RT @Geluchat: Today was my last day as a pentester at Bsecure, and it feels a bit surreal. After a three-year journey of hunting on the sid….

RT @moonlaggoune: Un projet de loi sur le PEA a été déposé le 24 juin 2025. J’ai dû le relire plusieurs fois pour y croire…. S’il est adop….

RT @intigriti: ⏰ It's CHALLENGE O'CLOCK!.👉 Capture the flag before Thursday the 26th of June.👉 Win €400 in SWAG prizes.👉 We'll release a ti….

RT @pwnwithlove: @aituglo that was so cool!! really happy I got to organize this with you - let’s do it again next year for sure :p (best v….

RT @aituglo: Very late this time, but here it is. Hacker House, Teaching and Gadgets.

RT @Hacker0x01: Congrats to these award winners for their innovation, collaboration, and relentless pursuit of impact. 🔥 Most Valuable Hac….

RT @infosec_au: I won the Most Valuable Hacker award for the Salesforce H1-6102 live hacking event in Sydney (my hometown)! I enjoyed worki….

RT @kinugawamasato: lol, this works on Firefox:. <object data=# codebase=javascript:alert(document.domain)//>.OR.<embed src=# codebase=java….

RT @podalirius_: Introducing a new tool of The Manticore Project: Delegations. Manage Kerberos delegations like a pro: audit, add, remove,….

RT @comores_11: Happy to have been rewarded for discovering a hidden XSS vulnerability with Onetest, a new tool for discovering hidden XSS….

RT @therceman:

RT @onetestfr: Here's a video demonstrating the tool exploiting an XSS vulnerability in a GET parameter with a JSON value. 🚀. Join our Disc….

We'll share lots of examples of how to use it 👇.

RT @0xTRIKKSS: Je termine premier dans la catégorie reverse junior au FCSC 2025 !. J'ai publié sur mon blog deux write-ups de challenges qu….

RT @truffzor: Some time ago while hunting with @Icare1337 and looking for bugs in Ghostscript I found a vulnerability that allows to local….

Onetest Extension is now in free beta. Join our Discord for the download link, install guide and your API key. Tell us about any bugs and share ideas for improvements. #BugBounty #XSS #OneTest

Join the OneTest Discord! The XSS extension is running a bit late, but we’re working hard to ship the beta ASAP. Check out this quick demo video, all updates and test-lab access will be shared there. See you inside! 👇.

6/6 A demo video is on its way stay tuned!. We’re launching a private beta with @comores_11 to fine-tune the tool before public release. You get early access, test it for free, we're opening this test program thisweekend and I'll share a Discord invite link soon.

5/6 It also handles content-type to test only what's relevant, and tracks payloads across multiple requests to help detect stored XSS cases automatically. In short: it detects XSS, you focus on analyzing the results.

4/6 It adapts to various contexts — JSON, forms, 2nd order XSS, custom headers, paths. Detects backend technologies to inject tech-specific parameters.