I built an intentionally vulnerable banking application for security engineers/interns, developers, & QA analysts to learn, practice secure code reviews, and test their application security knowledge in areas such as SQLi, XSS, CSRF, race conditions, API vulnerabilities, & more.

Omo!!!!!!! You people didn’t tell me Call of Duty is this interesting and insanely addictive. What the fokk?! 🤯🔥.

RT @faechi_: I've been wanting to do things differently so here is to retracing my steps in my Cybersecurity journey. While I wait for the….

Some developers and security engineers in a certain industry won’t be happy I’m sharing this trick. But hey! fix your security implementations and stop relying on security through obscurity. 🫵🏽🙂‍↔️.

I’ve tested over 30 web apps that encrypt API requests client-side before sending them to the server, and return encrypted responses too. The frontend handles both encryption & decryption. Check those randomly generated JS files, the logic might just be hiding there.

Look around the JS files(especially those with random characters .js), you might just find the secret key, IV and the encryption algorithm and mode.🤭🙂.

RT @_DeejustDee: Don’t miss out on this event next Friday . @commando_skiipz will be live too 💃 . Register using this link . .

I’ll be doing a live hacking demo at The Hackers Secret Conference next week Friday! If you’re around, swing by and let’s break stuff together.

RT @adekunleGOLD: When we start celebrating brilliance the way we celebrate chaos, this country will change.

RT @zoecyber001: Finally, I checked out Vulnbank💙, created by @commando_skiipz. I logged in first using SQL injection, no signup, proceeded….

Perfect excuse to finally play COD and God of War🤭.

If dem sack me for work, just know say na this game cause am😭.

Omo! 2026 too far, I couldn’t wait. 😭🧎🏾‍♂️

RT @hackSultan: Both of them could be struggling, but it’s the woman who’s loving a man at his lowest.

Sometimes, my idea of a reward after fixing an issue is just standing up to eat or stretch. That’s it. 😭. My babe go dey shake her head if she see these tweets 🤣.

Some days get so complicated and stressful that I end up spending nearly 20 hours in the same spot, just trying to get to the root of an issue. For me, it’s not even about the money, it’s about the peace of mind that comes when everything finally works the way it should.

I spend about 18 hours a day working and 6 hours sleeping, even on weekends sometimes, because I really enjoy what I do. 😅.

See why you can’t rush a pentest 🫵🏽.

Its one of my projects at work, to be released later.

Something’s not quite right here….GraphQL API Hacking 😅. Can you spot the vulnerability?

Someone finally exploited the vulnerability I kept hinting at in the virtual cards. Update card limit —> Exploit mass assignment (BOPLA) —> Auto-fund the card. Simple, yet deadly for any fintech company that overlooks it. Big shoutout to @bussyice 🫡👏🏾🔥.