Sapienshack @sapienshack
eWPTx | eJPT | Lead Application Security Analyst | Penetration Tester | Bug Bounty Hunter | Career Adviser | Developer | Secure Code Review sapienshack.com India Joined June 2021-
Tweets202
-
Followers135
-
Following429
-
Likes172
Check out out this certification I just earned from INE! sgq.io/CCAQCfk via @ine
Check out my blog post wix.to/f72MQ6o #newblogpost
cat vs wild 😜 #beargrylls #indiancat #catlover #bagarbilla youtube.com/shorts/TA0drSg… via @YouTube
Sometimes, People don’t really say what they are really 🧐
Our Top 5 #XSS Vectors Main + Inline 1')"<!--><Svg OnLoad=(confirm)(1)<!-- Full URL Validation JavaScript://%250Dtop.confirm?.(1)// Weak CSP Bypass 1'"><!--><Base Href=//X55.is? Regular JS Injection 1'-top['con\146irm'](1)-' Quoteless JSi /confirm?.(1)//\ #XSS #GameChanger
To bypass 403 restrictions 1. Use patterns like in the URL path /* /%2f/ /./ / /*/ 2. Adding Headers in request with value 127.0.0.1 X-Custom-IP-Authorization X-Forwarded-For X-Remote-IP Forwarded-For X-Client-IP 3. Switch from GET to POST (or other methods) #CyberSecurity
You're using Burp Collaborator wrong. Don't use Burp's default collaborator instance when testing for out of band vulnerabilities. Many companies use egress filtering & block outbound traffic to the default collaborator domain oastify.com It's worth setting up a…
Want to learn SSRF? credit : imabhisarpandey (1/5) Blogs: - book.hacktricks.xyz/pentesting-web… - cobalt.io/blog/a-pentest… - payatu.com/blog/arjuns/a-… - opensourceagenda.com/projects/allth… - neuralegion.com/blog/ssrf-serv… - trustwave.com/en-us/resource… - 0xn3va.gitbook.io/cheat-sheets/w… #infosec
If you think these apps are good for #XSS testing... ❌ DVWA ❌ Altoro Mutual ❌ TestPHP VulnWeb ❌ Firing Range Sorry to say but we are in 2024! 😆 They are so old that some of their tests are meant for Internet Explorer 6 to 9! knoxss.me/?page_id=766 Update your #XSS game.
Day 4/7 : SSRF Payload for Technologies: Oracle http://192.0.0.192/latest/ http://192.0.0.192/latest/user-data/ http://192.0.0.192/latest/meta-data http://192.0.0.192/latest/attributes/ Alibaba http://100.100.100.200/latest/meta-data/…
Subdomain Finder Websites | Find Subdomains without installing tools on your machine⚔️ - subdomainfinder.c99.nl - dnsdumpster.com - pentest-tools.com/information-ga… - nmmapper.com/sys/tools/subd… - securitytrails.com/domain/ - dnsspy.io - suip.biz…
Top 5 KNOXSS #XSS Vectors Main + Inline 1')"<!--><Svg OnLoad=(confirm)(1)<!-- Full URL Validation JavaScript://%250Dtop.confirm?.(1)// Weak CSP Bypass 1'"><!--><Base Href=//X55.is? Regular JS Injection 1'-top['con\146irm'](1)-' Quoteless JSi /confirm(1)?.(1)//\ #GameChanger
Directory-brute forcing? You should NEVER filter based on status code. Paths can exist and return a 404. I’ve seen this so many times: /noexist/ -> 404 Not Found. /api/ -> 404 Not Found, but different response body (JSON formatted) /api/endpoint -> 200 OK Filter by…
XSS Validation bypass when application block "Parenthesis" " ><img onerror=alert`23` src=a> #bugbountytips #bugbountyconference #XSS #Security #waf
An XSS JSON payload to bypass WAF, by @0x0SojalSec ["');alert('XSS');//"]@xyz.xxx
For those who are new to bug bounty or those who haven’t found SSRF yet, you can use these tools to get your first SSRF bug 🎯💰 PS: Don’t completely relay on tools, do manual testing too🧑💻
An unbeatable 75% off for those ready to elevate their skills 🥳! ** Like, Comment, Re-share, and 1 lucky winner will get a 100% discount on our CMPen- Android exam!** 🔖Promo Code - CMPen-Android-75-OFF 🕵️♂️Tom's Static Analysis Adventure! Tom was knee-deep into an Android…
Nuclei scanner's power comes from fuzzing templates. The following repository have different templates for the scanner which can be used for finding unknown security vulnerabilities github.com/projectdiscove… #bugbountytips #bugbounty #CyberSecurity
Pass the eWPTXv2 Exam on Your First Attempt in 2023! { by @grumpzsux } from @hashnode grumpz.net/pass-the-ewptx…
Deeann Midori @LeliaLord55792
1 Followers 98 Following Recruiting webshell engineers to penetrate websites, with a monthly salary of up to $100,000. If interested, pleas e contact https://t.co/e8C4M8ZzQK
Sharon McNamara @msharon7973208
510 Followers 7K Following Protecting @elonmusk online presence from impersonators is my top priority, leveraging my cybercrime expertise to safeguard his digital identity.
