Twitter Feed

profile

ACCEIS

@acceis19 days ago

Solution for the vulnerable code snippet n°2 🛠️ See the write-up article: https://t.co/YK9lkIgAGG Vuln : XSS 🪲 Language : Ruby 💎 Fixed code below: #codereview #vulnerablecode #codesnippet #brokencode #appsec #infosec #pentesting #securityexplained https://t.co/3FwmVtUnx8

profile

ACCEIS

@acceis19 days ago

Solution de l'extrait de code vulnérable n°2 🛠️ Voir l'article détaillé : https://t.co/fRVVRtWV2Z Vuln : XSS 🪲 Langage : Ruby 💎 Code corrigé ci-dessous : #codereview #vulnerablecode #codesnippet #brokencode #appsec #infosec #pentesting #securityexplained https://t.co/TZ81lKNs9L

profile

Open Source CVEs

@OpenSourceHacks20 days ago

(CVE-2023-1067): Cross-site Scripting (XSS) - Stored in pimcore/pimcore. https://t.co/ykKOFWRVCD Disclosed by https://t.co/JGbdQ993Su, fixed by pimcore maintainers... #opensource #CVE #bugbounty #security #vulnerability

profile

Security Pills

@secpillsnews20 days ago

🌩 Microsoft Azure Account Takeover @creastery explains how a mistake in a ReGex could be exploited by attackers to steal a user's Azure session and gain access other cloud resources. #appsec #bugbounty https://t.co/uFRpk2dSij https://t.co/zY6fLifWk7

profile

elsec

@adrielsec20 days ago

tip: swagger never disappoints! 👀 XSS at Shopify https://t.co/uNmUlT70PW #bugbountytips #bugbounty #infosec #seginfo #hacking #hackerone

profile

Ahmed Kamal Abu_Elwafa

@AhmedKa0118406120 days ago

I just published a new Write-up on medium : How I Was able to find 2 Stored XSS via SVG file Upload https://t.co/7SnZuBx4Wx #bugbountytips

profile

VIEH Group

@viehgroup20 days ago

Interesting Stored XSS in sandboxed environment to Full Account Takeover https://t.co/u6w4j4jgZQ #bug #bugs #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

OpsMatters

@opsmatters_uk20 days ago

The latest update for #Indusface includes "What is Cross-Site Scripting (XSS)? Types of XSS, Examples, and Patching Best Practices" and "How to Prevent SQL Injection Attacks?". #cybersecurity #infosec https://t.co/DmQDQErqjL

profile

Rui Shang

@RuiShang920 days ago

#bugbountytips #BugBounty Server-Side MIME Sniff resulting from Go language project containerization https://t.co/DfF0mr6kCp

profile

Jesse Clark

@Hogarth45_20 days ago

@mongobug Gotta keep the impact above 22 if you want an invite to an event. Why report an xss for $250 and miss out on an event to get $20k+ https://t.co/1smezAKjk1

profile

Save to Notion 

@SaveToNotion20 days ago

@proawez This thread is saved to your Notion database. Tags: [Bugbountytips, Xss]

profile

1337aweyz

@proawez20 days ago

@fattselimi @TopengaNFT @TomNomNom @SaveToNotion #thread #bugbountytips #xss

profile

Nish Vamadevan

@nish20 days ago

I am seeing a lot of Cross-site Scripting (XSS) and Cross-Site Request Forgery (CSRF) vulnerabilites popping up lately. #cybersecurity #infosec #Vulnerabilities #Threat #Attack #XSS #CSRF

profile

Programmatic.Solutions

@Programmatoris21 days ago

What is the benefit of the X-XSS-Protection: 0 header in a production environment? - Visit https://t.co/42Eaw9sIBR for the answer. #xss #infosec #coder #developer #software

profile

drak3hft7

@drak3hft721 days ago

Hi @yeswehack everything okay? if the vuln is of medium severity, the program exposes that it pays up to 500 euros for the averages. Why is a Reflected XSS only paid 250? not a very nice thing for us bug hunters. #BugBounty #YesWeRHackers

profile

VIEH Group

@viehgroup21 days ago

Google Dork list for XSS https://t.co/cfsRfahf6C #bug #bugs #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

WAF bypass

@waf_bypass21 days ago

7h3h4ckv157 👩‍💻 Check out this awesome blog post by 7h3h4ckv157 to learn how to bypass Cloudflare and exploit XSS vulnerabilities. 🤩 Get the step-by-step instructions here: https://t.co/mWhfpuIdJT #infosec #bugbountytips #BugBounty

profile

7h3h4ckv157

@7h3h4ckv15721 days ago

Cloudflare bypass and exploit your xss https://t.co/rnvF60AivR #infosec #bugbountytips #BugBounty

profile

Hackwith_Garry 🖥🛰📡

@HackwithGarry921 days ago

Hack Services available 24/7 Link: https://t.co/9H4AubCjDg… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/mMMDrt5dEK

profile

Rajneesh Gupta | Cybersecurity Coach

@_RajneeshGupta21 days ago

🔺 Top 5 Web Application Vulnerabilities 1. Cross-site Scripting(XSS) 2. Broken Authentication 3. SQL Injection 4. Cross-Site Request Forgery(CSRF) 5. Insecure Direct Object Reference #hacking #cybersecurityt

profile

The Daily Swig

@DailySwig21 days ago

This month’s #BugBountyRadar: Fresh targets from Grindr and Miro, infosec drama with XSS Hunter’s new host, and Belgium rolls out the red carpet for ethical hackers https://t.co/9zOiONeuGu

profile

Nish Vamadevan

@nish21 days ago

Patch your Aruba Devices. A vulnerability in the ArubaOS web management interface could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface. https://t.co/bwf0D8qkFp #cybersecurity #infosec #aruba

profile

ether_dz

@BELKHIRIKhired121 days ago

so what do you think it's an ssrf or xss ? #cybersecurity #bugbounty

profile

Drocapy

@azam_gassim21 days ago

again xss 🔥 tipe: try to understand the site how it works through analyzing the features and internal functions site via view-source . Note: If we are talking about speed and performance in work @Bugcrowd Triaged & customer team is the best 🚀 #bugbountytips #BugBounty https://t.co/IzFt44872q

profile

Who Am I ?

