Exploiting a $$$$ value vulnerability systemweakness.com/html-injection… #bugbountytips #BugBounty #bugbountytip #CyberSecurity #vulnerability #hackers #infotech #infosecurity #redteam #blueteam #Hacking #hackingtools #writeups

Special Offer: Free Access to the PRO PLAN of #IBRAHIMXSS 🎉 I'm excited to announce a limited-time offer for the #IBRAHIMXSS community! You can now get free access to the PRO PLAN and use the tool with a 3-day license key. Follow these steps to get started: 1. Create an

Simple vulnerability costs $$$$ / $$$ systemweakness.com/blh-vulnerabil… #BugBounty #bugbountytips #bugbountytip #vulnerability #cybersecurity #hackers #Hacking #bug #infosec #infosecurity

I just published a blog about discovering an exposed .git directory in a popular app, which led to serious security risks. #CyberSecurity #Infosec #bugbounty blog.lohigowda.in/git-exposure-l…

New writeup from ꙅɿɘƚɔɘqꙅ and I: we're finally allowed to disclose a vulnerability reported to Kia which would've allowed an attacker to remotely control almost all vehicles made after 2013 using only the license plate. Full disclosure: samcurry.net/hacking-kia

At Assetnote, we identified DNS poisoning on an estimated 30M+ domains. We noticed this in 2021, but suspect that it's been happening for a lot longer. We detail the analysis, theories and two practical and reliable client-side exploitation vectors. dnspoison.com

#XSS Vulnerability on Indian Institute of technology. Xss payload:><script%3("hello")</script><Script>alert("IIT ******** XSS VULNERABILITY POC BY V4N")</script> #BugBounty #CyberSecurity #CyberSafety #hackers #iit #vulnerablity #ethicalhackers #infosecurity #October7

🔗In this article we talk about how I exploited a Fortune 500 Through Hidden Supply Chain Links Link 👇 landh.tech/blog/20241028-… Thanks to the entire HashiCorp team ! 🤟 Enjoy 🔥

🚀Attention Bug Bounty Hunters! 🔥Share your ultimate tips and tricks for bug bounty success! 🕵️‍♂️💡 💰I’ll post all shared tips to help our community grow stronger. 🛡️✨ 👉 Take the survey: surveyheart.com/form/676fdaa18… #bugbountytips #bugbountytip #cybersecuritytips #infosec

Hello #Connect! Does anyone know of any good, affordable dark web monitoring tools/services for businesses? It would help me a lot! #CyberSecurity #DarkWeb #infosec

Intigriti TomNomNom m4ll0k Once again, I am here to self-plug an very niche tool :3 It can make existing wordlists more effective. github.com/s0md3v/wl

⚠️ Giveaway time! ⚠️ 👇 📢 Our new course "Attacking AI" will be Feb 27-28! This two-day course equips security professionals with the tools and methodologies to identify vulnerabilities in AI systems. It's gonna be a BANGER. Syllabus: payhip.com/b/2qPZ1 We are giving

Here is writeup regarding how i was able to bypass HackerOne 2FA due to race condition: Link: akashhamal0x01.medium.com/bypassing-hack… As always feedbacks are appreciated.

In a few hours we are going to release a new article with Justin Gardner. We hacked Google’s A.I Gemini and leaked its source code (at least some part) I'm so excited to release this one ! Huge thanks to Google VRP (Google Bug Hunters) for the help coordinating the disclosure 🔥

this guy VAIDIK PANDYA is js out there scamming people in the name of bb courses, he has no valid bugs in h1/bugcrowd and is out there teaching ppl and no one is talking anything about him, so stay safe from such scammers #bugbounty #scam #BugBountyHunter #bugbountyscam

Giveaway brought to you by HackingHub: 5x Blind XSS vouchers 5x Web Exploitation vouchers How to enter: 1⃣ Follow Bug Bounty Village + subscribe to our YouTube channel 2⃣Follow HackingHub 3⃣ ❤️+🔃 this post 4⃣Comment this post Winners will be picked on Friday 8/29

Feels like bugcrowd Michael Skelton Dave Gerry only cares about top hunters or those with big profiles. As a new hunter, getting a Not applicable with no feedback is demotivating. Even gave proper details and was still asked for “impact” on a known CVE. How are we supposed to grow?

If you're getting frustrated with Informatives/Duplicates in your bug bounty journey - I _promise_ you they will get diluted as you keep going. Out of my 2,463 reports submitted on Hackerone, only 1,352 have been awarded a bounty. The fails just get buried in the successes.

We’re so hyped on the below release. So hyped we’re doing some giveaways! We are giving away 8 free seats to our Advanced Client Side course. All you have to do is retweet and like the below post! Winners chosen next week 🫶

New Year. New skills. New mindset. 💻 Starting the year learning with the the_IDORminator thanks to JS0N Haddix for course, surrounded by nature and fresh focus. Hack smart. Stay curious. Grow every day. 🚀 #NewYear #CyberSecurity #BugBounty #LearningMode #NatureAndCode