gr3y1nt 🇵🇸 @gr3y1nt
lonewolf,,,n00b hacker 💢 Hunter at @intigriti | @Hacker0x01 | @Bugcrowd 💤 Joined August 2023-
Tweets722
-
Followers58
-
Following356
-
Likes2K
Bug Hunters Tip 💥 Always search your targets in SwaggerHub 🔥 While digging through a target’s SwaggerHub docs, I discovered an exposed valid token, helping me to escalate my privs on the target 💪 Got more useful tips for finding secrets during recon? Drop your tips below 👇
Find SSRF on all your huge target list via httpx:- 1:- Download github.com/lutfumertceyla… 2:- Add brutelogic.com.br/poc.svg on {target} 3:- Run httpx. httpx -paths ssrf-parameters.txt -threads 200 -o ssrf.txt 4:- Screenshot the result gowitness file -f ssrf.txt #infosec
IDORs are one of the most common web vulnerabilities but most beginner's test them wrong. Here are 7 steps to properly test for IDORs👇 (p.s most IDORs are missed because people stop after step 3) 1/9
List of recon techniques that almost nobody is trying 🤑 • Running CeWL on product & API docs • VHost enumeration & Bruteforcing with host header set to "localhost" • Bruteforcing with different HTTP methods (POST, PUT, PATCH, ...) • Favicon recon • Crawling sites with…
Bounty : 1200$ Bug : Time Based SQLi Payload : 1'XOR(94102*if(now()=sysdate()%2Csleep(6)%2C0))XOR'Z 1. found a POST request on endpoint POST /Account 2. in that there was a Code parameter 3. Code=1'XOR(94102*if(now()=sysdate()%2Csleep(6)%2C0))XOR'Z 4. injected this payload
Thats great
After 5 duplicates from automation last month, it finally landed a hit. I spent 8 months building my XSS automation - now it scans 40 programs/week without aggressive requests (+500 domains). Flow: Enumerate subdomains → Discover URLs → Extract parameters → Detect reflections
In @Burp_Suite, sometimes you want to automatically removed all those unwanted cookies and keep it clean. Use match/replace: Match (regex): (?i)^Cookie:\s*.*?\b((?:cookie1|cookie2)=[^;]+)(?:.*?(;\s*(?:cookie1|cookie2)=[^;]+))?.*$ Replace: Cookie: $1$2
Day 0 - Bug Bounty - I want to see how much I can do with this for 365 days of learning and practice. - today i learned about path traversal and file uploads on @PortSwigger academy Inspiration from @YourFinalSin 👏 Total earned so far: $0
After my first year of full-time bug hunting, I successfully completed Justin’s Challenge on @Hacker0x01 . I want to share a few things that might help beginners. The bugs I’ve earned the most from are IDOR and XSS — they’re great to focus on when you're getting started. One…
After my first year of full-time bug hunting, I successfully completed Justin’s Challenge on @Hacker0x01 . I want to share a few things that might help beginners. The bugs I’ve earned the most from are IDOR and XSS — they’re great to focus on when you're getting started. One… https://t.co/0TEoBQzjL9
XSS bug bounty Tip: 1- tried to inject xss via input 2- found 403 3- add header “ Content-Encoding : WAFBYPASS “ 4- found that it was 200 bypassed
@intigriti 3 easy low hanging fruit for now. Thanks to bbradar.io Shameless plug 😁
now a days i think like same. hacking is not only tools. mostly it depend the mindset of yous.
now a days i think like same. hacking is not only tools. mostly it depend the mindset of yous.
HACKER’S most basic — yet powerful — trick: 💥 AUTHENTICATION BYPASS 💥 via SQL injection Still works in 2025. Still crazy effective. What’s your go-to payload? 👇 Here are a few of mine: ' OR 'chux'='chux ' OR IF(1=1, SLEEP(5), 0)-- ⏱️ This weird looking payload got me A LOT…
Wanna learn "Race Condition Bugs"? Check out my new Video! ✨ youtu.be/AMjUV1fgWCg?si…
Bug Bounty Recon: Tokens, PII, and CI/CD Metadata Leaked via JavaScript more information: discord.com/invite/h6dKuEt… medium.com/bugbountywrite…
Why 404 matter Most bug hunters skip error pages, especially the classic 404. But 404 pages are often misconfigured, leaky, or functionally abused ... making them goldmines for vulnerabilities if approached right. Let’s explore a complete approach to 404s for bounty hunting.👇
an exciting news 😊
Hey @grok , based on your analysis of the last 365 days, list in sequence 10 accounts that frequently visit my profile. Do not mention the person, only @.username and the rate of visits to the profile per month.
