🏻 Writeup 🖇️: infosecwriteups.com/common-403-byp…
https://xyz/backend/login > 302 https://IP/backend/login > 200 Access the backend Admin Panel! login with the default pass! Always try to find the origin IP and FUZZ! (@GodfatherOrwa's tip from @bsidesahmedabad, old but gold tip!) #BugBounty #BugBountytips
Tips on bypassing 403 and 401
A list of the most common configuration files that you should always check for! 🤠 What others can you add? 🤔
1- Go to /wp-login.php?action=register 2- Register with the name admin if it is available 3- Go to the email 4- Then you will see that the registration has been completed. Log in to the admin panel. and congratulations, you have obtained admin permission credit: @x0xr2r
WPScan - Best Flags 🔥 wpscan --url https://example[.]com --api-token <api token> --plugins-detection mixed -e vp,vt,cb,dbe,u1-10 --force A thread 🧵👇
Bug Bounty Tip If you found a Directory Listing vulnerability on a PHP Server - try to list the content of /var/lib/php/sessions There is a chance that this folder will hold information about all user sessions, which can be used for mass accounts hijacking
@LiveOverflow > I was injecting inside an html tag. I did not break out of the html tag 😇 It was actually an <a> tag so I used this payload : onfocus=alert%26#40document.domain%26#41+autofocus+tabindex=1 .. but it was too long to fit in my tweet haha (not paying for twitter 😤)
I was facing a very strict WAF while trying to exploit a XSS : no gt/lt signs, no parentheses, no double quotes, no backticks. I was injecting inside an html tag. Turns out the solution was very simple (and not well documented): <img src=x onerror=alert(document.domain)>
Be sure to perform a port scan on smtp.*.domain.* services, for example check port 389. Maybe you can access LDAP Anonymous Login Enabled Access and have lots of sensitive data exposure nmap -n -sV --script "ldap* and not brute" mail/smtp.*.domain/ip #BugBounty #BugBountytip
api-guesser.netlify.app A simple website to guess API Key / OAuth Token When you do pentest / Github recon and find API key / OAuth token but you don't know what API key it is, you can use my website that I built from javascript #bugbountytips #bugbounty #infosec
If you come across a domain that uses Typo3 CMS, be sure to check its parameters.Old version Typo3 CMS may still earn you reward. Payload; -1+OR+3 AND if(now()=sysdate(),SLEEP(9),0)-- wXyW2 AND if(now()=sysdate(),SLEEP(9),0)-- wXyW1=6 +AND+000762=000762 By:@ynsmroztas #bugbounty
@G0LDEN_infosec zeshano's blog is good tho also mc8han
Nuclei Template : REFLECTION Potential Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF) attacks, Cache Poisoning and Open URL Redirection. nuclei -t reflection[.]yaml -u target Credit: @gudetama_bf #bugbountytips #bugbounty
Files Containing Juicy Info inurl:"/.vscode/sftp.json" #bugbounty #bugbountytips #bugbountytip #cybersecurity #ethicalhacking
Directory Traversal Bypass Payload /../../etc/passwd - 403 Forbidden %252f%252e%252e%252f%252e%252e%252fetc%252fpasswd - 200 OK Access Oneliners from Github:github.com/thecybertix/On… Credit:@thecybertix #bugbountytips #bugbounty
Shushurd @ShushurdciJ9_
78 Followers 3K Following
OliveBirrell @RlLgm517tYE7j95
72 Followers 3K Following
Cybertection LLC (Jos... @Cyberjoe2050
539 Followers 7K Following Cybertection is your choice for all security software, but our specialty is always going to be antivirus software. We are your digital bodyguard.
CurtisCraigCampbell @CurtisCraigCamp
663 Followers 6K Following Helping you to know, you too are very spiritual. When you act on it, it becomes more powerful and intensely better for you and others all around.