@19Who_Am_I1921 days ago

Reflected XSS in 2 mins , u have to check the hidden parameters its a hidden gems " WHO AM I ? " #bugbounty #bugbountytips #bughunting #hackerone #bugcrowd https://t.co/G2W2LudwWu

profile

LinuxSecurity

@LS_Advisories22 days ago

Ubuntu 58991: AWStats vulnerability - AWStats could allow crosssite scripting (XSS) attacks. Ubuntu Security Notice USN58991 February 28, 2023 awstats vulnerabili... @lnxsec #Ubuntu #Linux #infosec #opensource #linuxsecurity https://t.co/ClnvcyBT5Z https://t.co/WBzHcdzudG

profile

Mahshooq Zubair 

@mq_xz_22 days ago

Interesting Stored XSS in sandboxed environment to Full Account Takeover by: varmaanu001 https://t.co/7X3zjexTgn #bugbounty #WriteUps

profile

Pentester Academy

@SecurityTube22 days ago

Ever wanted to know how XSS attacks work? Try it hands-on, for free! In this lab exercise, you will pentest a vulnerable web application with the XSSer tool. Sign in at https://t.co/vfBZUZ9khb and get started at https://t.co/9eVbY19yLq #XSS #pentest #infosec https://t.co/ChABNlvuGF

profile

Hackwith_Garry 🖥🛰📡

@HackwithGarry922 days ago

Hack Services available 24/7 Link: https://t.co/9H4AubCjDg… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/hprxRy4jiq

profile

VIEH Group

@viehgroup22 days ago

Blind XSS fired on Admin panel worth $2000 https://t.co/YLXcpXrryQ #bug #bugs #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

ㅤㅤ ㅤ ㅤㅤ ㅤㅤㅤ ㅤ ㅤㅤ ㅤㅤㅤ ㅤ ㅤㅤ ㅤㅤㅤ ㅤㅤㅤㅤㅤ sudo rm -rf /*

@ApostolWario22 days ago

https://t.co/mH9fFH0fJq - RT @InfoSecComm: 48th edition of IWWeekly is live 🔥 In this week's newsletter learn about: 1. Slack Vulnerability 2. DOM-XSS on Microsoft 3. GraphQL Hacking 4. Hacking AWS Cloud 5. XSS Guide Read here: https://t.co/rmk18FBTko #earmas

profile

Osama Avvan

@osamaavvan22 days ago

Hello, Another Interesting XSS challenge, DOM Clobbering to XSS. In collaboration with @hamzaavvan https://t.co/cbUXZfOKke #xss #BugBounty #challenge

profile

Hackwith_Garry 🖥🛰📡

@HackwithGarry922 days ago

Hack Services available 24/7 Link: https://t.co/9H4AubCRsO… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/sYWU098Kco

profile

Mahshooq Zubair 

@mq_xz_23 days ago

Google Dork list for XSS by: anoint https://t.co/vSTj8hJa07 #bugbounty #WriteUps

profile

Cyber Fusion Team

@SecAlliance23 days ago

On 25 February 2023, a user on underground hacking forum XSS created a post advertising the sale of email access into the French Ministry of the Armed Forces and Brazilian Public Defenders Office (DPU).

profile

ㅤㅤ ㅤ ㅤㅤ ㅤㅤㅤ ㅤ ㅤㅤ ㅤㅤㅤ ㅤ ㅤㅤ ㅤㅤㅤ ㅤㅤㅤㅤㅤ sudo rm -rf /*

@ApostolWario23 days ago

https://t.co/mH9fFH0fJq - 48th edition of IWWeekly is live 🔥 In this week's newsletter learn about: 1. Slack Vulnerability 2. DOM-XSS on Microsoft 3. GraphQL Hacking 4. Hacking AWS Cloud 5. XSS Guide Read here: https://t.co/rmk18FBTko #earmas

profile

InfoSec Community

@InfoSecComm23 days ago

48th edition of IWWeekly is live 🔥 In this week's newsletter learn about: 1. Slack Vulnerability 2. DOM-XSS on Microsoft 3. GraphQL Hacking 4. Hacking AWS Cloud 5. XSS Guide Read here: https://t.co/B4RqgobE2a

profile

HACKLIDO

@hacklido23 days ago

💠 Blue Team Bootcamp Series (P3): How to Detect Cross-Site Scripting (XSS) Attacks By @LE0_Hak #cybersecurity #infosec #xss #bugbounty #bugbountytips #pentesting #web https://t.co/wJGSQrvnQ4

profile

Hackwith_Garry 🖥🛰📡

@HackwithGarry923 days ago

Hack Services available 24/7 Link: https://t.co/9H4AubCjDg… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/oFkI41GbFW

profile

Hackerinthehouse

@hackerinhouse23 days ago

Building an XSS Scanner with Python https://t.co/pyl341gapt #bugbounty #bugbountytips #cybersecurity #xss

profile

khalil shreateh 🧢

@Shreateh23 days ago

https://t.co/rQjN3k80aL #shreateh #exploit #hacker #computer #cybersecurity #blackleaders #technology #vulnerability #vulnerabilityisstrength #vulnerable #infosec #security #tech #hacking #programming #hackers #coding #safety #cybersec

profile

KRIPT099

@KRIPT09923 days ago

Building XSS Scanner Using Python 👇 https://t.co/chGTxtfaiZ #bugbounty #bugbountytips #cybersecurity #infosec #xss #xssscanner

profile

Saif abdullah khan🇧🇩

@0xmahi23 days ago

xss via jwt= 1. Make a jwt token and insert a xss paylaod. 2. The final url is like url/dest?jwt=vulnerable-jwt-token. (jwt= paramter was decoding the provided jwt token and show's it into the page). @TopengaNFT Thanks my frnd 🔥 #BugBounty #bugbountytips https://t.co/AbkzeQ517i

