Today was my last day as a pentester at Bsecure, and it feels a bit surreal. After a three-year journey of hunting on the side, I’m finally ready to go all-in as a full-time bug bounty hunter. To celebrate this milestone, I've written an article sharing the full story. It’s a

Triple Trouble: Bypassing Sanitization to Steal Microsoft Tokens. If you’ve ever conducted bug hunting on Microsoft’s platforms, you’ve definitely tested this endpoint. I’d bet on it!. New writeup, enjoy the read!. #BugBounty #bugbountytips #CyberSecurity

What a wonderful way to wrap up the year! 🚌 ✨ Our end of year trip to Porthkerry was filled with laughter, memories and moments that remind me just how lucky I am to teach such an incredible group of children! We loved den building, bug hunting, pebble stacking and ice cream!

🔍 New blog post: The Testing Mindset – More Than Just Finding Bugs. Great testing goes beyond bug hunting. We break down four key mindsets: the Detective, Scientist, Engineer, and Artist. Read more: #SoftwareTesting #QA #testuff

Bug Hunting Tip {N:9}. If your XSS payload was reflected in a redirect page, you won't be able to see the alert popup. You can set up a Caido Match and Replace (M&R) rule to replace the redirect status code with a "200 OK", to validate the payload execution. #BugBounty

Glad to be back into bug hunting after a long break 🥳

Exploring whether XBOW's advances signal the decline of human-led bug hunting, this CyberScoop article provides insightful analysis. Discover why the human touch remains crucial amid technological progress in cybersecurity. Read more here:

Pentester Guide. - Certifications.- Pentesting Practice Platforms.- Foss Labs.- Bug Bounty Hunting Platforms.- Independent Pentesting Platforms.- 0Day Market.- Operating System for Hacking.- Hackers Manuals. Contributor @ZishanAdThandar . #cyberseurity

Day 3✅Today's speaker was Olamide Adetula. He broke down blockchain security & its vulnerabilities & his step-by-step research process on protocol design, line-by-line code checks, POC writing, & bug hunting. It was a content-heavy day, but worth it! @japarjam @Princeadxisrael

𝗦𝘂𝗱𝗼𝗺𝘆 es una herramienta de enumeración de subdominios para recopilar subdominios y analizar dominios realizando un reconocimiento automatizado (recon) para la caza de errores (bug hunting) / pentesting. 🕵🏽‍♂️. 🔗 #OSINT #tool #BugBounty #BugHunting

#Day_3 of my bug bounty journey . ◾Studying: 1 H.◾Recon: 1 H .◾Hunting: 0 .◾Report: ✖️. #bugbounty #cybersecuritytips

After a Full Day of Hunting, I finally got a critical bug. Bug: Member Can Change Super Admin .Impact: Complete Takeover of the Organization. Delete the main Super Admin! Etc. Bug Type: Broken Access Control. Tip: Test areas that look secure!.#bugbounty #bugbountytips

#heartheartart .the twins going bug hunting!

🚨 AI bug-hunter XBOW's success doesn't signal the end of human-led bug hunting yet, according to its founder. Dominating HackerOne, but human involvement still crucial. via @Cybe.

Found Reflected XSS in Bug Bounty Program!. While bug hunting, I found an interesting reflected XSS vulnerability. I discovered a hidden parameter using Arjun and tested it. It turned out to be vulnerable to XSS!. #websecurity #cybersecurity #bugbounty #security #xss

We had an amazing trip to Porthkerry Park today. We stacked pebbles on the beach, built dens (where some of us got wet 💦) and we went bug hunting 🐛🐞☀️ #SAMsY4

Is XBOW’s success the beginning of the end of human-led bug hunting? XBOW’s AI bug-hunter landed a big funding round while dominating HackerOne’s leaderboards. But even its founder says it hasn’t fully replaced the need for humans to be involved.

I just published ‘RXSS! on Mercedes-Benz’ . . Like Share Follow,.Happy Securing !!_!!. #bugbountytips #TogetherWeHit #IttakesaCrowd #bughunting #writeup #infosec @InfosecurityMag @coffinxp7.

The only bug hunter with good mental health is the one who hasn't started bug hunting yet.