Thanks a lot to @infosec_au for inspiring me to look at t-mobile's program. I dont think im looking anywhere else from here on. I earned $12,000 for my submission on @bugcrowd #ItTakesACrowd.

RT @ArmanSameer95: First million is hard, second is inevitable.

Join millions who have switched to Grok.

RT @garethheyes: I discovered how to use CSS to steal attribute data without selectors and stylesheet imports! This means you can now explo….

RT @0xacb: Time to reveal what I was doing with @0xteknogeek back in '19. All the hard work and sleepless nights have paid off! https://t.….

RT @0xAsm0d3us: @hetmehtaa If you want to be in the top 10%, follow the above, if you want to be in the top 0.1%, play quality CTFs. CTFs w….

RT @TantoSecurity: 🚆🚄🚅🚉🛤️🚃🚂.Training Alert! . We are partnering with @corelanc0d3r to bring his amazing exploit dev workshop to Melbourne f….

RT @ArmanSameer95: Believe me when I say this: The universe is absolutely giving. Give your best, and you'll receive it. Just give your a….

RT @galnagli: @kuzushi And if you want my opinion on @Xbow (that I didn't mention even once in the whole thread). I think it's a great tool….

RT @pentest_swissky: Sleepless Strings - Template Injection in Insomnia - @TantoSecurity.

RT @infosec_au: Today, we're releasing the new Searchlight Cyber (@SLCyberSec) tools website, which allows you to use several of our open-s….

RT @Jhaddix: My heart is so full. I’ll tell you why: . Over the past 10 years I’ve run into some incredible people just starting their way….

RT @busf4ctor: I completed my second week as a full-time hunter. It's hard, but having @Rhynorater, @xssdoctor, @un1tycyb3r by your side ma….

RT @BSidesCbr: KEYNOTE: Not All Vulnerabilities Are The Same.10 years ago, @infosec_au spoke at the first BSidesCbr. Now Australia’s top b….

Look forward to sharing my journey so far :).

RT @BSidesCbr: "Catching WordPress 0-Days on the Fly".What if you could spot WordPress plugin vulns the moment devs push code? Ananda Dhaka….

RT @zseano: For those asking why: . I love bug bounties because of the money you can earn & the freedom it can create. I hate it because th….

RT @irsdl: I have launched YSoNet ( and added #SharePoint CVE-2025-49704 payload generator to it as the first thing….

For content discovery, I have recently learnt the importance of having a wordlist that has full routes & not just filenames & dir names. I recently worked on something were exploiting the bug required a POST request to a route like: /software/foo.php/foo. Now for this case, the.

RT @infosec_au: For our third installment of Christmas in July, the @SLCyberSec Research Team is disclosing a critical authentication bypas….

RT @Xbow: What if two AI models could collaborate without knowing it?. Our Head of AI, Albert Ziegler developed "model alloys" - alternatin….