profile

Open Source CVEs

@OpenSourceHacks23 days ago

(CVE-2023-0995): Cross-site Scripting (XSS) - Stored in unilogies/bumsys. https://t.co/4cYB9DWrqU Disclosed by https://t.co/PLCH1wNNXA, fixed by unilogies maintainers... #opensource #CVE #bugbounty #security #vulnerability

profile

Lewis

@0reoSec23 days ago

@solminingpunk: Never forget the XSS attack on Flux(.)tech 😜 https://t.co/P9fXoH9SUU #cybersecurity #infosec @0reoSec

profile

Osama Avvan

@osamaavvan23 days ago

Hi folks, Back with another XSS challenge. Just a regular XSS, try to get a pop-up. https://xss-heaven(.)000webhostapp(.)com/xss.php Note: Remove the Brackets from URL Dm your solutions. #cyberseurity #xss #BugBounty

profile

H1 Disclosed - Public Disclosures

@h1Disclosed23 days ago

⚡ [XSS] Reflected XSS via POST request 👨💻 @0xd3adcode ➟ U.S. Dept Of Defense 🟧 Medium 💰 N/A https://t.co/g7WfEIBzmd #bugbounty #bugbountytips #cybersecurity https://t.co/fR0I64irIH

profile

Dev

@computerauditor24 days ago

I found a crlf injection on a website now it's showing 302 redirect,I am trying to escalate it to xss or html injection so do share any tips,all suggestions are welcome!! #BugBounty #infosec #informationsecurity #Hackingtime https://t.co/FcAjzQWACk

profile

CyberIQs

@CyberIQs_24 days ago

How I was able to Turn a XSS into A Account Takeover #infosec #infosecurity #cybersecurity #threatintel #threatintelligence #hacking #cybernews #cyberattack #cloudsecurity #malware #ransomware #cyber #threathunting #ZeroTrust #CISA https://t.co/Hu1tkKH4cQ

profile

VP Tiwari

@cyberzeast24 days ago

Found a fancy new way to conceal XSS payloads! Check it out in our cheat sheet: #BugBounty #Tips #xss @Hacker0x01 @Bugcrowd @TomNomNom https://t.co/I7Y5mkcCDp

profile

0xD3ADC0DE

@0xd3adcode24 days ago

Multiple Reflected XSS founds on https://t.co/Cgarwyf33y @StateDept subdomain... Going for a new report on @Hacker0x01 #BugBounty #HackTheUS #bugbountytips

profile

Sam Stepanyan

@securestep924 days ago

Google pays $3,133.70 #BugBounty for #XSS #vulnerability in #golang's net/html library. Great find and a great 6-minute bug explanation video by Greg (@gregxsunday) here: #bugbountytips #AppSec #CodeReview https://t.co/8BCkxlfW2S

profile

Dhaval Patel

@d4rk_hors324 days ago

video https://t.co/7kdnyHKheK #bugbountytips #BugBounty #bugbountytip #xss #infosec #appsec #ethicalhacking #cybersecuritytips #CyberSec

profile

VIEH Group

@viehgroup24 days ago

My first finding XSS,IDOR https://t.co/0Ht2TPg5nq #bug #bugs #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

khalil shreateh 🧢

@Shreateh24 days ago

https://t.co/rQjN3k80aL #shreateh #exploit #hacker #computer #cybersecurity #blackleaders #technology #vulnerability #vulnerabilityisstrength #vulnerable #infosec #security #tech #hacking #programming #hackers #coding #safety #cybersec

profile

Bad Advertiser

@0xbadad24 days ago

XSS (Cross-Site Scripting)- Explained In Layman's Term #Cybersecurity #infosec #security via https://t.co/4hyuGbMt4K https://t.co/W59F5Wlf9V

profile

spyx

@spyx_myky24 days ago

ParamAngler - the ultimate tool for testing specific payloads on each parameter! 💻🔍🐟 With one payload, you can spray all parameters and search for vulnerabilities including XSS, LFI, SSTI, SQLi, and more! 🎣🐛 https://t.co/BCldVlnt6n #bugbounty #bugbountytool #WebAppTesting https://t.co/6Db1UszYGz

profile

Banking and Fintech News

@StanleyEpstein24 days ago

XSS (Cross-Site Scripting)- Explained In Layman's Term #Cybersecurity #infosec #security via https://t.co/eBW8Lmmpx7 https://t.co/2SI5ShMJMK

profile

HACKLIDO

@hacklido24 days ago

💠 XSS (Cross-Site Scripting)- Explained In Layman's Term by AnuragTaparia https://t.co/7VWyC1xxPN #CyberSecurity #infosec #github #Pentesting #BugBounty #bugbountytips

profile

Dc Hacks

@D_c_Hacks24 days ago

Hack Services available 24/7 Link: https://t.co/fQaVv2c2VX… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/oklct0ERV1

profile

Dc Hacks

@D_c_Hacks24 days ago

Hack Services available 24/7 Link: https://t.co/CFbeA5b4NT… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS

profile

@Siddhartha S

@sidharthas896224 days ago

@beginnbounty Thanks for share such as a very informative and interesting tool for finding xss. #hacking #bug bounty

profile

Save to Notion 

@SaveToNotion25 days ago

@proawez This thread is saved to your Notion database. Tags: [Bugbountytips, Xss]

profile

1337aweyz

@proawez25 days ago

@arth_bajpai @SaveToNotion #thread #bugbountytips #xss

profile

Hackers Online Club (HOC)

