Abdullah Nawaf (HackerX007)🇯🇴
@XHackerx007
Followers
6,384
Following
184
Media
101
Statuses
404
Hackerx007 Bug hunter FB/Twitter/Mail.ru HOF 58 Bugcrowd rank 7 Bugcrowd P1 rank with 110 p1 :) In love with P1 ;)
Hashemite Kingdom of Jordan
Joined February 2021
Don't wanna be here?
Send us removal request.
Explore trending content on Musk Viewer
#euro2024
• 425628 Tweets
Scotland
• 279528 Tweets
Eurocopa
• 102959 Tweets
Musiala
• 82032 Tweets
Alemania
• 77635 Tweets
Squeezie
• 69962 Tweets
Kroos
• 67701 Tweets
#GERSCO
• 65863 Tweets
Havertz
• 53056 Tweets
Escocia
• 47801 Tweets
المانيا
• 38862 Tweets
Jess
• 36417 Tweets
Almanya
• 22095 Tweets
Harriet
• 20886 Tweets
Scots
• 16842 Tweets
Gundogan
• 15815 Tweets
McTominay
• 10484 Tweets
Pinned Tweet
The writeup is ready
(Subdomain Fuzzing worth 35k bounty!)
I tried my best to make everything clear,and useful
Enjoy :)
#BugBounty
#bugbountytip
#bugcrowd
28
200
691
We earned $35,000 in total with
@GodfatherOrwa
for submissions on
@bugcrowd
#ItTakesACrowd
#Tip
:
command `ffuf -w /subdomain_megalist.txt -u '
https://XXXFUZZ[.]target[.]com/'
-c -t 350 -mc all -fs 0` also
`
https://FUZZXXX[.]target[.]com/`
17
80
370
we
@GodfatherOrwa
earned $20,000 for Our submission on
@bugcrowd
Tip:Again,dont ignore`javax.faces.ViewState`;specially if it start with `H4sIAAA` or `rO0A` for more info see best luck :)
#ItTakesACrowd
#bugbounty
#BugBountytips
10
65
324
we earned $20,000 for Our submission on
@bugcrowd
@haxor31337
@GodfatherOrwa
It's nice to work with you guys :)
#Tip
:
Always check `viewstate` In Asp. Net
More Info :
#ItTakesACrowd
6
52
319
Nice and Fast P1 in my fav prorgam ❤️️️
dirsearch>
/accesslogs/ (add it to your dirlist) >
directory listing>
Logs file >
700 users and admins password Disclosure :)
Good luck :)
#bugbounty
#bugcrowd
#bugbountytips
6
93
317
I earned $7,500 for my submission on
@bugcrowd
with
@GodfatherOrwa
#tip
:
Found admin[.]target[.]com>no thing in github>reading js>found an other domain with the same back-fornt end>admin.devtarget[.]com>searched in github>found user,pass>worked>Auth Bypass
8
43
226
It was auth bypass in Admin panel
That leads to multiple bugs
RCE,LFI,SQLI,ATO
Write up soon
@GodfatherOrwa
@Bugcrowd
#BugBounty
9
11
177
2 tips here are more important than hacking tip :)
* Choose someone you trust
* There should be a program that you can called it ( Fav program )
we spent months in this program and here are some bugs we found
* Auth Bypass 15k
* RCE 16k
* SQLI 15k
#bugbountytip
#bugcrowd
9
17
156
I earned $2,500 for my submission on
@bugcrowd
with
@GodfatherOrwa
#TIP
Add this ends to your list
/log/production.log
/config/app_env.yml
If you were lucky enough
You will find a lot of juicy information
#ItTakesACrowd
#bugbounty
#bugcrowd
#bugbountytips
4
32
126
@GodfatherOrwa
@Bugcrowd
When u see `javax.faces.ViewState`,always test it using `jexboss`using this command`python3 -u xxx --cmd "Your OOB Command " --app-unserialize`,also use`Java Deserialization Scanner`by scanning `javax.faces.ViewState`to find the right`gadget` best luck :)
1
18
87
Always work with someone you trust, collaboration is so helpful
But with the right person❤💯
2
3
77
Response manipulation is becoming popular than past
Login with a valid username (use random password) ~ inspect the response ~ change "login: false" to true, auth bypass, that leads to PII disclosure,BAC
Good luck :)
#bugbounty
#bugcrowd
#bugbountytips
3
22
74
For everyone asked me about the command `ffuf -w /subdomain_megalist.txt -u '
https://XXXFUZZ[.]target[.]com/'
-c -t 350 -mc all -fs 0` also
`
https://FUZZXXX[.]target[.]com/`
2
13
71
It was a great bug
From logs to auth bypass to lfi,PII
#bugbountytips
:
Dont stop in just one impact
Try to escalate and chains bug to get the most impactfull bug
#bugcrowd
#bugbountytip
#bugbounty
me &
