Frey
@offsecrunner
Followers
5K
Following
11K
Media
2K
Statuses
7K
24 ; Pentester and MMA Player ; chasing impact | https://t.co/5o70t1MjKR | LW (9-0-0) ; building @cybity_
ap-south-1
Joined September 2021
I just solved Interpreter on Hack The Box! https://t.co/Twn8UXUq4u
#HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting
labs.hackthebox.com
I have just owned machine Interpreter from Hack The Box
0
0
5
Hey folks need some advice. I reported a bug in an API endpoint it got patched and I was asked to re-test. During retesting, I found a different bypass on the same endpoint but it’s a different vulnerability category. Should I disclose it now or wait and report it after payment?
5
0
27
Post exploitation tip always check the victim’s browser for saved bookmarks and credentials. Forgot this myself, sharing so you don’t
0
5
49
Vibe coding at its peak! First writing code with AI, then checking it for vulnerabilities. (Of course this is a great time to get into security.) But yeah… the era of low-hanging fruits is ending 🍓
Introducing Claude Code Security, now in limited research preview. It scans codebases for vulnerabilities and suggests targeted software patches for human review, allowing teams to find and fix issues that traditional tools often miss. Learn more: https://t.co/n4SZ9EIklG
0
2
14
I just solved WingData on Hack The Box! https://t.co/NIvCD5ikqZ
#HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting
labs.hackthebox.com
I have just owned machine WingData from Hack The Box
0
0
13
Have you checked what’s out of scope for the program? Let it be Unless someone chains it. Do not report P4 it might be someone's P1
2
0
21
Bug Bounty Recon Tip #2: httpx turns huge subdomain lists into real, live attack surface. Dead hosts waste time probe fast, filter smart. Don't ignore 401/403 responses. that's often where the IDOR & bypass gold hides. What's your favorite httpx trick? #BugBounty
#Recon
3
23
114
Valentine’s Day well spent lol Finished all 10/10 Love at First Breach challenges on @tryhackme Fun rooms, solid web security concepts love the crypto one.
0
0
10
I just solved OnlyHacks on Hack The Box! https://t.co/BotdYM0iZx
#HackTheBox #HTB #CyberSecurity #EthicalHacking #InfoSec #PenTesting
labs.hackthebox.com
I have just owned challenge OnlyHacks from Hack The Box
0
0
12
Now after every report you submit on H1 don’t forget to infect the AI model with your coolest prompt injection.
0
0
6
What do you think: is using different usernames across social platforms a good security practice (unless you’re already famous)? Curious from an OPSEC standpoint
1
0
6
Bug Bounty Tool Series #1 is live! 🚀 Meet Subfinder – the fastest passive subdomain enumerator 🔥 Stealth recon, 30+ sources, zero packets to target. What's your must-have recon tool? 👇 #BugBounty #Subfinder #Cybersecurity #Recon #Cybity 🔗 https://t.co/AxDVHngSG6
1
2
19
Thread - My own opinion & this is to the Bug Hunters, What @Hacker0x01 is doing re AI, is essentially stealing “our work” “our research” for their own profitability. They are for sure breaking client agreements, wherein a clients data / vulns belong to the client. Not H1!!
14
31
226