Ahmad Hamoud @hamoud_ahma
240 Followers 268 Following
47z1Lū7h @4tz1luth
1K Followers 4K Following Into Pentesting! :D | ☆▪︎☆▪︎☆▪︎☆▪︎☆▪︎☆▪︎☆▪︎☆▪︎☆ | #infosec | CTF lover!!! 😍
L3nny @LINUXTecLab
602 Followers 926 Following IT Support Analyst. Friend of animals everywhere. Linux, Security and Networking, Python. I'm from Brasil.
devil873 @devil8731
2K Followers 1K Following electronics technician | IHK certified instructor | state certified engineer in informatics | IT-Security practitioner | C++ dev | eJPT | eCPPTv2 | CNWPP
Mihajlo Topic @_donzagor
729 Followers 645 Following Making software go brrr since 2018 | n00b pentester | can't fix your printer but can make you a website | may occasionally tweet about f1
BUGRA GUMUS @bugragumus
3K Followers 4K Following IT Specialist. IP Networking,Web Security and Web Application Firewalls, SD-Wan, opensource firewalls, wifi, cloud services, and computing.(went phishing)
Zakes @zakhele_kunene
2K Followers 5K Following
M @SOC_DFIR
0 Followers 120 Following
Kogi Omondi @akwando_Fred
6K Followers 4K Following Co-Founder @SpaceYaTech| Using tech to reimagine education in🌍| Product Designer @TECNOMobile254, @akongalabs
Miroslaw Lerch @lerchmirko
833 Followers 756 Following
mrrobot0x1 @hacker_s26
109 Followers 673 Following ▪️Bug bounty hunter , Linux , web app developer ,AI 🔸Biggest asset in the world is mindset #Hackerlife
Fuck You Twittِer @FuckTwi_tt_er
36 Followers 2K Following
CitizenoftheWorld @CitizenoftheWo4
6K Followers 6K Following Environment Economy Science Space everything in between Determined to Win Forever #12 My Treasure ❤️🔥@rubyreddevil3
darkcybe @darkcybe
273 Followers 1K Following “The leader who changes his tactics in accordance with his adversary, and thereby controls the issue, may be called the God of war” – Sun Tzu, The Art of War
Sahil Wasnik @0xSY3
678 Followers 3K Following Building @spreddai | MLH Web3 Fellow'23 | Blockchain Researcher 🕵️♂️ | Offensive Security | Cryptography | 12x Global Web3 hackathon Winner 🏆
Nicole J. Lambert @nicolejlam320
378 Followers 2K Following Social engineering and expert in digital security
alrouxnof🇮🇳 @alrouxnof
3K Followers 4K Following Cybersecurity enthausist,Newbie. student @IITISM_DHANBAD aHR0cHM6Ly95b3V0dS5iZS9kUXc0dzlXZ1hjUQ==
Bhagavan Bollina 🚩 @XCriminal_
519 Followers 343 Following Cloud Security Researcher | CARTP | eWPTXv2 | CRTP | CCSK | Bugcrowd MVP Q3 2020 #cloudsecurity #microservices #offsec #aws #redteam
Samuel Oyeniran @c0desec
3K Followers 4K Following Cybersecurity Obsessed. Penetration Testers. | CEH | eJPTv2 | CRTA | PNPT
Zenus @0zenus_
0 Followers 206 Following
Zen'no ^_^ @RealZenno
4K Followers 3K Following Retired hacker/activist. I occasionally post about #hacking, #infosec or whatever else peeks my interest.
Atta Zorob @atta_zorob
11 Followers 180 Following 👨🏻🎨 مصمم جرافيك | 📱مطور تطبيقات IOS 🌟أقدم محتوى عن التصميم🌟 أساعدك للوصول إلى هدفك
Fabian-Denis Borz �... @ThisIsThePolic5
2K Followers 3K Following If you think you are secure, think again! | Penetration Tester | Defender of the Network | Former Blue Teamer | ✞
Andrea @andreatemplari
2K Followers 5K Following Cyber Security Specialist: I do things on the Internet. Retrogaming Lover 🕹
ClubInfoSec @ClubInfoSec1
468 Followers 1K Following
𝙀𝙇𝙇𝙄𝙊�... @Elliot_alien
2K Followers 1K Following “Maybe wars aren’t meant to be won, maybe they’re meant to be continuous.”
Edwin Borowski @edborowski71
4K Followers 3K Following Lifetime learner, newbie hacker, programmer, closet hallmark movie watcher, gamer, and Healthcare IT Worker. Own your world, don't let it own you.
