Cássio Gomes @netfuzzer
... Brazil Joined September 2011-
Tweets144
-
Followers1K
-
Following306
-
Likes344
I discovered how to use CSS to steal attribute data without selectors and stylesheet imports! This means you can now exploit CSS injection via style attributes! Learn how below: portswigger.net/research/inlin…
Reporting reflected XSS as critical.
This #NahamCon2025 talk has generated over $50,000 in bounties for @YShahinzadeh and a few other hackers: Puny-Code, 0-Click Account Takeover. 🎥👉🏼youtu.be/4CCghc7eUgI
Full-Width Symbols, a useful cheatsheet to bypass WAF by @therceman
We've updated our URL validation bypass cheat sheet with this shiny Domain allow list bypass payload contributed by @dyak0xdb!
Discover blocklist bypasses via unicode overflows using the latest updates to ActiveScan++, Hackvertor & Shazzer! Thanks to @ryancbarnett and @thecyberneh for sharing this technique. Writeup 👇
Bug Bounty Tip Don't forget to check for the /_wpeprivate/config.json endpoint on a website (usually with WordPress) for information disclosure. Google Dork 👉 Site: *.example.com inurl:"_wpeprivate" Cheers!
Successfully bypassed a SSRF WAF by using a combination of IPV6 + Unicode. Payload for Metadata instances: http://[::ⓕⓕⓕⓕ:①⑥⑨。②⑤④。⑯⑨。②⑤④]:80 Check images for response difference between 169.254.169.254 and the above payload I shared 🔥 #bugbounty #infosec #waf
I found 2 Blind time-based SQL Injections in X-Forwarded-For: header just using Burp Intruder. Made a list of 500+ HTTP request and tested one by one for 3+ hours, here is the result.. X-Forwarded-For: 0'XOR(if(now()=sysdate(),sleep(6),0))XOR'Z #BugBounty
☃️ Bug Bounty Reference ☃️ A repository that contains huge list of bug bounty writeups categorized by the bug nature such as ➡️ SQLi ➡️ XSS ➡️ RCE and more ...
I think bug bounty platforms will see a huge decrease of excellent hackers in the next years.
Now that's impressive 🔥 portswigger.net/research/porta…
GitHub - EmperialX/XSS-Automation-Tool: "XSS automation tool helps hackers identify and exploit cross-site scripting vulnerabilities in web apps. Tests for reflected and persistent XSS. Customize request headers, cookies, proxies, and auth github.com/EmperialX/XSS-…
GitHub - 0xTeles/jsleak: a Go code to detect leaks in JS files via regex patterns github.com/0xTeles/jsleak
I created a repository to keep track of cool XSS payloads github.com/terjanq/Tiny-X… Check this out! credit:@terjanq #xss #bugbountytips
I use this tool regularly! It's very simple, it does reverse DNS lookups as fast as possible. It's a great way of discovering domains and subdomains owned by a company when you know their IP address range(s). github.com/hakluke/hakrev…
when you are looking for bugs like SSRF & Open Redirect. and there is a blacklisted character. try to bypassed using other Unicode characters. I found Open Redirect Bypass Using (。) Chinese dot "%E3%80%82". poc: redirect_to=////evil%E3%80%82com credit:@h4x0r_dz #bugbountytip
Updates & Fixes: 1. Increased the sleeping time between the requests 2. made a checking for the status code == 200 (( that would avoid faking the XSS alerts )) 3. Removed the saving for the nothing results, It's useless option github.com/SirBugs/Xssor.…
Shodan for Bug Bounty — and Why You Shouldn’t Use these 53 Dorks. by: nynan cutt.ly/l4cNQCt #bugbounty #WriteUps
Remote Command Execution in a Bank Server 👽 #bugbountytip
Gareth Heyes \u2028 @garethheyes
37K Followers 1K Following JavaScript for hackers: Learn to think like a hacker. https://t.co/e0aNEbEDk5
Frans Rosén @fransrosen
43K Followers 897 Following Co-founder of @centrahq/@detectify/@poweredbyingrid. I do not advertise doing hacking services, do not trust the ones telling you I do.