@HOCupdate25 days ago

#cloudflare #infosec #xss https://t.co/N3EgHmUgL5

profile

Kevin Figueroa

@KevinFigueroa25 days ago

Nicely conceal XSS payloads... #CyberSecurity #infosec #pentesters https://t.co/EV9Uvp03mS

profile

Programmatic.Solutions

@Programmatoris25 days ago

Does allowing the <cite> tag create any XSS vulnerabilities? - Visit https://t.co/MpAyiRsOe3 for the answer. #web_application #xss #infosec #programmers #software

profile

Mahshooq Zubair 

@mq_xz_25 days ago

Blind XSS fired on Admin panel worth $2000 by: feribytex https://t.co/J1nLcb7p82 #BugBounty #WriteUps

profile

Open Source CVEs

@OpenSourceHacks25 days ago

(CVE-2023-0949): Cross-site Scripting (XSS) - Reflected in modoboa/modoboa. https://t.co/ByslusUXQp Disclosed by https://t.co/LTnJiZHuwG, fixed by modoboa maintainers... #opensource #CVE #bugbounty #security #vulnerability

profile

Dc Hacks

@D_c_Hacks25 days ago

Hack Services available 24/7 Link: https://t.co/fwIfa7QU9U #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS

profile

Dc Hacks

@D_c_Hacks25 days ago

https://t.co/fQaVv2c2VX Hack Services available 24/7 Link: https://t.co/fQaVv2c2VX… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS

profile

Muhammad Julfikar Hyder

@thejulfikar25 days ago

https://t.co/kLHpcpEHUe #bugbountytips #bugbountytip #bugbounty #cybersecurity #infosec #ethicalhacking

profile

Programmatic.Solutions

@Programmatoris25 days ago

Why does this XSS vector work in svg but not in HTML? - Visit https://t.co/zDtWU030cH for the answer. #xss #svg #infosec #dev #devlife

profile

Jh0n_

@Jh0n_0x25 days ago

XSS Payload Bypass: <b><img/src='x'//oNerror=alert(document.cookie)//;<img/>Jh0n_0x<b/> by: @Jh0n_0x #BugBounty #xss #payloadxss #bugbountytips

profile

Osama Avvan

@osamaavvan25 days ago

I have created a simple Prototype Pollution XSS challenge. Try to get a pop-up. DM me your solution. https://t.co/l8BxnBDWKK #BugBounty #XSS

profile

RedPacket Security

@RedPacketSec25 days ago

HackerOne Bug Bounty Disclosure: stored-xss-on-app-crowdsignal-com--your-subdomain-crowdsignal-net-via-thank-you-headerby0xwega74 - https://t.co/a1xYPDWcJ3 #HackerOne #CVE #Vulnerability #OSINT #ThreatIntel #Cyber

profile

GsmScholar

@GSMPMCYBER25 days ago

Day #10/210 XSS attack A little more persistence, a little more effort, and what seemed hopeless failure may turn to glorious success. XSS attack, an attacker typically injects malicious code (usually JavaScript) into a web page, #BugBounty #goals #infosec https://t.co/GaG6hvck8J

profile

Save to Notion 

@SaveToNotion25 days ago

@proawez This thread is saved to your Notion database. Tags: [Bugbountytips, Xss]

profile

1337aweyz

@proawez25 days ago

@_0x999 @bug_vs_me @netwons1 @dvrahmr @SaveToNotion #thread #bugbountytips #xss

profile

Sysbraykr

@sysbraykr25 days ago

Microsoft Azure Account Takeover via DOM-based XSS in Cosmos DB Explorer (PoC included) https://t.co/kMmGtpWfb0 #xss #bughunting #hacking #Azure

profile

Dr.FarFar

@3XS0a month ago

#FREE 2ಠ23 ♥ Invicti Professional Edition 23.2.0.39705 Full Activated – Discount 100% https://t.co/Joixus9aMb Link: https://t.co/pYvl8kDod7 #HackerOne #infosec #Synack #bugcrowd #bugbountytips #bugbountytip #CyberSecurity #100DaysOfCode #Malware #CodeNewbie #XSS #BugHunter https://t.co/L8mv7i56IU

profile

Hack Reports

@HackReportsa month ago

Stay up-to-date on the latest #cybersecurity news! The latest AppSec vulnerabilities, new hacking techniques, and more. Protect your network and stay informed! #appsec #infosec #security https://t.co/DsPRagTfwe

profile

Akita 🇦🇷 who Am I ?

@akita_zena month ago

https://t.co/s461rsxZV2 by @_lauritz_ #bugbounty #infosec

profile

Unknwz_

@ByUnknwa month ago

Salut à tous Je vais faire une mini formation sur le hacking en 3 temps 1 : Hacking Éthique 2 : Crack de compte 3 : Failles SQL, XSS, Dorks La mini formation est à 10 euros et comprend les outils, les ebook sur ces 3 temps ainsi que les configs pour le crack de compte

profile

Cybernoz

@Cybernozcoma month ago

Deserialized web security roundup: Twitter 2FA backlash, GoDaddy suffers years-long attack campaign, and XSS Hunter adds e2e encryption https://t.co/7UWeygfkuQ #cybersecurity #cybersecuritynews #cybernews #infosec #informationsecurity

profile

Ryx

@PadhiyarRushia month ago

Ignore the tags: #XSS #WebSecurity #Cybersecurity #ApplicationSecurity #OWASP #SecurityVulnerability #WebApplicationSecurity #PenetrationTesting #WebDevelopment #Privacy #Cybercrime #WebDev #OWASPTop10 #BugBounty #WhiteHatHacking #SecurityAwareness #Thread #Indian #Secure

profile

Ryx

@PadhiyarRushia month ago

🧵Thread #️⃣3️⃣: 📌A Detailed Guide on Understanding XSS - Cross Site Scripting #Infosec #Cybersecurity #XSS #BugBounty

profile

Federico Hansen

@Stuckerbsasa month ago

Your fortnightly rundown of AppSec vulnerabilities, new hacking techniques, and other cybersecurity news 📖 Read (https://t.co/SAY0w9gYcH) via "The Daily Swig" #cybersec #cybersecurity

profile

SekureNet

@Sekureneta month ago

Deserialized web security roundup: Twitter 2FA backlash, GoDaddy suffers years-long attack campaign, and XSS Hunter adds e2e encryption #cybersecurity #infosec https://t.co/cSmhmIMRV1

