Challenge Yourself for 7 Days Each day, read something that confuses you. Even if you only understand 30% of it, keep going. Day by day, you’ll get better — not by mastering it all at once, but by showing up, trying, and learning a little more each time.

"People live their lives bound by what they accept as correct and true. That's how they define 'reality'. But what does it mean to be 'correct' or 'true'? Merely vague concepts... Their 'reality' may all be a mirage......" — Itachi Uchiha

🚨 1- CVE-2025-53770 is a variant of CVE-2025-49704 - a critical auth bypass in SharePoint's ToolPane.aspx endpoint. It lets attackers reach a page that can parse webparts without valid credentials, and with a chained deserialization bug, they can achieve RCE entirely in memory

A close friend of mine got scammed on WhatsApp. He got a random call from someone claiming they found his job application in their system. They said they’d send him a code so he can join the interview later in the evening and asked him to read it back. Turns out… it was the

Man! Hacking JavaScript is crazy and fascinating Stuffs of psychopath NGL! 🫠

In collaboration with Two of my brothers {Abzee & @callgh0st (@callgh0st_v2 ) } we were able to find an: "OAuth Client Secret Exposed in Source Code that Led to Access Token Theft." ALLHAMDULILAH .

To celebrate our badge launch, we're giving away FIVE free 6-month licenses to @pentesterlab. ✅ Comment BADGELIFE and retweet this post to enter. Additionally, pre-order a custom badge at shop.bugbountydefcon.com for a chance to win one of FIVE Annual VIP+ subscription to

Yesterday, I was at TSHC 3.0. The Secret Hackers Conference. It was at Sheba Event Center, Mobolaji Johnson, Ikeja. I was there since a little after 9:00am. Just some hours later, I brought out my laptop to design some flyers for some events I had pending. I was trying to work,

REMINDER! We're giving away FIVE free 6-month licenses to @pentesterlab. ✅ Comment BADGELIFE and retweet this post to enter. Additionally, pre-order a custom badge at shop.bugbountydefcon.com for a chance to win one of FIVE Annual VIP+ subscription to Hack The Box.

GIVEAWAY ALERT! 🎉 Want to attend #OSCAFest25 but don’t have a ticket? 🚀 We’re giving away 20 FREE tickets sponsored by ProDevs (Hire a Tech Talent today!) ✅ How to enter: 1️⃣ Repost this tweet 2️⃣ Comment “Interested" Winners will be picked randomly. Good luck! 🍀 #OSCAFest25

HELLO CYBER FRIENDS We are giving away FREE access to a Cisco DevOps course 🎉 Only 1,000 people will get in! You’ll learn: •Cisco DevOps fundamentals •CI/CD pipelines •Automation & Infrastructure as Code •Hands-on labs to sharpen your skills To grab your spot: ✅ Follow

Alhamduliah First Triage after a while

Just solved : Web - Serveur/XSS - Server Side challenge on Root-Me :þ root-me.org/?page=validati… Root-Me #hacking #challenge #WebServeur

Not being able to code and do code review is the biggest mistake you can make in this security field. You’re missing ton of cool bugs :)

First crits Loading inshallah 🙏🫣

Here we go

infosecwriteups.com/my-first-web-c… Neat work

Hey Intigriti , could someone please take another look at my recent report? It seems the triager may have misunderstood my submission. I’ve added clarification in the report comments.

Sorting through all my bb swag and found this old book , good times lol 7 years ago… time flies

Alhamdulliah Bounty+ HOF 💥🔥