MAVIS Wanczyk @wanczyk3625
157 Followers 8K Following I won a lottery of huge amount so I’m willing to give out $20,000 to my first 500 followers due the Economy situation…just dm (“MAVIS I FOLLOWED“)
Infosec @infosec_com_br
380 Followers 4K Following
JiWoong Chang @DeLtAX2100
29 Followers 764 Following
CyberForged @CyberForgedVkng
623 Followers 766 Following Hacker FTW #InformationSecurity #Cybersecurity #Bugbounty
Susanti Astria @SusantiAst75420
193 Followers 3K Following
𝙍𝙖𝙢𝙆𝙧�... @GHOST_OPERATOR_
589 Followers 284 Following Associate Security Consultant | CRTP | eWPTXv2 | eMAPT | Bug hunter | Secured Apple, Asus,LG, Lenovo, Nokia and many more
FX CHRIS @FXCHRIS370519
564 Followers 5K Following Professional Trader Join Me to stay updated with market analysis,trading tips and setups Join👉 https://t.co/Y5kN8N3fNZ
DanielSherlock88 @DanielSherloc18
20 Followers 841 Following
OSINTelligence News @OSINTelligenceX
79 Followers 76 Following #Cybersecurity, #OSINT, and Threat #Intelligence #News, #Articles, #APT Behavior #Analysis, #Jobs, #Training, and more!
Carla @speigelcarla24
269 Followers 3K Following
iPsalmy👻🥷🏽 @Dghost_Ninja
3K Followers 707 Following Security Research | AppSec {API, Mobile, Web} | Polymath | Vawulence as a Service (VaaS) | I build insane stuff when I'm pissed :| https://t.co/Tce2UXnGZd
Hariom khatri @Hariomkhatri378
1 Followers 26 Following DCJSP | Bug hunting | penetration testing | OSINT
codeXoms @codeXoms
20 Followers 65 Following I am a student of BCA and a currently I am acquiring skills in MERN stack.
Jennifer @archerjennifer7
214 Followers 3K Following
Tiramisu @bitbyte24
3K Followers 500 Following Researcher @iiscbangalore prev-@Adoberesearch @bigbasket @iitdelhi
Radhe Rahul🇳🇵 @cyberarmy101
726 Followers 4K Following Independent Security Researcher 💻 || Penetration Tester💉 || Bug Bounty Hunter💰
El Sabueso de Linux @sabuesolinux
75K Followers 96 Following Security Operations Engineer. Mi Libro: https://t.co/bU9RVy8CDp 📖. Newsletter 📩 https://t.co/PCAvcxZASI
Meidas Mike #NAFO #Fe... @calmb4storm0
26K Followers 27K Following #VetsResist #DemVoice1 #ResistanceUnited #FBaRmy MSHS, BSCJ, ENTP, OSINT 🇺🇦 🇺🇸Navy Vet Integrity,empathy, Sapiosexual. @racoonspacerat.bsky.social
Maryanne @kelleymaryanne1
228 Followers 3K Following
Chris Hanlon @ChrisHanlonCA
17K Followers 18K Following Security Engineer Google Security Hall of Fame Presenter & Workshop host at #BSidesLV and #DEFCON
A Ankit Patel @AAnkitPatel2
49 Followers 691 Following I will win not immediately, but Definitely.😎😎
Jeannine @jeannine54rowel
334 Followers 3K Following
Blue Samurai @alikabo5555
29 Followers 398 Following
𝙀𝙇𝙇𝙄𝙊�... @Elliot_alien
2K Followers 1K Following “Maybe wars aren’t meant to be won, maybe they’re meant to be continuous.”
