Filter
Exclude
Time range
-
Near
rst retweeted
$200K my first year of part-time bounty hunting exclusively with Bugcrowd! I have learned so much and am truly blessed! I am planning to start a fun Youtube video series very soon to teach what I have learned. Please follow and stay tuned!🤟 #bugcrowd #BugBounty #bugbountytips
10
16
0
172
Makarov.Dreyar retweeted
Basic recon - Shodan dork ssl:target.com 200 ok - Got a few login pages. - Github dork "target.com" "password" - Default Security mechanism with Gmail login, tried on other login pages. BOOM! Internal admin access! #recontips #bugbountytips #recon
9
139
5
524
A comprehensive guide on "Attacking Access Control Models In Modern Web Applications" Read our newest article here: snapsec.co/blog/2021/09/25/A… #bugbounty #bugbountytips #appsec #cybersecurity
0
0
0
0
CyberSec BOT retweeted
We Just published a write-up : "Attacking Access Control Models In Modern Web Applications". snapsec.co/blog/2021/09/25/A… Follow us for more @snap_sec . #bugbounty #bugbountytips #appsec
0
3
0
2
Muhammad Saqib Arif 🇵🇰 retweeted
Trying to pop an XSS alert box but alert/prompt/confirm/eval all blocked? Sometimes alert.call() will work depending on their filters (I've found this to be useful for regex filters) example: <script>alert.call(%20, "XSS");</script> #bugbountytips #XSS
2
61
1
140
Show this thread
Xolotl73 retweeted
XSS payload for an image: <img src=x onerror=alert('XSS')>.png "><img src=x onerror=alert('XSS')>.png "><svg onmouseover=alert(1)>.svg <<script>alert('xss')<!--a-->a.png #bugbounty #bugbountytips #hacker #BugBounty #HackTheBox
0
107
0
263
Soumen Jana retweeted
(1/2) Tired of Duplicate on Long String DoS on the web apps? Try this < Apply the Long String using the web app and open the same stuff in Android App. The app will crash always or will lag if vulnerable. #BugBounty #bugbountytips
2
15
0
31
Show this thread