profile

Jefferson Gonzales

@gonzxpha month ago

Final payload to bypass the WAF /login?redirectUrl=javascript%3avar{a%3aonerror}%3d{a%3aalert}%3bthrow%2520document.domain --> xss pop-up Thanks @HoseinVita for this amazing payload [2/2] #bugbountytip #bugbountytips #BugBounty #xssbypass #Cloudflare

profile

Jefferson Gonzales

@gonzxpha month ago

[Bypass Cloudflare] Open Redirect to XSS Open Redirect /login?redirectUrl=//evil,org --> redirect to evil,org Escalate to XSS /login?redirectUrl=javascript:alert(1) --> blocked by WAF [1/2] #bugbountytip #bugbountytips #infosec #BugBounty https://t.co/0bdo8ekd2k

profile

VIEH Group

@viehgroupa month ago

Cracked XSS — Intigriti Challenge 0223 by Dr. Leek https://t.co/Vr8coGcNDn #bug #bugs #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

VIEH Group

@viehgroupa month ago

My first finding XSS,IDOR https://t.co/0Ht2TPg5nq #bug #bugs #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0934): Cross-site Scripting (XSS) - Stored in answerdev/answer. https://t.co/whqjgy5R7A Disclosed by https://t.co/aKBbCMtEmM, fixed by @answerdev... #opensource #CVE #bugbounty #security #vulnerability

profile

Ptrace Security GmbH

@ptracesecuritya month ago

Toxssin – Open-source Penetration Testing Tool That Automates Exploiting Cross-Site Scripting (XSS) https://t.co/LCUEzS4DyN #Pentesting #CyberSecurity #Infosec https://t.co/mmDhEaWisw

profile

CyberIQs

@CyberIQs_a month ago

The Dangers of SVG Files: A Lesser-Known Vector for XSS Attacks #infosec #infosecurity #cybersecurity #threatintel #threatintelligence #hacking #cybernews #cyberattack #cloudsecurity #malware #ransomware #cyber #threathunting #ZeroTrust #CISA https://t.co/Hu1tkKH4cQ

profile

Programmatic.Solutions

@Programmatorisa month ago

XSS payload to capture login credentials - Visit https://t.co/uGzhHMbXf1 for the solution. #xss #javascript #infosec #engineer #code

profile

Save to Notion 

@SaveToNotiona month ago

@proawez This thread is saved to your Notion database. Tags: [Bugbountytips, Xss]

profile

1337aweyz

@proaweza month ago

@SMHTahsin33 @SaveToNotion #thread #bugbountytips #xss

profile

Anthony

@_c3rb3ru5__a month ago

#xss #hacking #hackingweb

profile

Fullstack CISO

@FullStackCISOa month ago

ChatGPT as a Cybersecurity Assistant. Some interesting use cases in this article: * What happened in this log file? * Is this code vulnerable to XSS? * Convert this shellcode into Python #cybersecurity #chatgpt https://t.co/kRB2sGG5dr https://t.co/UEBkdqE4KK

profile

Programmatic.Solutions

@Programmatorisa month ago

Is DOM XSS attack possible on website that is not using JavaScript? - Visit https://t.co/G26OXN6svw for the answer. #xss #javascript #server #infosec #technology

profile

L0K1

@Chamal_akilaa month ago

#100DaysOfHacking #infosec #Redteam day 3 DOM XSS in document.write @PortSwigger academy

profile

Sheon Han

@sheonhana month ago

Bing/Sydney wrote "I could hack into any system" So it seems like what it needs to start hacking is, simply, access to headless Chrome API (like puppeteer)? Isn't that enough to start XSS or SQL injection? (Cuz using models to perform actions isn't new https://t.co/CK2iis5nkd)

profile

Programmatic.Solutions

@Programmatorisa month ago

Is cross site scripting possible with the img alt attribute? - Visit https://t.co/Wx0xt7qbmJ for the answer. #xss #infosec #engineer #datascience #100daysofcode

profile

Mateusz Kozłowski

@matikozlowskia month ago

4⃣ XSS - script example #XSSAttack #Cybesecurity #infosec #security #tech #JS https://t.co/PUOFCfbBzz

profile

RedPacket Security

@RedPacketSeca month ago

HackerOne Bug Bounty Disclosure: xss-and-html-injection-on-(-https://labs-history-state-gov)byismailu - https://t.co/KUFIUvefvH #HackerOne #CVE #Vulnerability #OSINT #ThreatIntel #Cyber

profile

Mateusz Kozłowski

@matikozlowskia month ago

4⃣ XSS - scenario: A malicious user creates a link that contains a malicious script and posts it on a website or email. When someone clicks on the link, the script is executed and can access the user's cookies. #XSSAttack #Cyberscurity #infosec #security #tech

profile

Mateusz Kozłowski

@matikozlowskia month ago

4⃣ XSS The attack works by injecting malicious code into webpages, allowing attackers to steal user data or even take control of a user's browser. #XSSAttack #Cyberscurity #infosec #security #tech

profile

Cybersecurity Tooling Bot

@infosec_intela month ago

Github: https://t.co/mzC6f4fCuD Stars: 2 Watching: 1 Last change: Feb 17, 2023 #infosec #redteam #pentesting #hacking #cybersecurity #bugbounty

profile

YesWeHack ⠵

@yeswehacka month ago

#22 Vulnerable Snippet {{ solution }} ☑️ See more content on our blog: https://t.co/EBDiUvVlre Bug: XSS/Open Redirect 📛 Lang: JavaScript ⚡️ Check out the explanation in the image below!👇 #YesWeRHackers #BugBounty #YWHSnippet https://t.co/7mRRRLvRFi

profile

Saif abdullah khan🇧🇩

@0xmahia month ago

Recon Recon Recon!! Shodan Dorking Always wins. ssl:"Company Inc" Filter results by http title. Start fuzzing an interesting asset. Found swagger-ui/ Tried swagger ui xss with https://t.co/UE3oaaoh6j #bugbountytips #BugBounty https://t.co/4dwmaHiUW5

profile

H1 Disclosed - Public Disclosures

@h1Discloseda month ago

⚡ xss and html injection on ( https://t.co/ReR5PLdK3a) 👨💻 @@_ismailu ➟ U.S. Department of State 🟧 Medium 💰 N/A https://t.co/SWAcmzESWB #bugbounty #bugbountytips #cybersecurity https://t.co/z3PlQEqalH