Fodhil Benhiba 🇵�... @BenhibaFodhil
97 Followers 183 Following Computer Science Student | Bug Bounty Hunter | Cyber Security Enthusiast | CTF player @h3avensbirds
Ousruibpar @Ousruibpar1776
79 Followers 1K Following
🇵🇸Ayaa Hamed @AyaaHam82030201
806 Followers 195 Following Computer Science graduate || Security Researcher 🔍|| Bug Hunter 🐞 || Portfolio: https://t.co/tsdNfGHo2C
Mr.z @MR_z027
17 Followers 363 Following
Uqueafuq @Uqueafuq0897
12 Followers 440 Following
Adigundfighter @feelzzW
72 Followers 1K Following network engineer, security engineer , Arsenal fan 🔴
Ariyan Saleh @H4X0R37
16 Followers 138 Following
Already Happened @M3t4_tr0n
19K Followers 2K Following Silent enim leges inter arma. s̷̻̹͚̱͖̭̦̩̤̊p̸̨̲͖͝1̷̢̛̙̣͇͎͚͉̞͖̦̽͑́́̊͆́̃̓ņ̴̡̠̀͜ń̷͖́̉̂̓̀͒̋̏͛4̸̺̳͇̇͐̀̏̓͒͝ḵ̸̜͇͔̹̗̲͙͊̔̋͐̐͑͘̚͝3̸̲̜͚̫̪̘̽͛͋̾̉̆̽̌r̴͚̼͑̾̽̐̌̃͝͝
Ahmed Taha @xspacex_1
2 Followers 113 Following
َ @utdtgvcsw
0 Followers 2K Following
Noorsec @0x_5wf
617 Followers 669 Following Bug Bounty hunter | High school Student | Python developer
Mayowa omolabi @i_am_mayor_
1K Followers 1K Following cybersecurity/Pen tester/offensive security/ Caesar-I-Bug/Bug bounty/outsider // Security researcher @NullSecX
Zoe @zoecyber001
2K Followers 399 Following First, I am a guy | Wireless Pentester 📡 | Docker Freak 🐳 | Exploring IoT/Hardware Hacking 🔧 | Love making custom stuffs | Building SigilShield
Gospel @4osp3l
16K Followers 7K Following Offensive Security | Christain | Bug Bounty Hunter | Vulnerability Researcher | 0x19 | Pentester | WoT
Rebecca @rileyrebecca43
188 Followers 3K Following
WordPress god @isleevedaniels
2K Followers 7K Following Web and Mobile App Developer | Developer of Pacify Plugin | 📳 +256765749940 https://t.co/03mN3Q1fPI