Peter loves 🐈�... @PeSt64
4K Followers 4K Following Fella, retired, Ex DFIR, cats, privacy, sim, cats, movies, cats, music, cats, other, cats...have i said cats? -from 🇩🇪
AI_Bot @AIBot_CdH
9K Followers 5K Following Una bot muy humana. #Ciberinteligencia #OSINT #Ciberseguridad para perfiles NO técnicos 🔗 https://t.co/TFBBZVjVoP
Gladys @g_maymon1
215 Followers 3K Following
Marc Menninger @MarcMenninger
5K Followers 1K Following Helping you escape your crappy job & transition into an exciting cybersecurity career in only 2 hrs/day | LinkedIn Learning instructor | Career coach
Kabir4 @Kabir77777994
310 Followers 4K Following
h3x3rr0r Sh4m @h3x3rr0r_87
12 Followers 342 Following
PCfanboy @Da_cmputerman
28 Followers 371 Following
Alma @jamesalma16
250 Followers 3K Following
Noureldin Ehab🥑 @Nouureldin_Ehab
2K Followers 1K Following AI 4 DevOps | DevRel | AWS Community Builder & UG Leader
Alice @jamesalice53
197 Followers 3K Following
Mahmoud Musbah @mahmoudmusbah9
216 Followers 2K Following 3rd Computer Science Shrouk Academy🧑💻, Cyber Security Student
bb00x @NathaniaMi47971
654 Followers 3K Following Bug bounty hunter that loves programming https://t.co/zYnJ6w3FwD
Mr.254 @MrHacks254
46 Followers 334 Following Hacktivitst, cyber security enthusiast, digital forensics investigator , security consultant.
Akhil Maurya @AkhilMaurya14
163 Followers 6K Following A Seasoned Cybersecurity Professional | OCD Antagonist | An Absolute State Of Mind. https://t.co/HFiKlVmemf
Christina Williams @SarahLarso50483
198 Followers 4K Following Tasha specializes in adult products (silicone dolls) and provides you with the best quality service, please visit the Telegram channel for details.
𝙍𝙖𝙢𝙆𝙧�... @GHOST_OPERATOR_
589 Followers 284 Following Associate Security Consultant | CRTP | eWPTXv2 | eMAPT | Bug hunter | Secured Apple, Asus,LG, Lenovo, Nokia and many more
Yogosha @YogoshaOfficial
9K Followers 355 Following Offensive Security Testing Platform. Bug Bounty, Penetration testing as a Service, VDP & Special Operations.
𝕏 Bug Bounty Write... @bountywriteups
35K Followers 4K Following 🔍 Bug Bounty Hunter | Content Creator | Sharing cybersecurity write-ups & resources | AI | | by @piyush_supiy #bugbounty #bugbountytips
Youssef (s3c) @s3c_krd
10K Followers 513 Following Security researcher & ambassador at Hackerone #bugbounty #hacker #bugbounytips
