From internet bxmbn.medium.com/how-i-test-for…

Just published a new blog post on my latest #BugBounty hunting journey! Had an interesting DOM-based #XSS and CSSi. Sometimes, the hunt doesn't go as planned, but there's always something to learn! Check out my write-up for the full disclosure. kuldeep.io/posts/fulldisc…

The security research team at Assetnote discovered a pre-authentication RCE vulnerability through a cryptographic flaw in Citrix ShareFile. It's been assigned CVE-2023-24489. You can read the technical blog post here: blog.assetnote.io/2023/07/04/cit…

Check for your Google Maps API keys here! URL: googlekey.blindf.com #bugbounty #CyberSecurity

A tale about a Red Team exercise and the Forcepoint Endpoint One DLP client - vsociety reddit.com/r/netsec/comme…

🚀 Just coded a powerful CVE (Common Vulnerabilities and Exposures) identification script! With ThreatTracer, you can find CVEs for a software component and version. It even checks for public exploits on GitHub and exploitDB. Powered by Python! linkedin.com/posts/anmolksa…

🚀 Big News Alert!!! N00B_4rMY is now VULNCON! Committed to cybersecurity, we fortify digital landscapes. Based in India, we fuel cyber knowledge, encourage exploration, and foster cooperation. Get ready for exhilarating on-site Security Conferences and Capture The Flag. (1/n)

Story time JioCare Reliance Jio Reliance Industries Limited How you failed to provide your services for existing customers. It all started with the optical fiber cable that connects my home router to a nearby jump box. Date : July 14,2024 :

If you use ChatGpt for your small business, then I would recommend this setting to avoid any of your data being used as part of its training model. Settings > Data controls > Improved the model for everyone - Turn off

I sent courier to my friend using Delhivery and experienced horrible experience. The courier guy calls my friend and says " he could'nt come due to wrong address so if you want the courier then come to office and pick it up". A thread

Delhivery helpdesk_delhivery this is beyond frustrating. My shipment, which was time - sensitive, has been delayed twice without any explanation. I have a critical deadline to meet, and your incompetence has completely derailed everything.

This was a great find and had a super interesting root cause: hackerone.com/reports/3000510

My friend made a very interesting disclosure while searching for vulnerabilities. I personally couldn't believe it when I saw that he was able to make Self-XSS in a Ruby on rails application to RCE. Deserves time to read 👇 medium.com/@handball10/fr…

Been quiet working on something personal for a while, born from that frustration jumping from labs to real hacking chaos... Thrilled to finally introduce Barracks & our WarZone concept! ⚔️ barracks.army/blog/why-we-bu… 🧵 #AntiCTF #BugBounty #CyberSecurity

Had an incredible time meeting Ariel Garcia and amazing HackerOne team at Security@ and Ambassador World Cup at Sheraton Mall of the Emirates, Dubai. Also met some amazing hackers & community members from across the globe including Akshansh Jaiswal, Aaditya Prasad & varshitmodi

Burp AI Agent is now public MCP-powered AI agent (and server) living inside Burp. Instead of a chat next to it, extends itself: tools, actions, live traffic and findings. AIO to reduce context switching while testing Repo: github.com/six2dez/burp-a… Docs: burp-ai-agent.six2dez.com

I finally let Claude do my pentest this week. Full 5-day engagement, zero human input. Here's what the client got: 😏 clawd.it/posts/10-repla… #bugbounty #pentesting #AI #cybersecurity #infosec #claudeai

MOST COMPLETE CLAUDE CODE SETUP OPEN SOURCED - 27 agents, 64 skills, 33 commands + built-in AgentShield with 1,282 security tests - Handles planning, code review, fixes, TDD, token optimization & more - Works on Cursor, OpenCode, Codex CLI — one repo replaces weeks of setup,

🚰 SYSTEM PROMPT LEAK 🚰 Wow, this thing is MASSIVE! Here's the full system prompt for Claude Opus 4.7! Or at least as much as this gargantuan 150,000-character block of text will fit in a tweet! (the full thing is linked below) OPUS-4.7 SYS PROMPT: """ Claude should never