Md Ismail Šojal 🕷️
@0x0SojalSec
Followers
30K
Following
51K
Media
817
Statuses
38K
Cyber_Security_Re-searcher || 0SINT || Malware Analysis II Pwn || Ai Re-searcher || Project @AIStrikeSec || 0ld Accounts Suspended @0xSojalSec ||
localhost
Joined October 2021
RT @RenwaX23: Since Apple doesn’t care, I don’t care either. Here are the details of an address bar spoof vulnerability in Safari on Mac….
0
296
0
0
76
0
RT @hackinghub_io: APIs tell you everything (if you listen). Beginners often jump straight to brute forcing but many APIs actually tell yo….
0
50
0
RT @Joyerz5: An interesting Privilege Escalation Story.Admin Action only.GET /PrintDocument/PrintStatement/1001 => 200 OK. I tried this sam….
0
7
0
RT @bountywriteups: Weak OAuth, Big Problem: Grafana Login Bypass Explained. #bugbounty #bugbountytips #bugbountytip.
teamdh49.medium.com
Ever wondered if a simple OAuth misconfiguration could hand over access to a dashboard? Spoiler: it can — and it did.
0
24
0
RT @CyberWarship: ''GitHub - Paradoxis/ADSyncDump-BOF: The ADSyncDump BOF is a port of Dirk-Jan Mollema's / ADSyncD….
github.com
The ADSyncDump BOF is a port of Dirkjan Mollema's adconnectdump.py / ADSyncDecrypt into a Beacon Object File (BOF) with zero dependencies. - Paradoxis/ADSyncDump-BOF
0
10
0
RT @techycodec08: 🚨 Yo #BugBounty crew! Just dropped a 🔥 blog about sneaking past Trello's "Invite Only" gate via Slack! 😎 Found a privileg….
0
30
0
RT @0x0SojalSec: Resources, research, and tools for securing AI systems⚔️. - #cybersec #infosec #bugbountytips #ai….
github.com
Resources, research, and tools for securing AI systems - GitHub - 0xSojalSec/Awesome-AI-Security: Resources, research, and tools for securing AI systems
0
5
0
RT @_bagipro: New Android host validation bypass technique!. [1/4] All parsed URIs in Android are Uri.StringUri obj….
0
69
0
RT @xyz3va: how to gain code execution on millions of people and hundreds of popular apps.and of course, firebase was (partially) the cause….
0
291
0
Turn data into actionable insights with IDI Consulting’s Analytics services. We help you unlock the power of your data to drive smarter decisions and achieve better outcomes. Contact us today to get started.
6
13
213
RT @albinowax: Concerned about LLMs replacing pentesters? We've made enhancing your own workflow with AI easier than ever - you can now bui….
0
33
0
Resources, research, and tools for securing AI systems⚔️. - #cybersec #infosec #bugbountytips #aisecurity.
github.com
Resources, research, and tools for securing AI systems - GitHub - 0xSojalSec/Awesome-AI-Security: Resources, research, and tools for securing AI systems
1
5
33
Teaching LLMs how to XSS - An introduction to fine-tuning and reinforcement learning (using your own GPU) ⚔️. - Thanks : @har1sec . #infosec #cybersec #bugbountytips #Ai
2
70
236
RT @albinowax: The whitepaper is live! Learn how to win the HTTP desync endgame. and why HTTP/1.1 needs to die:
http1mustdie.com
Upstream HTTP/1.1 is inherently insecure, and routinely exposes millions of websites to hostile takeover. Join the mission to kill HTTP/1.1 now
0
250
0
Find the origin servers of websites protected by Cloudflare, Sucuri, or Incapsula with a misconfigured DNS. ⚔️. - #infosec #bugbountytips #Cybersecurity
9
163
666
1
11
41
0
73
0
RT @ri5255: I've started working on the 2025 edition of "Hacking: The Art of Exploitation", a beginner-friendly guide to binary exploitatio….
r1ru.github.io
This blog series is still a work in progress. The content may change without notice.
0
95
0
RT @InsiderPhD: Absolutely crazy. This malware checks if Claude or Claude code is installed and invokes it to exfiltrate data from differen….
0
47
0