Tuan Anh Nguyen⚡️... @haxor31337
15K Followers 2K Following 29 y/o Bug Bounty Hunter and Red Teamer at Viettel Cyber Security. Brand Ambassador @Hacker0x01 - Researcher Spotlight @Bugcrowd
Geekboy @emgeekboy
25K Followers 452 Following Hacker, Co-Founder @pdiscoveryio, Ex-Security Analyst / BugBounty @Hacker0x01
Guardian Angel Intell... @GAIA_Sasuki
3 Followers 416 Following
Satya Prakash @0xKayala
767 Followers 2K Following CEH | PenTester @TechnoValS | My Blog https://t.co/LUPW4t6MJ3 | Bug Hunter 🐞| Security Nerd 👨💻 | Finding flaws 🕵️♂️, Fixing systems 💻 & Sharing the journey 🛤️
Gabriel Geraldino @ggs2__
15 Followers 447 Following
𝗦𝗵𝗶𝗯𝘂 @shibusec
429 Followers 828 Following
xandsz @xandsz__
2K Followers 739 Following Bug Hunter | Hacking | 5x CVE 🇧🇷 https://t.co/AVdQJgXDUh https://t.co/zlJ0CT8yrq https://t.co/4tROLFkg9A https://t.co/pv1n69PViu
Yassine B.Ayed @YassineBAy76284
0 Followers 28 Following
Andrew Baji @baji_andrew
3 Followers 5K Following
Kayin @Kayiyan1703
1 Followers 112 Following
Abdelali Kyo @KyoAbdelali
1 Followers 102 Following
Xavier @CaptXR
49 Followers 514 Following Aspiring Game Developer, Artist, Animator, Programmer & Musician
Elvis - MSc Computer ... @elviscybersec
27 Followers 784 Following Cybersecurity, Cyber Threat Intelligence Manager / Pen Testing / Web Security / Internet Governance / Domain Registry System Engineering Lead
Felipe Moraes @FelipeM59025842
0 Followers 15 Following
RESPECT.EXE @Moeragab_exe
2 Followers 48 Following
just reading @DarywshP
29 Followers 445 Following i made this account just for reading about security
SIDDU REDDY MULKALLA @reddy_sidd67562
12 Followers 215 Following
Naman Devnani @naman_devnani
418 Followers 7K Following Security Researcher | Purple Team | Bug Hunter | CTF Player | Science & Tech Enthusiast | R&D | All-Source Intelligence | CAP | DCSP | TTIA | BCDE | COL
Mohamad Bahrami @Mohamad_B9912
0 Followers 5 Following
faisal faisal @faisalfais55594
0 Followers 4 Following
Hunter94 @hunternove4
0 Followers 21 Following
Kalki @kalkion
4 Followers 211 Following
العراب @alrab81225245
42 Followers 605 Following Penetration Tester | Bug Hunter. : #bugbounty #bugbountytips #hacking #infosec #cybersecurity Learning never stops!
Pedro Henrique Garcia @PedroHe91192899
0 Followers 34 Following
Yusuf @Yousef3Atallah
30 Followers 356 Following
null @ipc0mp
20 Followers 185 Following
ABİ @MythScapegoat
96 Followers 315 Following
/usr/bin/fares @SirBagoza
8K Followers 692 Following PartT bb hunter | Sec consultant | living my own life | YT@CyberBugz
Danish Bhat @danish_bhat777
667 Followers 1K Following - Security Researcher at https://t.co/vTjAitwwNB @bugcrowd👨🏻💻
Hibban Cilacap - #MWI... @zahidclp95
92 Followers 2K Following Hi,I am a Freelance Web Pentester self-taught since 2013. In the future I plan to take Certified CEH,, Bismillah Someone lahir 2004 , Religius, Akhwat Mode
rickyblackthor @rickyblackthor
0 Followers 86 Following
01x00x01 @01x00x01
191 Followers 2K Following
Pit @suidpit
338 Followers 893 Following human, chaotic good | master-of-none expert | security researcher @ Shielder
Intigriti @intigriti
193K Followers 658 Following Bug bounty & VDP platform trusted by the world’s largest organisations! 🌍
JS0N Haddix @Jhaddix
167K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. Cybersecurity + Hacking + AI + Sec Leadership @arcanuminfosec
Gareth Heyes \u2028 @garethheyes
37K Followers 1K Following JavaScript for hackers: Learn to think like a hacker. https://t.co/e0aNEbEDk5
bugcrowd @Bugcrowd
187K Followers 6K Following The leading provider of crowdsourced cybersecurity solutions purpose-built to secure the digitally connected world...Unleash Ingenuity™
James Kettle @albinowax
79K Followers 92 Following Director of Research at PortSwigger aka Burp Suite. Find my research, tools & contact details at https://t.co/vP6UbGmvl3
Trend Zero Day Initia... @thezdi
83K Followers 16 Following Trend Zero Day Initiative™ (ZDI) is a program designed to reward security researchers for responsibly disclosing vulnerabilities.