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0879): Cross-site Scripting (XSS) - Stored in btcpayserver/btcpayserver. https://t.co/5z0Le24OWO Disclosed by https://t.co/lfwbLJ1nAR, fixed by @BtcpayServer... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0878): Cross-site Scripting (XSS) - Generic in nuxt/framework. https://t.co/cjdCZKXZmc Disclosed by https://t.co/I1YxmrfsDA, fixed by @danielcroe... #opensource #CVE #bugbounty #security #vulnerability

profile

insane_Coder

@AnounimMa month ago

today i was abble to found 2 Reflected Xss and now in all my career i found for like 15-20 xss here is the payload i use for last 2 finds: https://t.co/9fjvv7aWVx #BugBounty #bugbountytips

profile

Hacker Vlog

@vlog_hackera month ago

XSS payloads to bypass Cloudflare 🤣 javascript:{ alert`0` } 1'"><img/src/onerror=.1|alert``> #bughunting #cybersecuritytips #Hacking #xss #Cloudflare #BugHunter #HackerNews

profile

NS 🍥

@nav1n0xa month ago

Quick! Let's find XSS..... #BugBounty memes.. https://t.co/XTo4rDgH56

profile

N45HT

@N45HTOfficiala month ago

Exploiting XSS via Markdown on Xiaomi #infosec #bugbountytips https://t.co/0DiJ4QwnuG https://t.co/a4xguz8yHd

profile

Mahshooq Zubair 

@mq_xz_a month ago

Hacking the Search Bar: The Story of Discovering and Reporting an XSS Vulnerability on https://t.co/Sl0UYmKKww by: niraj1mahajan https://t.co/IwhKBSUG7i #BugBounty #WriteUps

profile

Nik H

@Nikahversea month ago

A curated LIST of bugbounty WRITEUPs [I love lists] They are categorized by topics such as XSS, SQL injection, CSRF, etc https://t.co/kyChnq4ypZ #bugbounty #bugbountytips #cybersec #cybersecurity #infosec #infosecurity #web

profile

Today Cyber News

@TodayCyberNewsa month ago

CSP Bypass for XSS ( 1/2 ) You need to look here for a CSP bypass for XSS when there is an allowed list of sources like https://t.co/X65ZDTDzIo , https://t.co/VD22OiGBAD , etc. #bugbountytips #BugBounty #cybersecurite #infosec https://t.co/oT2S6HAEEt

profile

The BBH

@OfficalTeamBBHa month ago

Beginner Bug Bounty Hunters: Uncover the Secret of Finding XSS in 2023! https://t.co/agl9Q0W1Ji via @YouTube #OpenSource #bugbounty #bugbountytips #bounty #cybersecurity #instacybersecurity #instainfosec #instasecurity #instacyber #instaopensource #programming

profile

VIEH Group

@viehgroupa month ago

WAF Bypass + XSS on The MOST Popular Movie Ticket website. https://t.co/zx1C7cbIyC #bug #bugs #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

VIEH Group

@viehgroupa month ago

Hacking the Search Bar: The Story of Discovering and Reporting an XSS Vulnerability on https://t.co/zARa6whoLZ https://t.co/5P5PzieSmd #bug #bugs #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

Fat

@fattselimia month ago

Findings of the day 1st : Reflected XSS via vulnerable GET Parameter in a Private Program Payload used : ‘-confirm(document.domain)-‘ 2st : Information disclosure in a VDP #bugbounty #bugbountytips #infosec #cybersecurity #cybersecurityawareness https://t.co/NQyCiBHEPL

profile

Naisya Girl Security

@naigirlseca month ago

Baru join jadi member di berachforum tingkah udah belagu, SE"kali lu join ke forum nya orang Rusia noh https://t.co/4hpGNDrhFf biar bisa ngerti sekalian masalah Malware dan Ransomware. Wajar sih, Rusia kan itu isinya Sama ini https://t.co/5FSCaFOaay

profile

Haytham

@Hayth3ama month ago

#bugbountytip echo “target,com” | waybackurls | gf xss > xss.txt for URL in $(</xss.txt); do (python3 https://t.co/xfgAlyic6b -t 1 -d 1 -u "${URL}" --skip > xsstriker.txt ); done To see progress in another terminal type: tail -f xsstriker.txt #infosec #BugBounty #CyberSec

profile

Mike Takahashi

@TakSeca month ago

XSS PoC - AI Generated: 1. https://t.co/vthjqUDKtL 2. Prompt w/ description 3. Export to JSFiddle 4. Host it 5. Include external script 6. Escalate your alert() #bugbountytips #infosec #xss #ai #GPT 👇🧵 for Prompt & Code https://t.co/uJ4sQ2dfGd

profile

GSM PM SHA

@GSMPMCYBERa month ago

xss maybe used by attackers to bypass access controls. #success #bugbounty #vulnerabilities #xss #210goals

profile

Niraj Mahajan

@niraj1mahajana month ago

Hello Researchers, “Hacking the Search Bar: The Story of Discovering and Reporting an XSS Vulnerability on https://t.co/L8GNqNa7cM” https://t.co/3tFGUevfVT #bugbounty #bugbountytip #xss #xssattack #microsoft #microsofthalloffame #cybersecurity #infosec #websecurity #pentesting https://t.co/yMm0o09vw2

profile

Sysbraykr

@sysbraykra month ago

Cloudflare bypass & template injection to XSS in one shoot {{x = {'y':''.constructor.prototype}; x['y'].charAt=[].join;$eval('x=alert(1)');}} #cloudflare #bypass #xss #SysBraykr #BugHunting #InfoSec #WeBreakIt2SecureIt