@XHackerx007
earned $35,000 for our submission on
@bugcrowd
#ItTakesACrowd
live is good , bounty is good
thanks for
@bugcrowd
triaged team for quick triage from
@sh_timmy
55
24
428
3
1
61
How my friend got a Rce, sqli in Facebook❤️
And another Authentication Bypass by me ♥️
Orwa is one of my Best friends
He started with nothing only with GitHub leaks,
In few months, just few
He made his way in Facebook hof
With sqli rce
He love to learn more, working hard❤️
2
4
54
In most of cases, you should be authenticated,
In rare case you don't have to
if you should be authenticated
you can go to
target[.]com/libs/granite/core/content/login.html
in try one of this AEM default credentials
in my case it was anonymous:anonymous
0
15
47
Work in silence let success make the noise 🚀🚀💥
1
1
29
@GodfatherOrwa
@Bugcrowd
Response manipulation is becoming popular than past
Login with a valid username (use random password) ~ inspect the response ~ change "login: false" to true, auth bypass, that leads to PII disclosure,BAC
Good luck :)
#bugbounty
#bugcrowd
#bugbountytips
1
5
27
subdomain_megalist.txt
0
8
27
I've learned to lose
I've learned to win
I've turned my face against the wind❤️🔥
1
0
27
To London with
@GodfatherOrwa
It would be nice to meet any bug hunters there❤️
Next week i will be in UK (London) with
@XHackerx007
if anyone there let’s meet ✌️ will be happy to meet persons from our comenity
6
1
80
1
0
26
It was a great event ❤️❤️
With great team❤️❤️
@ArmanSameer95
@codecancare
@GodfatherOrwa
@haxor31337
Thanks for
@Bugcrowd
@drunkrhin0
❤️❤️❤️
#bugcrowd
#BugBounty
Yah
We earned $10.000 and win the hacker cup on
@bugcrowd
#ItTakesACrowd
Tess’s Squad
@GodfatherOrwa
@ArmanSameer95
@haxor31337
@codecancare
@XHackerx007
#hackercup
#teamhunt
#bugbounty
Other teams you did a great job ❤️ The challenge was hard all the time
Big thanks all
35
16
317
0
0
18
Even
"anonymous:anonymous" don't give you a lot , But it could help you to execute commands in groovyconsole
0
2
13
🚨BREAKING: NEW FOOTAGE SHOWS ISRAELI ARMY MASSACRED PATIENTS AT INDONESIAN HOSPITAL
⚠️Warning: Graphic Footage.
New details have emerged regarding the siege by Israeli forces on the Indonesian Hospital in the northern Gaza Strip on November 20, 2023.
Reports indicate that
607
13K
16K
1
2
13
@tnt4dz
@codecancare
@GodfatherOrwa
@h4x0r_dz
@ADITYASHENDE17
@infosec_90
@r00t_nasser
@Alra3ees
Dose luck do dirseach?
Dose luck Bypass the waf?
Dose luck find sqli?
Nope
Luck not helping
You skills Dose
و كله بتيسير من رب العباد
1
1
12
@TheMsterDoctor1
When you copy And paste something
Please edit the post
When i shared this tip, i made a mistake in (prorgam) it should be (Program) fix it 😉🙃
3
0
12
@Bugcrowd
@codecancare
@GodfatherOrwa
@haxor31337
@ArmanSameer95
Look we all in Tv😂❤️
Great team i enjoyed with u guys
Thanks
@Bugcrowd
for this great event ❤️
1
0
11
@haxor31337
@Bugcrowd
@bsysop
Nice one!
I really loved this new feature from bugcrowd (collaboration in private bbp if your friend invited too)
By the way, I think we work in the same program😂
Good luck ❤
2
0
11
@Masonhck3571
I have been bug hunter for 1.7 year
In this 1.7 I daily open H1 hacktivity reading new reports, writing new notes
Every day, before I start hacking
This helped me a lot ❤
2
1
10
All of them stand on the wrong side ? Think Again!
#Gazabombing
#GazaUnderAtack
🇵🇸 The world stands with Palestine, even if you don’t see it in the news!
648
8K
20K
0
2
9
If you support Israel, do both of us a favour and consider unfollowing / blocking me +1
If you support Israel, do both of us a favour and consider unfollowing / blocking me.
0
109
828
0
2
8
❤️💪
Congratulations and a big thank you to everyone who participated in the
#HackerCup2022
! 👏
In 1st place, taking home $10,000, awesome swag, and bragging rights is... ⤵️
🥇 Tess's Squad with 5925 points!