HackerOne @Hacker0x01
324K Followers 3K Following The only official HackerOne Twitter account. A global leader in offensive security solutions. #HackForGood #togetherwehitharder
publiclyDisclosed @disclosedh1
65K Followers 2 Following This is an unofficial HackerOne public disclosure watcher who keeps you up to date about the recently disclosed bugs. By @NOBBD![[Hacker + lover of bash] I Don't know how to hack but i know how to pwnd!](https://pbs.twimg.com/profile_images/1176789748322643968/bEReriMR.jpg)
Ahsan Khan @hunter0x7
34K Followers 1K Following [Hacker + lover of bash] I Don't know how to hack but i know how to pwnd!
Vend Bug Bounty @VendBugBounty
255 Followers 4 Following
XSS Payloads @XssPayloads
52K Followers 0 Following
harris0ft @harris0ft
5K Followers 98 Following Christian, Hacker, Independent Security Researcher. https://t.co/7rmqelX5L4
João Gomes (zig_shar... @JoaoGomes12243
2K Followers 243 Following 24 | I am nothing, God has everything | 🇦🇴 | white hat hacker @Hacker0x01 | Aberto à colaboração 🤝
Gospel @4osp3l
16K Followers 7K Following Offensive Security | Christain | Bug Bounty Hunter | Vulnerability Researcher | 0x19 | Pentester | WoT
Chrome @googlechrome
7.1M Followers 83 Following The official X account for the Google Chrome browser.
Sick.Codes @sickcodes
17K Followers 6K Following Security researcher 🇦🇺 Good-faith hacking 🤡 Weaponizing source code 🧬 https://t.co/qulkQaGWp9
Logan @LoganSaylor_
666K Followers 12K Following Altcoins Promoter, Holder and Investor✊. Best in the Business. Grow Your Project/Business With Logan. 🚀Dm Me For Promo📨 #Altcoin #MemeCoin #BSC #BNB #BTC
Bug Bounty Wall of Sh... @bbwallofshame
360 Followers 0 Following DMs open Anon submissions to: [email protected] PRs to: https://t.co/UQrakpOOlg
Ibamagov @ibamagov
46K Followers 61 Following Perfil oficial do Instituto Brasileiro do Meio Ambiente e dos Recursos Naturais Renováveis (Ibama)
Alexandria Ocasio-Cor... @AOC
12.7M Followers 4K Following US Congresswoman, NY-14. In a modern, moral, and wealthy society, no American should be too poor to live. People-Funded, takes no lobbyist💰. Personal account.
Airlock Secure Access... @ErgonAirlock
644 Followers 263 Following For optimized #security of #applications, #API, #data and #identities. For intelligent access management. For efficient solutions. For you.
Larissa @larissafealves
139 Followers 179 Following
Ricardo Galvão @ricardogalvaosp
91K Followers 284 Following Avô, cientista, apicultor, presidente do CNPq, professor da USP, ex-diretor do Inpe e membro da SBPC. (Os posts refletem posicionamento pessoal)
CZ 🔶 BNB @cz_binance
10.1M Followers 2K Following DM: https://t.co/ITLXkxVNyN (fees go to charity) @BNBchain, @YZiLabs, @GiggleAcademy, ex-@binance.