profile

🐞Sara Badran

@SaraBadran18a month ago

📌SQl injection, Session fixation, Stored XSS, Reflected XSS in @osTicket 🔥 -- Publication date: 2023-02-14 -- By Miguel Correia & Davide Teixeira -- https://t.co/kgBhdSUMuw -- #hackerone #BugBounty #bugbountytips #hackeronereport #Bugbountywriteupspublished #bugbountytip https://t.co/yqyYEGvo7d

profile

VIEH Group

@viehgroupa month ago

Bug Bounty tips: Focus on testing the business logic of the application. Many vulnerabilities are found by examining the way that the application processes and stores data, rather than simply testing for standard vulnerabilities like XSS or SQL injection. #BugBountyTips

profile

tmz900

@tmz900a month ago

2 CSRF, 1 SQLi, some XSS an interesting xss bug: /directory/ => 403 /x/%2e%2e;/directory/ => 200 the path reflect response and boom xss: /x/%2e%2e;/directory/--><script>alert(123)</script> #sqli #xss #csrf #bugbountytips #bugbounty https://t.co/16zFHojebr

profile

Hack Reports

@HackReportsa month ago

Secure up your website! A popular hacking aid just released a CORS misconfig detection function, so you can assess the security of your website in no time. #cybersecurity #websecurity https://t.co/Z7I1CZjp0Y

profile

LinuxSecurity

@LS_Advisoriesa month ago

Fedora 37: phpMyAdmin 2023-179053442b - **phpMyAdmin 5.2.1** This is a bugfix release that also contains a security fix for an XSS vulnerability in the drag-and-drop... @lnxsec #Fedora #Linux #infosec #opensource #linuxsecurity https://t.co/yAVNQM3AP1 https://t.co/Y9n963Nhvp

profile

Md Ismail Šojal

@0x0SojalSeca month ago

Akamai WAF bypass through right-click ⚡️ <details onauxclick=confirm`xss`></details> #xSS #bugbountytips #cybersecuritytips

profile

Md Ismail Šojal

@0x0SojalSeca month ago

Cloudflare bypass & template injection to XSS in one shoot ⚡️ {{x = {'y':''.constructor.prototype}; x['y'].charAt=[].join;$eval('x=alert(1)');}} #infosec #cybersec #bugbountytips

profile

Md Ismail Šojal

@0x0SojalSeca month ago

Easy short Xss Tips ⚔️ 1.⚙️Subdomain enumeration 2.⚙️S3 bucket with access denied 3.⚙️Ffuf found -> /cdn/ 4.⚙️Ffuf found -> /cdn/proxy.html 5.⚙️blank page -> view source, found url param (document.location) 6.⚙️?url=javascript:alert () XSS popped up ⚙️ #infosec #cybersec

profile

Heli9

@Heli__9a month ago

The @intigriti xss challenge videos are great for someone who is trying to learn dom xss and become more advanced in xss in general #bugbountytips

profile

Programmatic.Solutions

@Programmatorisa month ago

Should every output element be filtered, or just those which contain user-editable data? - Visit https://t.co/soUT5HuNrb for the answer. #php #xss #mysql #html #infosec

profile

Gotcha1G

@AnissArrasa month ago

@_mrd7_ Xss in first the 5min when i started bugbounty 😂

profile

syngularity

@syngularity1a month ago

My #dell #cisco #hpe #arubanetworks exploit talk from @WWHackinFest is up. I use persistent #xss, #codeinjection to bypass #vlan controls, tunnel IPv4 to 6 without a router, take over network, create an undetectable #exfiltration protocol. . #Hacking #exploit Still unfixed! https://t.co/a4FdhNMGic

profile

Jackson

@JacksonHHaxa month ago

@0xsomnus It’s so easy to say programming is not needed in infosec and then go back to running nuclei and popping XSS on your local cafe’s website. But you will hit a skill ceiling and realise that programming is needed to transcend it. Can’t believe your tweet got so much hate 😂

profile

Deepak Dhiman🇮🇳

@Virdoex_huntera month ago

Tip: if you found reflected xss but not able to fully exploit it just change the xss payload with blind xss one and see the result #bugbountytips #xss @theXSSrat @ADITYASHENDE17 @GoogleVRP @sunilyedla2 @RanjitAdhikar34 @bug_vs_me 😋😋 https://t.co/jS92DEHHlE

profile

Mr.P1P0

@fxy0x0001a month ago

Bu web sitesinde reflected #xss zafiyeti bulunmaktadır. https://t.co/OCK2fnZ7lA ilgili arama kısmında testini yapabilirsiniz. #rapsodimobilya #mobilya #hack #hacking #xss #reflectedxss #cyberattack Arama kısmında

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0827): Cross-site Scripting (XSS) - Stored in pimcore/pimcore. https://t.co/kAaMi68KKw Disclosed by @sanket_722, fixed by pimcore maintainers... #opensource #CVE #bugbounty #security #vulnerability

profile

Security Temple

@Securitytemplea month ago

Exploiting Persistent XSS | Ken Pyle | WWHF Deadwood 2022 https://t.co/jTkmDeJtBb #bugbounty, #computer, #cyber, #ethical, #hacked, #hacker, #hacking, #hunting, #infosec, #learn, #news, #pc, #pentest, #security, #threat, #tutorial

profile

LinuxSecurity

@LS_Advisoriesa month ago

Fedora 36: phpMyAdmin 2023-c713d12577 - **phpMyAdmin 5.2.1** This is a bugfix release that also contains a security fix for an XSS vulnerability in the drag-and-drop... @lnxsec #Fedora #Linux #infosec #opensource #linuxsecurity https://t.co/oCf82N46T4 https://t.co/Qjq4vnre4T

profile

Udit Bhadauria

@udit_thakkura month ago

Found a pre-auth #xss 0-day today with @ProngedF that affects around 200k hosts on the internet. #BugBounty #infosec #cybersecurity #0day #Hacking

