How to access to company without being part of it with google oauth, with your gmail account.. [it only works if the company has a misconfiguration!] #bugbountytips #bugbounty

How I just got gained access to 22 unauthorized endpoints across 116 websites (260k endpoints) in about 10 minutes. Use what your comfy with. 👇

⚠️New tool release:⚠️ MapperPlus is my own private tool that helped me reduce my recon time from 10 hours to only 1 hour of recon per day. Here is how :⚠️ MapperPlus : Bulk Extraction of soucre codes for every website that have .map files exposed🌐 github.com/midoxnet/mappe…

🔍 Question of the day: How can you effectively exploit Windows IIS targets? 🖥️ These targets are frequently underestimated, often dismissed due to the static blue screen they present. However, exploring these assets can often lead to substantial bounties, ranging from $500 to

My friend Black Turtle just suggested a time-saving extension in Burp Suite that enables you to perform Burp Extension actions without having to go through a lot of boring clicks😂 github.com/portswigger/ch… #bugbountytips #bugbounty #infosec #cybersecurity

I've built a brand new version of my fuzzing tool Shazzer🚀 shazzer.co.uk - Easy fuzz browser behaviour - Find bugs - Share the results with the world

Hands up, who's still disabling issues one by one? 🙋

👉 Justia is a handy tool for bug bounty hunters to find trademarks and registered products of companies. It can help uncover more assets and expand your hunting ground. 🕵️‍♂️🔍 🔗 contracts.justia.com/companies/ #bugbountytips #bugbounty #CyberSecurity

ooh, this works on Chrome Canary :D <input type="hidden" oncontentvisibilityautostatechange="alert(/ChromeCanary/)" style="content-visibility:auto">

We are super happy to sponsor Bug Bounty Village Brazil of the H2HC conference 🚀 If you are in Brazil on the 14-15th of December, it is a must 🎉 instagram.com/bugbountyvilla…

Huge shoutout to the incredible team who worked hard on this, you are all amazing! 🤩 0xTeles , “ ‏”, caon, Amir Safa, Jeremias, joao, @vrechson.bsky.social, locs3c, zeroc00i 🥷🏻 4/6 🧵

Where there’s bug bounty, there’s #Bugcrowd. 😉✨ We’re honored to have supported the Bug Bounty Village Brazil at H2HC in #Brazil, big thanks to bsysop! Seeing the hacker community come together with such passion was nothing short of amazing (as always). 🥲 Huge thanks to the organizers,

I found you could use the ISO-2022-JP escape sequences inside JS URLs! Found using this: hackvertor.co.uk/hack-pad/5 Poc: portswigger-labs.net/xss/charset.ph…

Hi HACKERS, here are my suggestions for the Top Ten (New) Web Hacking Techniques of 2024 PortSwigger PortSwigger Research : • “Another Vision of SSRF” (ph0r3nsic 🕷️) • “Unveiling TE.0 HTTP Request Smuggling” (bsysop) • “Supply Chain Attacks: A New Era” (Caue) If you haven’t

🚨 AI Security Failure 🚨 Anthropic I bypassed the #constitutionalclassifiers designed to block harmful content and extracted detailed chemical information on a restricted substance. Despite passing multiple safeguards, the content checker failed to flag it as harmful.

I've just released my proof-of-concept tool called pugDNS. It's an experimental high-performance DNS bruteforcer built with AF_XDP. It's up to 3x faster than massdns, and 30x faster than dnsx. github.com/c3l3si4n/pugdns

JS, Python & Ruby all disagree on this regex rule 🤔👇

RFC 2047 "encoded-word" is crazy! It lets you smuggle encoded payloads into email addresses and the craziest thing is that some parsers decode it before validation 👇 Shout out to Gareth Heyes \u2028 for this  🔥

Want to know how I discovered this vector? Read the blog... thespanner.co.uk/the-curious-ca…

If the origin server treats a delimiter, but the cache doesn’t and the cache normalizes paths before applying static directory rules you can leverage path traversal! Take this payload: /myAccount$/..%2Fstatic/any - The cache sees: /static/any - The origin sees: /myAccount The