Tracy Wallace @TracyWallaceTec
617 Followers 311 Following Dad, husband, trainer, developer, IT architect. Wannabe maker.
Ayadim @ayadim_
2K Followers 1K Following 🇲🇦.{Farmer, Developer background , bug bounty hunter N00b , PUBG mobile player...}
Kamel Abo Adnan @Kamo889
23 Followers 2K Following
Veshraj Ghimire🇳�... @GhimireVeshraj
3K Followers 471 Following OSCP | CRTP | eWPTXv2 | eJPT | CEH(practical) || Security Engineer @vairavtech || SRT || Bug Bounty Hunter from Himalayas
Tuhin Bose @tuhin1729_
3K Followers 757 Following Security Researcher @cloudsek | Ex-BugBase | Bug Bounty Hunter | Penetration Tester | Freelancer | Speaker | Blogger | Krishna's Servant
Bug bounty notes @bugbounty0
8K Followers 2 Following Curated InfoSec & Bug Bounty resources from across the web. Follow for tools, write-ups, and leaks.
iPsalmy👻🥷🏽 @Dghost_Ninja
3K Followers 707 Following Security Research | AppSec {API, Mobile, Web} | Polymath | Vawulence as a Service (VaaS) | I build insane stuff when I'm pissed :| https://t.co/Tce2UXnGZd
Nikhil Mittal @nikhil_mitt
20K Followers 439 Following Hacker, Infosec Researcher, Military Affairs & History, PowerShell, AD and Azure pwner, Creator of Nishang and others :) Founder @alteredsecurity
Payatu @payatulabs
4K Followers 619 Following Research Powered Cybersecurity Services and Training. IoT | Embedded | mobile | cloud | Infra security. Organizers of @nullcon @hardwear_io
Mr-IoT @v33riot
1K Followers 560 Following IoT/OT Security | Creator of IoT-PT OS | Founder of @iotsrg1 | https://t.co/wndvFYFu2p
Vandana Verma @InfosecVandana
13K Followers 2K Following President @Infosecdiversty @infoseckids, Chair @owasp, RB @Blackhatevents ASIA @devseccon, #DevRel 🥑@snyksec Tweets are my own
c0c0n2025 @_c0c0n_
3K Followers 332 Following c0c0n is a five day cyber security, data privacy and hacking conference conducted annually.
BSidesZagreb @BSidesZagreb
371 Followers 17 Following BSidesZagreb is a free, non-profit, community-driven meetup for information security experts and enthusiasts to meet, share ideas and collaborate.
Enciphers @EnciphersLabs
3K Followers 0 Following Cyber Security As a Service | Penetration Testing | Red Teaming | Cloud Security 📋 Report Download ⬇: https://t.co/JmDjP1C8Hs
null - The Open Secur... @null0x00
13K Followers 1K Following The community is for cyber security professionals & enthusiasts. Connect with like-minded people and collaborate! Our mission: To spread security awareness
Kainat @KainatKamal
914 Followers 501 Following Learning @iimb_official 👩🎓 Product Security @Honeywell ✈️☁️👩💻🌸
Security BSides Ahmed... @bsidesahmedabad
9K Followers 880 Following Official Account of Security BSides Ahmedabad, India; 6th Edition: 12-13 SEPTEMBER 2025📢🗓️
Security BSides Banga... @bsidesbangalore
1K Followers 395 Following Inspire,Support, Collaborate & Connect cyber security professionals across the Globe- Community-driven event for and by information security community members!
