🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Accessing Admin Page via Blind XSS $1000 🦊 github.com/NafisiAslH/Kno… #bugbountytip

"🎉 GIVEAWAY ALERT! 🎉 We're excited to announce that we've made some improvements to our service at VulnVision! To celebrate, we're giving away 5 FREE accounts to lucky winners. To enter, simply follow VulnVision and retweet this tweet. Winners will be announced next week.

I found a SQL on one URL but properly secured. But found LiveOverflow 🔴 new video "HTML Sanitizer Bypass Investigation". I give it a try and I was able to bypass Cloudflare which leads to XSS. payload: '<00 foo="<a%20href="javascript:alert('XSS-Bypass')">XSS-CLick</00>--%20/

iOS Pentesting Series Learn how to work with useful tools and apps such as Frida, Objection, 3uTools, Cydia, Burp, fsmon, fridump, SSL bypass, reFlutter etc. Part 1: kishorbalan.medium.com/start-your-fir… Part 2: kishorbalan.medium.com/ios-pentesting… Part 3: kishorbalan.medium.com/ios-pentesting… via 192.168.0.2

💻 Bypassing AWS Waf | P2💻

Burp Ex 403 Bypasser 5GC API Parser Active Scan++ Backslash Powered Scanner CO2 IP Rotate J2EEScan JS Link Finder JS Miner Logger++ Log Viewer GAP Distribute Damage IIS Tilde Look Over There Param Miner Software Vulnerability Scanner SAML Raider Autorize Encode IP Asset Discovery

This year I Completed 500k in bounties Most rewarded vulnerabilities and the ones I always focused since the beginning: 1. XSS (all types) 2. Cache Poisoning 3. BACs Reached this amount totally from scratch, learning from the internet. No certs. 0 Automation. 0 Collabs.

I have found about 50 XSS on a single program, using my automation progress that's you will find it here x.com/0xElkot/status… and /usr/bin/fares Tips on his videos. #bugbountytips #xss #hackerone #h1

Alhamdulillah, another $1750 bounty from Indeed. First bounty in 2024 so far, looking for more from indeed ✌️✌️ Bypassing previous reports is always fun #bugbounty #informationsecurity #infosecurity

Indirect prompt injection is so crazy I think it might become the new blind XSS. Here’s the attack in a nutshell, illustrated by Web Security Academy

Path-based xss with diffrence type methods 1: Inecject payload in every path and check xss 2: append fake parameters in every path and check xss vulnerability 3: made poc for you in your terminal line - pastebin.com/YTKZUcs6 #infosec #bugbountytips #cybersecurite

We're excited to welcome security researchers partnering with Microsoft to #BlueHatIndia 🙌

Happy to receive my MSRC swag for being a Quarterly Leaderboard Researcher for Q3'2023, Q4'2023, and Q1'2024! This recognition fuels my passion for improving security. Big thanks to the Security Response team for their support! #Microsoft #swag #bugbounty

Proud to announce I'm recognized as an MVR by MSRC, ranking 66th globally! Thanks to Security Response for this honor and acknowledgment of my hard work. #MSRC #Top100 #Cybersecurity #microsft

Kicking off 2025 with my first swag as a Most Valuable Security Researcher from Microsoft! 🎉 Thanks to the Security Response team for this recognition. Excited for an impactful year ahead and aiming for the next MVR! #Microsoft #Mvr #MSRC #Swag

MVRs at #BluehatIndia! Microsoft BlueHat Security Response Ashish Dhone cyber_catz

Honored to attend BlueHat India 2025 as a Microsoft Most Valuable Researcher (MVR) An inspiring journey, proud moment, and unforgettable experience. Microsoft BlueHat Security Response Microsoft Security