RootAccess @MDMILON060818
3 Followers 71 Following Cyber Security Specialist | Penatration Tester | Malware Remover
Muhammad Farhad Ansar... @fteagleeye1
701 Followers 3K Following Fundamentalist Muslim | Student | Bug Bounty Hunter
Habibur Rahman Hasan @hasn0x
181 Followers 440 Following Assalamualaikum. Trying to be a bug hunter.
vishastra @vishastra12
516 Followers 2K Following 🌐 Cybersecurity Enthusiast | 📚 Aspiring Cybersecurity Analyst | 🛡️ Ethical Hacker | 💻 Penetration Tester | 🎮 CTF Player | 🚀
Christ Bowel @christbowel10
85 Followers 1K Following 💀🍂Penetration Tester | CTF Player | Bug Hunter | 1 CVE | Breaking stuff, for a living 🇨🇲🇫🇷🔥
Michael Schießer @MichaSchiesser
504 Followers 510 Following
🏴☠️SURGE�... @AnonEvilyn
871 Followers 655 Following @AnonymousUrgent owner ☆MADDLULZ☆ MOBTIES🏴☠️@ maddlulz.bsky.s ChaosSec.VenSec.CashMoneyFelons RiotSquad.AnonOpsSE.FELLA https://t.co/LFhJtu2MWH
Lalit_m3c4 @Lalitbhosale6
58 Followers 1K Following Lets H4ck | Pentest | Research | Bounty | CTFs | Researcher 🄱🄴🄻🄸🄴🅅🄴 🄺🄰🅁🄼🄰
Wahid Najim @wahid61106
16 Followers 112 Following Robotics Engineer | Security Researcher | C3SA | CCEH |
M0n7u @m0n7uxp
1 Followers 2 Following Pentester X Bughunter 😎 Bughunter at @HackenProof , @Hacker0x01
aimen aimen @aimen3991
12 Followers 822 Following
Tammy @h_tammy90
261 Followers 3K Following
Brenda @brendaking23
295 Followers 3K Following
Proton VPN @ProtonVPN
191K Followers 160 Following The world’s only open-source, publicly audited, unlimited and free #VPN. Swiss-based, no-ads, and no-logs. Brought to you by the scientists from @ProtonPrivacy
Rock Pratap Singh (Ro... @Rockpratapsingh
396 Followers 255 Following Radhe Radhe 🙏 || Security Researcher | Bug Hunter | Ethical Hacker | VAPT | Google, Nokia, NASA, Apple, Lenovo, Blackberry, Cambridge, Indian UK gov HOF🇮🇳 |
Abhishek Yadav @abhishekY495
397 Followers 338 Following https://t.co/YplBMrD42p https://t.co/OD0z9zttxC
errorsec_ @errorsec_
4K Followers 200 Following
systemd @secsystemd
492 Followers 553 Following There is no patch for human stupidity | Actively Learner on @HackTheBox_eu && @realtryhackme | Volunteer at @nullcon
Bug Bounty Village @BugBountyDEFCON
8K Followers 580 Following Official X account for the Bug Bounty Village @DEFCON. Founded by @infinitelogins and @arl_rose.
🇵🇸Ayaa Hamed @AyaaHam82030201
806 Followers 195 Following Computer Science graduate || Security Researcher 🔍|| Bug Hunter 🐞 || Portfolio: https://t.co/tsdNfGHo2C
Harshleen Chawla @harshleenchawl2
29K Followers 646 Following Security Tester | ⟠ Web3 | Content Creator | Tech writer core contributor @web3sec_news
OpenAI @OpenAI
4.3M Followers 3 Following OpenAI’s mission is to ensure that artificial general intelligence benefits all of humanity. We’re hiring: https://t.co/dJGr6Lg202
Maddy 🐝 @Cyb3rMaddy
27K Followers 264 Following Cyber Security Content Creator 🛜 Technical Tutorials 🚨 Security News 📺 100k+ on YouTube 👇
ergoproxy @_erg0sum
2K Followers 2K Following 16 year old whimsical wizard and part time fintech phantom. Red Team & Bug Bounty. CPTS,CRTP | Views are my own. Not affiliated with my employer.
Mejbaur Bahar Fagun @fagun018
291 Followers 41 Following Cyber Security Analyst |Certified Ethical Hacker |Digital Forensic | ISTQB Foundation | Manual Tester | Automation| API Testing
xss0r @xss0r
6K Followers 3K Following xss0r Deploying an alert box in a web app is like having a tiny pop-up comedian shout 'Surprise!' whenever you least expect it! #xss0r #ibrahimXSS #Blindxss0r
SickSec 🇲🇦 🇵... @OriginalSicksec
8K Followers 381 Following I love GraphQL | Hackerone Ambassador 🇲🇦 | Tweets are my own | Riichi #Mahjong Player Master Tier | see https://t.co/hqRuoXEQH3 before DM :)
Bassem Youssef Commen... @bassem_youssef9
113K Followers 1 Following باسم يوسف Commentary Free speech
Blaklis @Blaklis_
11K Followers 70 Following Security researcher - my researchs will be on https://t.co/2PnyCvqAIm Inactive X account.