🏴☠️🏴�... @TigermanRoot
6K Followers 4K Following #𝑶𝒔𝒊𝒏𝒕 #𝑷𝒆𝒏𝒕𝒆𝒔𝒕𝒆𝒓. 𝑰 𝒍𝒐𝒗𝒆 #𝑳𝒊𝒏𝒖𝒙 𝑺𝒚𝒔𝒕𝒆𝒎 #H𝒂𝒄𝒌𝒆𝒓 - Python and C #programmer 🇮🇹 #Windows Admin Active Directory
th4ts3cur1ty.company @th4ts3cur1ty
3K Followers 3K Following No nonsense, just defence. [email protected] #infosec #cybersecurity #PurpleTeam #Penetrationtesting #businesscyberdefence
zigo 101 - Zig + Go @zigo_101
9K Followers 3 Following Mainly about #Ziglang, #Golang, #JavaScript, C/C++ and build systems. Author of the #TapirMD markup language, the "Zig 101" (WIP) and "Go 101" series of books.
Fat @fattselimi
16K Followers 9K Following Chasing Positive vibes only & Ethical Hacking for fun and profit🧑🍳
Mustafa Adam Gamarald... @wadgamaraldeen
3K Followers 829 Following (Work Hard 💪 = Dream Big💡) WEB Applications Penetration Tester 💻☠️🖤 Junior PHP Developer{}
Matan Berson @MtnBer
4K Followers 267 Following Hacker and bug bounty hunter mostly focusing on client-side security. h1-702 Vigilante, h1-65 Eliminator, AWC23 Best New Hacker
Yunus Emre Öztaş @ynsmroztas
6K Followers 163 Following #BugBounty #Hunter #Python #Java #Dev #CyberSecurity #Android #GALATASARAY
Godfather Orwa 🇯�... @GodfatherOrwa
24K Followers 2K Following Hacker | Bug Hunter | Cooker | Top 5 P1 Warrior On https://t.co/dzFQH75OWj | LevelUpX Champion | 10+ 0Days/CVEs
Ismael Valenzuela @aboutsecurity
19K Followers 9K Following VP Labs, Threat Research & Intel @AWNetworks ▪️ Ex @Foundstone @Intel @McAfee @BlackBerry▪️ SANS Author & Senior Instructor #GSE 132 ▪️ #SEC530 #ThinkRedActBlue
Jayesh Madnani @Jayesh25_
14K Followers 470 Following CEO and Hacker in charge @ EIS | HackerOne Top 10 | https://t.co/JSX03WutFN
ReconOne @ReconOne_bk
20K Followers 53 Following Tweet about Bug Bounty, Recon, Recon Tips and Attack Surface Management.
Security Trybe @SecurityTrybe
276K Followers 115 Following Cybersecurity & Tech | https://t.co/NIuxWOtJYz
Python Coding @clcoding
595K Followers 94 Following 🚀 Learn #Python the fun way! 📌 Daily tips, tutorials & projects | Educator | AI Community Partner Free Course https://t.co/l9NKxZVTrz
mrrobot0x1 @hacker_s26
109 Followers 673 Following ▪️Bug bounty hunter , Linux , web app developer ,AI 🔸Biggest asset in the world is mindset #Hackerlife
darkcybe @darkcybe
273 Followers 1K Following “The leader who changes his tactics in accordance with his adversary, and thereby controls the issue, may be called the God of war” – Sun Tzu, The Art of War
Ahmad Hamoud @hamoud_ahma
240 Followers 268 Following
OffSec @offsectraining
325K Followers 119 Following Empowering the world to fight cyber threats with indispensable cybersecurity skills and resources. Build the path to a secure future with OffSec.
Physics In History @PhysInHistory
958K Followers 0 Following Photos from the history of physics | © with mentioned Archives. Shared for educational purposes. Einstein portrait © Ullsteinbild. Subscribe for curated papers.
Historic Vids @historyinmemes
5.7M Followers 353 Following Daily history lessons. Education through memes!
Mihajlo Topic @_donzagor
729 Followers 645 Following Making software go brrr since 2018 | n00b pentester | can't fix your printer but can make you a website | may occasionally tweet about f1
Muhammad Alharmeel @0xMuhammad
6K Followers 63 Following Co-Founder/CEO @CyberDefenders, Founder @NakerahNetwork. (GIAC/Offensive Security) Expert #GSE and #OSCE. Talks about #CyberDefense, #BlueTeam and #DFIR.