#BCTeamHunt
9
8
75
0
0
9
My friend on TV😂❤️💥🇯🇴
1
0
9
It's started, LET THE PARTY BEGIN !🔥
@Bugcrowd
I will win in this 😉🔥
you know what we think?
#bughunters
deserve gifts 😍 Follow the link before to learn how you can be entered into our MONEY TALKS GIVEAWAY simply for doing what you already do best;
#bughunting
🐛
#hacking
#bugbounty
1
6
34
2
0
8
@intigriti
@nginx
Line 6;
It should be /reports/
This is a common Nginx misconfiguration called
NGINX Alias Traversal
1
1
8
@TheRoyHunter313
@GodfatherOrwa
@Bugcrowd
Hi mate, I think it has encryption key, in that case, u should try `` if you lucky, it will work ,
0
3
8
@haxor31337
Thank you ♥️
Sometime the crictal impact bugs can come with easy exploit
In program i reported rce just by puting in the paramter value ";id"
Like
Paramter=1;id, and it was not oob or blind 😂
1
1
8
@GodfatherOrwa
@waseyuddin
@Bugcrowd
It was a great year working with you my bro❤️
2022 will be a great year for us
Get ready ;)
0
0
6
Few people laughed, few people cried, Most people were silent.
0
0
6
@GodfatherOrwa
@Bugcrowd
@Masonhck3571
@taulantbajramii
@sh_timmy
@codingo_
The most important Tip here is not every Crictal impact bugs need to be hard
Sometime it could be very easy to find 😉
1
0
5
@_2os5
For example:
U find RCE in Admin[.]target[.]com and it fixed
U will FUZZING like AdminFUZZ[.]target[.]com
U maybe find AdminDev[.]target[.]com and it have the same RCE
1
1
5
@AyushSingh1098
@GodfatherOrwa
@Bugcrowd
Thx mate, but the pdf not mine , aslo u can see this one and this
1
1
5
@GodfatherOrwa
@Masonhck3571
We always talk about how
@Masonhck3571
@taulantbajramii
are Amazing، doing great work ❤️
1
1
5
Just no one talk about That !
🇵🇸🇮🇱 Retired IDF soldiers talk about their experience in the Israeli military and laugh as they do so.
“One of the soldiers r*ped a 16-year-girl *laugh*”
“He put Palestinians in a cage and killed them”
“Soldiers chased villagers with flamethrowers and set them on fire”
“If I
3K
30K
52K
0
0
4
@sh_timmy
@Bugcrowd
Thanks Tim
I really appreciate it
Nice to see you guys in im my reports
U and
@RelentlessT7
@Masonhck3571
That made me feel great ❤️❤️
0
0
4
1
0
3
@GodfatherOrwa
@Bugcrowd
Great my mate; the year is not over yet ;) still 3 months and an rce triged 😂
1
0
3
@awaisaskanii
For example:
U find RCE in Admin[.]target[.]com and it fixed
U will FUZZING like AdminFUZZ[.]target[.]com
U maybe find a AdminDev[.]target[.]com and it have the same RCE
0
0
4
1
0
4
💪🔥❤️
مقتطفات من حفل إطلاق "منصة مكافأة الثغرات واختبارات الاختراقات الأردنية"والتي أطلقها #المركز_الوطني_للأمن_السيبراني يوم الإثنين الموافق ٢٢ أيار، ٢٠٢٣ بالتعاون مع شركة أكتوبيان سيكيوريتي
#NCSCJO
#bugbounty
1
0
9
1
0
3
@iirode0
In Amazon
1_Choking Rescue Device for Kids and Adults, Arixmed Anti Choking Device, Portable Airway Suction Device, First Aid Choking Device
2_Automatic Choking Rescue Device for Kids and Adults with 3 Masks
0
0
3
@caseyjohnellis
I didn't report anything related to this cve
As a full-time bug hunter,I prefer to wait for 15-30 days then start to test for new cve, This would give programs time to fix their bugs
I think this is the best practice for any new cve as a bug hunter
BTW I don't love easy wins :)
0
0
3
0
2
3
@disnhau
@GodfatherOrwa
@Bugcrowd
The Main bug was auth bypass to admin panel, P1 of course, But I decided to dig deeper in this panel, I found rce sqli ..etc , so auth bypass P1 But when you find RCE it also will still as p1 but the payout will be more since the impact not only auth bypass
0
0
3
@GodfatherOrwa
@Bugcrowd
@waseyuddin
@CookiesHttpOnly
@aditi_singghh
@Th3G3nt3lman
My Best friend ♥️
Nice to work with you ♥️
You doing so great job ♥️
Keep going ♥️
1
0
1