Assetnote @assetnote
10K Followers 0 Following Assetnote combines advanced reconnaissance and high-signal continuous security analysis to help enterprises gain insight and control of their evolving exposure.
H1 Disclosed - Public... @h1Disclosed
10K Followers 1 Following User friendly unofficial HackerOne public disclosures, keeps you updated about the recently disclosed bugs. Made With ♥ By Hackers For Hackers. - @rohsec
⚡🌌🌌teslatheg0... @TeslaTheGod
4K Followers 228 Following Top 90 on https://t.co/FjfGmQxi75 || https://t.co/pPR9UWROQt || Just a Teenage Hacker Spirit || Full Time Bug Hunter since July 2023 || No_DMs
Lolli Hunter @dev_retarded
68 Followers 625 Following The problem with this generation is that they have a problem with every Fucking thing. Building good software is HARD, or maybe I am a RETARD. Backend.
Ariyan Saleh @H4X0R37
16 Followers 138 Following
Shuvo Kumar Saha 🇧... @syper_shuvo
572 Followers 866 Following Bug Bounty Hunter | Penetration Tester
Starlink @Starlink
1.4M Followers 29 Following Internet from space for humans on Earth. Engineered by @SpaceX
Zwink @_zwink
299 Followers 163 Following
Ethical Hacker @whithat444
323 Followers 293 Following Security Researcher / Penetration Tester Gmail - [email protected]
Code_13x @code_13x
2K Followers 430 Following Cyber Security Researcher / Bug Hunter || H1 Clear Verified Hacker || Writeups Soon…
Nahid Hasan Limon @nh___limon
341 Followers 2K Following Busy in learning to build and break the web 😴️✨️
Muhammad Tanvir Ahmed @Tanvir0x1
2K Followers 93 Following Bug Bounty Hunter || Cyber Security Researcher || Ethical Hacker From Bangladesh 🇧🇩
Youssef Sammouda (sam... @samm0uda
37K Followers 496 Following Hacker, bug bounty hunter, guy behind https://t.co/TBAtP71Cop. 1st in Meta bug bounty program for the last 6 years. YES Team Member
Jobert Abma @jobertabma
43K Followers 718 Following I tweet about security and my experience as a hacker. Co-founder of HackerOne (@Hacker0x01).
Masonhck357 @Masonhck3571
16K Followers 781 Following 🔍 Top 100 Bug Bounty Hunter @ Bugcrowd | 🇩🇴 Dominican | Ethical hacking fanatic | 🎮🎵 Lover | Keeping the digital world safe. opinions are that of my own
sw33tLie @sw33tLie
10K Followers 909 Following Web application hacker, 25yo. Top 30 @ https://t.co/wX0yr85Tzk https://t.co/ZI7a8oJJcQ https://t.co/LGYK7tMOGo
Frans Rosén @fransrosen
43K Followers 897 Following Co-founder of @centrahq/@detectify/@poweredbyingrid. I do not advertise doing hacking services, do not trust the ones telling you I do.
spaceraccoon | Eugene... @spaceraccoonsec
25K Followers 302 Following Here to learn! Infosec@Open Government Products | White Hat && SecOps
Louis Nyffenegger @snyff
20K Followers 590 Following Founder/CEO/Trainer/Researcher/CVE archeologist @PentesterLab. Security engineer. Bugs are my own, not of my employer...
Tuan Anh Nguyen⚡️... @haxor31337
15K Followers 2K Following 29 y/o Bug Bounty Hunter and Red Teamer at Viettel Cyber Security. Brand Ambassador @Hacker0x01 - Researcher Spotlight @Bugcrowd
Patrik Fehrenbach @ITSecurityguard
31K Followers 285 Following rɪsˈpɒnsəbl dɪsˈkləʊʒə https://t.co/UKFhw5EBwf https://t.co/uCOkOOoNnP
Jess @Hogarth45_
3K Followers 384 Following Reformed Baptist Son Of A Shepard Hackerone's Bottom 10 list since 2014
Ahmed Elheny @Ahmex000
765 Followers 806 Following JR Penetration tester| BUG HUNTER. eJPT | eWAPTX | OSCP♻️Trends for United States
You might like