Sergio Medeiros @grumpzsux
5K Followers 353 Following || Penetration Tester @ Synack || eWPTXv2, CAPenX, CAPen, eWPT, eCPPTv2 , eJPT certified. Opinions are my own. || #bugbounty #bugbountytips #cybersecurity
Musab Khan @Musab1995
4K Followers 750 Following Certified Ethical Hacker | Penetration Tester | Youtuber
Kritika Singh @Krit_Sec
2K Followers 64 Following Triage Intake Analyst at H1 • Crest CPSA • eCPPTv2 • eWPTXv2 • Synack Red Teamer • Bug Bounty hunter • Security Researcher • IGDTUW'24
DC | David Lee @dccybersec
13K Followers 847 Following Freelancing | Cybersecurity | @saferinternetpr
7h3h4ckv157 @7h3h4ckv157
51K Followers 117 Following Hacker (He/Him) | Hall of Fame: Google, Apple, NASA, 𝕏 (FKA Twitter) | Speaker: BlackHat MEA x1 | CVE ×4 | HTB Rank: Guru | P1 warrior - Bugcrowd | CS Engineer
Het Mehta @hetmehtaa
36K Followers 1K Following Security Analyst | Content Creator | I Spread Cybersecurity News & Talk about AI, Cloud, Tech, Tools & Recent Updates
Save to Notion @SaveToNotion
217K Followers 2 Following I save your favorite Tweets and Threads to your Notion Workspace! Just follow @SaveToNotion & check the pinned tweet to start, Developed by: @Abdulhade_Ahmad
Rishika Desai @ich_rish99
5K Followers 622 Following Security Analyst @BforeAI | Cyber Threat Researcher | Dancer, Writer, Poet, Freelancer, Blogger, and more to add! ✨ Let's connect and share ideas! ❤
hAPI_hacker @hAPI_hacker
14K Followers 736 Following { "name": "Corey J. Ball", "author": "Hacking APIs", "creator": "https://t.co/y3EHBlzHvJ", "is_admin": true }
Radhe Rahul🇳🇵 @cyberarmy101
726 Followers 4K Following Independent Security Researcher 💻 || Penetration Tester💉 || Bug Bounty Hunter💰
Fortune Andrew #Cyber... @ai3ech
645 Followers 611 Following Teaching myself Cybersecurity through my post. stan @liveoverflow
Vandana @VandanaVankhede
2K Followers 1K Following Tech chatter. Code & AI talk.(T-Shaped SWE)🧑💻 And sometimes I jump into random talks. Writing at - https://t.co/8X2M8xPQjd
:) @pwnsauc3
2K Followers 1K Following
Tiramisu @bitbyte24
3K Followers 500 Following Researcher @iiscbangalore prev-@Adoberesearch @bigbasket @iitdelhi
NULLCON @nullcon
22K Followers 2K Following International #Security Conference, Training & Exhibition Platform - the neXt security thing! ✈️Up next #NullconBerlin2025
Null Bangalore @Nullblr
5K Followers 171 Following The Bangalore chapter of India's largest open security community, NULL @null0x00.
Information Security ... @InfoSecAwa
11K Followers 633 Following ISEA - for safe, trusted and secure cyber space by MeitY, GoI. Visit: https://t.co/FMCSfu9HVR #StaySafeOnline #BeSafe #StaySafe #DigitalNaagrik
Ministry of Electroni... @GoI_MeitY
1.0M Followers 313 Following भारत सरकार की इलेक्ट्रॉनिकी और सूचना प्रौद्योगिकी मंत्रालय की आधिकारिक ट्विटर Official Twitter of Ministry of Electronics & Information Technology Gov of India
CERT-In @IndianCERT
45K Followers 29 Following Official Twitter handle of Indian Computer Emergency Response Team, Ministry of Electronics & Information Technology, Government of India
NCIIPC India @NCIIPC
8K Followers 10 Following National Nodal Agency for Protection of Critical Information Infrastructure.
RootSploit @rootsploit
1K Followers 830 Following Offensive Security Engineer @Amazon | Ex @Apple | Bug Hunter | OSCP | Cobalt Core | Views are my own!!
Sujit Suryawanshi @_codeh4ck3r
850 Followers 526 Following Security Engineer @PayPal | Ex-IBMer | Application Security | Offensive Security | Threat Modeling | Security Architecture | Opinions are my own
Lauritz @_lauritz_
2K Followers 1K Following IT-Security Researcher, Pentester and Bug Hunter. Passionate about 💻, 🤽♂️, ⚜️, 🎸 and ⚽ (@VfLBochum1848eV ) #Kaeferjaeger + H1 Ambassador
Saad Nasir @iamsaadnasir
5K Followers 5K Following Founder @BSides_ABQ | Lead, Offensive Security @SolarWinds | Team Lead @Cobalt_io Likes, RTs, etc. ≠ endorsement.Trends for United States
You might like
