Interesting way to bypass WAF when you need to use the </script> tag: Inspired by: @_0x999 meydi" or 1=/*</script>*/ -- - <XSS> The WAF first checks for SQLi, so ignore the comment section. 1)

From SSRF to RCE and transfer money in core banking. It is really cool red team case. A perfect combination of external and internal vulnerabilities for each other to bypass the monitoring and detection of the blue team. Present by my colleague @_q5ca https://t.co/1BTM3YvFgT

🎁Monthly Giveaway🎁 Hack The Box 6-month VIP+ - Follow, Like, and Retweet to join! - Winners will be picked randomly on 5 June. #hackthebox #giveaway #projectsekaictf

Just 2 days to go! Don’t miss the hands-on workshop at the ISRA Kochi Meetup! Learn how the Windows loader handles binaries, and how attackers mimic this behavior for stealth and persistence. #CyberSecurity #MalwareAnalysis #ReverseEngineering #kochi #kerala #SecurityCommunity

Join us for a hands-on workshop at the ISRA Kochi Meetup: “Binary Blueprints – How File Structures Reveal Malware Secrets” with Niranjan Jayanand and Madhuri Syamakala! Date: May 24, 2025 Venue: Tinkerhub, Seaport - Airport Road, Kochi #cybersecurity #infosec #kochi #Kerala

Call for Papers is OPEN! Are you working on cutting-edge cybersecurity research, offensive/defensive techniques, or innovations in AI or threat intel? Deadline for Talk Submission: 01 Jun 25 For more details, visit: https://t.co/grcs6jdxLA #cfp #cfpalert #CyberSecurity

This is big ..😜

🚀 Introducing CAPIE: Certified API Hacking Expert – Now Only €25! https://t.co/nSqtdp8qTx My approach has always been direct, and I’m not about to change that now. If you’re itching to break into API hacking but don’t know where to start, listen up: research is everything. I

⚠️ Warning ⚠️ Kali has a new signing key! 🔑 (Manual action required! 🫣) If you are getting: > Missing key 827C8569F2518CC677FECA1AED65462EC8D5E4C5, which is needed to verify signature. You need to download and install the new key manually, here’s the one-liner: ``` sudo

🎉 xss0r v4 GIVEAWAY ALERT! 🎉 Starts: April 28, 2025 Ends: Sunday, May 4, 2025 🏆 Prizes: 🥇 1st Place: Diamond Plan (3 months) + FREE VPS (8 months) 🥈 2nd Place: PRO Plan (1 month) + exclusive access to xss0r Labs 🥉 3rd Place: Basic Plan (1 month) 🚀 How to Enter: 1️⃣

📱 A Comprehensive Guide on Modern iOS Pentesting Guide: https://t.co/oOZ3u4p6Vg #infosec

Dear @hackthebox_eu I’m reaching out to bring to your attention a concerning issue involving the misuse of the Hack The Box (HTB) name and community branding by a group claiming affiliation with HTB Kerala. More in the thread…

Client-Side Path Traversal (CSPT): The Overlooked Vulnerability. Read more about this on my new blog: https://t.co/SPjV7ynFlt #cybersecurity #bugbounty #vulnerability #websecurity

#𝗞𝗮𝗹𝗺𝗮𝗿𝗖𝗧𝗙 𝟮𝟬𝟮𝟱 𝗶𝘀 𝗷𝘂𝘀𝘁 𝗮𝗿𝗼𝘂𝗻𝗱 𝘁𝗵𝗲 𝗰𝗼𝗿𝗻𝗲𝗿 - 𝗰𝗼𝗺𝗲 𝗰𝗼𝗺𝗽𝗲𝘁𝗲 𝘄𝗶𝘁𝗵 𝘁𝗵𝗲 𝗯𝗲𝘀𝘁 𝗰𝗼𝗺𝗽𝗲𝘁𝗶𝘁𝗶𝘃𝗲 𝗵𝗮𝗰𝗸𝗲𝗿𝘀 𝗳𝗿𝗼𝗺 𝗮𝗿𝗼𝘂𝗻𝗱 𝘁𝗵𝗲 𝘄𝗼𝗿𝗹𝗱 𝗮𝗻𝗱 𝘄𝗶𝗻 𝗴𝗿𝗲𝗮𝘁 𝗽𝗿𝗶𝘇𝗲𝘀! (6x IDAPro from @HexRaysSA) #CTF

Hey all!!! at @seasides_conf ------Lost& found post---- 1.If you have found a goodie bag 🎒 That has a Jiofi device (wifi ) & bunch of new landyards Please connect with one of our volunteer Cc @parveen1015 @bugbountyvillag @goodbestguy @Debuhkzr @mishr_a_nurag @Zero0x00

Me to the recruiters after attending @seasides_conf - 💰 Salary? 2x it. - 🏝 Work mode? Remote with ocean view. - ⏳ Work hrs? As per me & thrilling. - 🎩 Job title? Sr Cyber Overlord (or just "Hacker Extraordinaire"). #SeasidesEffect #HackingFlex #PayMeInCryptoToo #UpSkills

Do join @seasides_conf for your upskilling & networking! Your future will thank u, get upskilling, interview & hiring opportunities from the professionals! @goodbestguy @parveen1015 @Debuhkzr @lazyhack3r @Zero0x00 @f4z41u @harekrishna_rai @0xKrat0s @PulkitTalwar26 @AshishHuria

Simple Blog about PHP Type Juggling Read More: https://t.co/X1NMvni932 #cybersecurity #bugbounty #bug #php #programming

A big thank you to @Checkmarx for sponsoring Seasides Conference! 🎉 A leader in SAST & AppSec, offering ASPM, DAST, AI Security, and more—if it’s AppSec, they’ve got it! Grateful for your support @sandeepjohri in strengthening the cybersecurity communities in India.

A huge thank you to @SecureNexus us & for sponsoring us @SecureNexus has been our biggest supporter, and we’re truly grateful. A special shoutout to @beingsecure for his leadership in strengthening the cybersecurity ecosystem