Loh Alves @Neikeea
146 Followers 180 Following Estratégia de Lançamentos Epecialista em Storytelling A emoção como a melhor narrativa 🧡 🐶 Meus 🧡 Floquinho 🧡 Cebolinha 🧡 Maggie 🧡 Pirata 🧡 Croquete
Lei Jun @leijun
489K Followers 86 Following Founder and CEO of @Xiaomi Passion is the reason and the answer
arthur aires @arthurair_es
3K Followers 373 Following Bug Hunter at HackerOne ex-Medical Student at the Federal University of Amapá [email protected]
Telegram Brasil @telegram_br
127K Followers 11 Following Simples, rápido, seguro e sincronizado em todos os seus dispositivos. Um dos top 5 apps mais baixados do mundo, com mais de 1 bilhão de usuários ativos.
2PAC @2PAC
761K Followers 2 Following The official Twitter of 2PAC. Managed and operated by the Shakur Estate. His legacy lives.
Fabio Makita @AkitaOnRails
83K Followers 420 Following CONTA PESSOAL E FECHADA. SE NÃO CONCORDA COM ALGO, SÓ NÃO SEGUIR. 🦅
PipeWire Project @PipewireP
5K Followers 66 Following PipeWire is an audio and video server for Linux systems. #pipewire This is an old account, check our website to find us on social media.
Taiwan Digital Diplom... @digidiploTaiwan
11K Followers 2K Following Non-partisan NGO dedicated to #DigitalDiplomacy and #CitizenDiplomacy for #Taiwan. Facebook: https://t.co/YpDDNXaAm8. IG: https://t.co/AsoviOPoBB. RTs ≠ endorsements
Ukraine / Украї�... @Ukraine
2.2M Followers 28 Following Yes, this is the official X account of Ukraine. Офіційний акаунт твоєї Неньки.
Awesome Google VRP Wr... @gvrp_writeups
3K Followers 0 Following Automatically tweeting new writeups from the GitHub repository "awesome-google-vrp-writeups".
Xiaomi @Xiaomi
4.4M Followers 363 Following Through your lens, we hope to see your story at Xiaomi Imagery Awards 2025: https://t.co/IwaCpzK78a For support, please contact @XiaomiSupport
NVIDIA Brasil @NVIDIABrasil
5K Followers 21 Following O perfil oficial da NVIDIA Brasil. Blog: https://t.co/TUZae8G9Mm | Suporte: https://t.co/eilOAJnMHg | Todas as Redes Sociais da NVIDIA: https://t.co/BEC1nM90ic
Fermat's Library @fermatslibrary
775K Followers 4 Following A platform for illuminating academic papers. We annotate and share a paper every week. Save, annotate and share papers with anyone: https://t.co/0o2Pls3jmo
Chevrolet Brasil @chevroletbrasil
147K Followers 49 Following Chevrolet 100 anos. Sempre na direção do futuro.
The Debian Project @debian
283K Followers 4K Following The Universal Operating System; follow our news via https://t.co/zD9A4YClrc and https://t.co/wHPftZFODt
Fedora Project (@fedo... @fedora
183K Followers 254 Following This is the official feed for the Fedora Project, a global free software community sponsored by @RedHat. Find us on Mastodon: @[email protected]
GNOME @gnome
200K Followers 301 Following Creators of the GNOME Project, GTK, Flatpak, and other open source technologies.
Red Hat @RedHat
297K Followers 1K Following The leading provider of enterprise open source solutions, using a community-powered approach to deliver Linux, hybrid cloud, edge, and Kubernetes technologies.
Red Hat Telco @RedHatTelco
44K Followers 473 Following Red Hat is driving infrastructure modernization and digital transformation across the content, media, and communications service provider organizations.
André Marinho @AndreMarinho
162K Followers 2K Following 🎙️Showman-TV Entertainer! 🏅Forbes Under 30 | 2024 🇧🇷 Autor do livro “𝗢 𝗕𝗥𝗔𝗦𝗜𝗟 (𝗡𝗔̃𝗢) 𝗘́ 𝗨𝗠𝗔 𝗣𝗜𝗔𝗗𝗔”
keralaboy @_keralaboy_
15 Followers 25 Following worldrank 688 @google hall of fame and 359 @yeswehack,cybersecurity ,11th grade dropout , author dragman software,loves science,nature and animals, -semivegan
Pavel Durov @durov
2.7M Followers 1 Following Founder, CEO at @telegram (2013), founder, ex-CEO of @vkontakte (2006), part-time troll.Trends for United States
You might like
