Alaa Abdulridha
@alaa0x2
Followers
2K
Following
575
Media
15
Statuses
172
RT @linux_lenny: I am thrilled to announce to be a speaker at #Dockercon23 . Join my session about WebDev with @Docker on @nginxorg Unit a….
docker.com
0
6
0
RT @TodayCyberNews: 👀 Bug Bounty Tips by Unknown . Bypassing Cloudfront XSS WAF . 1) alert = window["al"+"ert"] .2) bypass () with `` .3)….
0
70
0
Discovering the Real IP Behind Cloudflare: The Art of Manipulating the Hosts File. This tool/article will explain a new way to discover real IP for domains behind CloudFlare. #infosec #BugBounty #bugbountytips #CyberSecurity #cloudflare
1
6
25
A new interesting blog post just published at @serp_api about how to scrape Yahoo! shopping with Python, Yahoo shopping is using GraphQL to return the data which makes it a bit challenging to be scraped. Check it out! .
serpapi.com
Through Yahoo Shopping, users can search for a wide array of items, from electronics and clothing to home goods and health products. Its interface offers users the ability to easily compare prices,...
0
0
4
New script is used to quickly decrypt Microsoft SQL Server 2008 passwords by aggressively brute force from a pass list. #BugbountyTip #infosec #sqlserver #mssql #tsql #CyberSec #bugbounty #bugbountytips.
github.com
This script is used to quickly decrypt Microsoft SQL Server 2008 passwords by aggressively brute force from a pass list - Alaa-abdulridha/sqlserver-dehasher
0
3
3
Safeguarding Web Scraping Activities with SerpApi, and what is Legal U.S Shield that we provide? . #cybersecurity #infosec #BugBounty #bugbountytips #bugbountytip #webscraping #SERP #serpapi
1
5
99
RT @linux_lenny: #hack alert! We (@alaa0x2) have found a vulnerability in @ArrowChatTeam arrowchat version prior v3.06 lead to various crit….
0
2
0
Last photo I took from Ukraine while I was leaving Kharkiv. "As if the sky knew it". #Ukraine #StopPutin #StandWithUkraine #StandUpForUkraibe #PrayForUkraine
1
0
7
RT @InfoSecComm: New Write-up on InfoSec Write-ups publication : "I have 1% chance to hack this company" #bugbounty #bugbountywriteup #bugb….
infosecwriteups.com
Today I will share with you the first vulnerability I found on SerpApi, LLC.
0
11
0
I have 1% chance to hack this company. #BugbountyTip #infosec #serpapi #ssrf #serversiderequestforgery #CyberSec #bugbounty #bugbountytips.
infosecwriteups.com
Today I will share with you the first vulnerability I found on SerpApi, LLC.
0
4
8
RT @serp_api: Scrape Naver Related Search Results with Python.
serpapi.com
Scrape Naver Related Search Results in Python using parsel, serpapi web-scraping libraries.
0
1
0
RT @serp_api: Reverse engineering Google Finance charts.
serpapi.com
In this article, we will talk about how to reverse engineer Google finance charts to parse them using Ruby on Rails. Introduction When you search on Google for something like Bitcoin price or...
0
2
0
Anyone here have an idea about escaping the Path.GetFileName() ?,.The goal is path traversal.
0
0
6
RT @albinowax: If you find an x-user desync vulnerability and it doesn't get classed as P1, it might be time to try out these quality explo….
0
165
0
RT @ryotkak: I published an article about remote code execution in cdnjs that could allow tampering of 12.7% of all websites on the interne….
blog.ryotak.net
Preface (日本語版も公開されています。) Cloudflare, which runs cdnjs, is running a “Vulnerability Disclosure Program” on HackerOne, which allows hackers to perform vulnerability assessments. This article describes...
0
296
0
RT @PortSwiggerRes: The XSS cheat sheet now displays browser compatibility for all sections.
portswigger.net
Interactive cross-site scripting (XSS) cheat sheet for 2025, brought to you by PortSwigger. Actively maintained, and regularly updated with new vectors.
0
24
0