Khalid Alharthi @Khalid501r
793 Followers 208 Following #PTS , #eJPT , #eCPPT , #eCDFP,#CRTP,#CRTE,#PACES,#GCB,#APTLabs
Mohamed Anani @0xM5awy
2K Followers 946 Following Someone who will be one of the best Egyptians in this field
H1 Disclosed - Public... @h1Disclosed
10K Followers 1 Following User friendly unofficial HackerOne public disclosures, keeps you updated about the recently disclosed bugs. Made With ♥ By Hackers For Hackers. - @rohsec
Ahmad Bin Ali 🇸�... @MrHex88
1K Followers 1K Following Bug Bounty Amateur, Ambitious to be Information Security Developer. Aspirant to improve IT & CySec. https://t.co/aJptMzdum2 https://t.co/0hE2tMp1nx
Today Cyber News @TodayCyberNews
15K Followers 0 Following 🦁 TodayCyberNews 🗞️ - By clicking the Follow button, you start getting daily cyber news updates. #DarkWeb #CVE #BugBounty #Malware #0days #Exploit #CyberWar
BugBountyTips Retweet... @BBT_retweet
871 Followers 2K Following
YesWeHack ⠵ @yeswehack
39K Followers 3K Following Global Bug Bounty & Vulnerability Management Platform 🎯 https://t.co/57gODBq2WZ 👾 https://t.co/ICc6RyhJTp 💡 https://t.co/KNYxhkKuzt
Bug bounty notes @bugbounty0
8K Followers 2 Following Curated InfoSec & Bug Bounty resources from across the web. Follow for tools, write-ups, and leaks.
PHYR3WALL 🇺🇲 @phyr3wall
2K Followers 833 Following Security Stuff @ Microsoft || Red Team Operator || Founder @ https://t.co/skjEVTiYF8 || BB/SRT @ Synack Red Team || Opinions and tweets are my own
prin @fuxksniper
8K Followers 101 Following frankenstein coder, Hacker, Bug Bounty Hunter dead insyde CEO/Founder - @AcademyCipher
#SpaceYaTech @SpaceYaTech
28K Followers 2K Following Tech non-profit helping beginners start well in tech. Join Mastercraft: https://t.co/lJpOvR6oiu Email us: [email protected] https://t.co/fYqFGV9Bks
Abdulrahman Makki | �... @AMakki1337
11K Followers 209 Following Bug Hunter, HackerOne Saudi Arabia Ambassador 🇸🇦 - #BlackhatMEA Winner🏆 - #1337up0822 Winner🏆
Brute Bee @BruteBee
4K Followers 474 Following 🛡️ #EthicalHacker & #InfoSec Pro | Lover of Digital Forensics 🔍 | Purple Teamer 🚀 | Let's secure the web!
The OSINT Newsletter @osintnewsletter
10K Followers 22 Following OSINT news, tools, tactics, and techniques
Pentesting News @PentestingN
5K Followers 1 Following 🤫 Telegram https://t.co/49ybQlAldk 💲Donate https://t.co/BqnGEJgtjM
Alexandre Borges @ale_sp_brazil
28K Followers 147 Following Vulnerability Researcher and Exploit Developer.
nixCraft 🐧 @nixcraft
386K Followers 622 Following Love Linux/Unix, open source, and programming? Into Sysadmin & DevOps? Follow us! Boost your IT career with daily new tools, apps, and humor ⤵️
Blue Team News @blueteamsec1
52K Followers 9K Following The cybersecurity home for the latest #BlueTeam, #DFIR, and #ThreatHunting news and tools.
Shubham Sharma @Shubham_pen
60K Followers 95 Following In cybersecurity, you should be eager to learn new things.
BleepingComputer @BleepinComputer
240K Followers 200 Following Breaking cybersecurity and technology news, guides, and tutorials that help you get the most from your computer. DMs are open, so send us those tips!
0xdf @0xdf_
25K Followers 468 Following Training Architect @ HackTheBox "Potentially a legit security researcher" he/him https://t.co/GCcLVlmdQK https://t.co/uQWVpw4nft 0xdf on discord
DirectoryRanger @DirectoryRanger
35K Followers 96 Following This account assembles and disseminates information related to Active Directory and Windows security.
MalwareTech @MalwareTechBlog
277K Followers 1 Following Not here anymore. Profiles: https://t.co/sFoOuGmYK2
LetsDefend @LetsDefendIO
131K Followers 0 Following Learn cybersecurity with hands-on blue team training
Malware Unicorn @malwareunicorn
168K Followers 3 Following Mostly on @malwareunicorn.bsky.social @Straikerai. Ex-Microsoft. Ex-Meta.Trends for United States
You might like
