After 6 hours, found this insane IDOR!
Tip: Never skip JavaScript files, even if they look unimportant.. Many hackers do, apparently :D
#BugBounty #bugbountytip s #bugbountytip

bypass fix three times.
#BugBounty #bugbountytip #infosecurity #bugcrowd

Top 25 Parameters to test LFI #bugbounty tip #bugbounty #LFI

How easy I made $$$$
anasbetis023.medium.com/how-easy-i-mad…

#bugbounty #bugbounty tips #bugbounty tip

Yahoo Bug Bounty
bevijaygupta.medium.com/yahoo-bug-boun…

#bugbounty #bugbounty tips #bugbounty tip

i reward 350$ in hackerone with start week
#bugbountytip s
#bugbountytip

This Writeup exaplains how we got ATO from Android Application
medium.com/@ahmedelmorsy3…
#BugBounty #bugbountytip #cybersecuritytips #hackerone

Few more, let's goooooo Intigriti

#infosec #BugBounty #bugbountytip #Bugs #CyberSec

I just published my First Writeup about How Shodan Helps me to Find SMTP misconfiguration.
#bugbountytip s #BugBounty #bugbountytip #Hacking
link.medium.com/AKYYcWztTIb

Add 'servudaemon.ini' to the wordlist, and maybe you will get juicy data. Enjoy!
Created a nuclei template for it: github.com/NoRed0x/nored0…
#bugbountytip s #bugbountytip #cybersecurity #ethicalhacking

This month is 🔥🔥🔥

#BugBounty #bugbountytip

#XSS could be be triggers in #url itself, no need to parameter injection✌🏻

Payloads:
1-
%3Csvg%20onload=alert(%22MrHex88%22)%3E

2-
%3Cimg%20src=x%20onerror=alert(%22MrHex88%22)%3E

#bugbounty #bugbounty tip #bugbounty tips
#MrHex88

bypass alert ==> [alert][0].call(this,1)

#bugbounty #bugbounty tips #bugbounty tip

My book, 'Web Hacking Arsenal: A Practical Guide to Modern Web Pentesting' is now available on Amazon for Pre-Order. Order your copy today and stay ahead of the game! #CyberSecurity #Webhacking #bugbountytip

Link: amazon.com/Web-Hacking-Ar…

#1. Bug Bounty POC: IDOR leads to Account Takeover
cyb3rmind.medium.com/1-bug-bounty-p…

#bugbounty #bugbounty tips #bugbounty tip

20.3 Lab: Web cache poisoning via ambiguous requests | 2024
cyberw1ng.medium.com/20-3-lab-web-c…

#bugbounty #bugbounty tips #bugbounty tip

find exec command endpoint quickly with just one bash line!
#BugBounty #bugbountytip #bugbountytip s #code #audit

My first writeup about security issue I discovered at RevenueCat bug bounty program.
rofes1337.medium.com/lets-unlock-ad…

#BugBounty #bugbountytip s #bugbountytip #bughunters

How many months took you to find your first bug ?! Let s see
medium.com/@aiz3nsk/how-m…

#bugbounty #bugbounty tips #bugbounty tip

19.3 Lab: Bypassing GraphQL brute force protections | 2024
cyberw1ng.medium.com/19-3-lab-bypas…

#bugbounty #bugbounty tips #bugbounty tip