profile

Save to Notion 

@SaveToNotiona month ago

@proawez This thread is saved to your Notion database. Tags: [Xss, Bugbountytips]

profile

1337aweyz

@proaweza month ago

@shrekysec @zseano @SaveToNotion #thread #bugbountytips #xss

profile

Abood Nour 🇵🇸

@AboodNoura month ago

Several people managed to solve this through creative yet unintended solutions. So lets raise the bar a little bit more 😅 Here is a slightly modified version to make it even more interesting Can you still beat it? https://t.co/ZymJ2yxnZ3 #XSS #CTF #BugBounty https://t.co/rtKTXfkAJQ https://t.co/qjIbl5Zsn4

profile

N45HT

@N45HTOfficiala month ago

KNOXSS on Xiaomi #infosec #bugbountytips #xss https://t.co/LCgX7mm5hw

profile

HK

@Harsh66071a month ago

Find 4 XSS vulnerabilities on this last year and this year again another XSS Always keep eye on updates application is pushing ✔️ #bugbountytip #BugBounty #XSS https://t.co/msLa3naSIq

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0810): Cross-site Scripting (XSS) - Stored in btcpayserver/btcpayserver. https://t.co/kXN6KMwvUM Disclosed by @@d47sec, fixed by @BtcpayServer... #opensource #CVE #bugbounty #security #vulnerability

profile

Jinjo 🇹🇳

@TytylolMarka month ago

[#bugbountytips #bugbountytip https://t.co/oHMoeaoC7b

profile

Erlend Oftedal

@webtonulla month ago

«Introducing Frontjacking. Frontend server hijacking is a hacking technique that combines CRLF injection, HTTP request header injection and XSS, exploiting a poorly configured reverse proxy deployed with a shared hosting environment» https://t.co/UfWvMNGgLP

profile

Faiyaz Ahmad

@FaIyaZz007a month ago

Hi everyone! I have created a new video on "Cross Site Scripting Automation" that will help you to find XSS in automated way. Check it out: https://t.co/WiK0CG3dbL #cybersecurity #informationsecurity #ethicalhacking #bugbounty #bugbountytips #penetrationtesting https://t.co/SAjXtPCPJ8

profile

0xD3ADC0DE

@0xd3adcodea month ago

New report has been submitted on @Hacker0x01 , time to catch new XSS! @AmericanAir #BugBounty #bugbountytips

profile

secrukh

@SecRukha month ago

If you are looking how to bypass CSP for XSS exploitation and source contains https://t.co/QltJpHU0dy or https://t.co/ERkwGkdP9b check this repos: https://t.co/Ul6dfgwBaO https://t.co/LG0Y3BESFZ Also check the blogpost: https://t.co/kOon3VS8Fz #bugbounty #bugbountytip

profile

Parrot CTFs

@parrot_ctfsa month ago

Give us your best shot! Best description will get a month free of pro! . #code #review #c #flaw #bof #cve #xss #xxe #sqli #codeinjection #injection #inject #hacker #hacking #hackerone #hackthebox #tryhackme #picoctfs #parrotctfs #ctf #bugbounty #bugcrowd #microsoft #meme #cyber https://t.co/fKIN6uLAv1

profile

def1ant

@0xdef1anta month ago

Another reflected XSS triaged :) #xss #bugbounty #infosec #hackerone https://t.co/WyusPi6ltW

profile

infosec-jobs.com

@infosec_jobsCOMa month ago

HIRING: Senior Web Security Engineer (Frontend) / Europe https://t.co/MDoG7QBNNR #InfoSec #InfoSecJobs #Cybersecurity #jobsearch #hiringnow #CyberCareers #Europe #Audits #Blockchain #ComputerScience #Crypto #CSRF #Finance #JavaScript #Nodejs #OWASP #Privacy #XSS

profile

Programmatic.Solutions

@Programmatorisa month ago

CSP: What is script-src-attr and script-src-elem? - Visit https://t.co/crYf5FqCne for the answer. #xss #javascript #content_security_policy #header #infosec

profile

القبعة البيضاء

@whitehat281a month ago

1. Invicti Invicti is a web application security scanner hacking tool to find SQL Injection, XSS, and vulnerabilities in web applications or services automatically. It is usually available on SAAS solution Features: https://t.co/KiMCe25RWK

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0794): Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq. https://t.co/UP0QXqWKKS Disclosed by https://t.co/BeDJ5NpqYv, fixed by @ThorstenRinne... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0791): Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq. https://t.co/vOqVXN1AVl Disclosed by https://t.co/QztBTN7NZA, fixed by @ThorstenRinne... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0787): Cross-site Scripting (XSS) - Generic in thorsten/phpmyfaq. https://t.co/4HJQPpY5bS Disclosed by https://t.co/QztBTN7NZA, fixed by @ThorstenRinne... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0786): Cross-site Scripting (XSS) - Generic in thorsten/phpmyfaq. https://t.co/2Q2euOJ7E7 Disclosed by https://t.co/BeDJ5NpqYv, fixed by @ThorstenRinne... #opensource #CVE #bugbounty #security #vulnerability

profile

Siddharth Chhetry

@jeetbhdra month ago

Never in my life I thought my Blind XSS payload will fire:) But thank god it did -;- #BugBounty

profile

Mr Noone

@MrNoone67477746a month ago

img-src *; via XSS (iframe) - Time attack ---- SOP bypass Vulnerable sites https://t.co/Nw7pj1QAOD https://t.co/bzAMY0jIBb https://t.co/RNgQhxb48d #github #git #BugBounty

profile

Adam Langley

@adamtlangleya month ago

Try your hacking skills against real world like challenges at https://t.co/hvdpm2hROt we cover blind XSS, SSRF, CSRF, recon, OSINT, asset and subdomain discovery, subdomain takeovers, auth issues, LFI, SQLi, session hijacking & much more! It’s a great place to hone your skills!

profile

HackersFeed_io

@HackersFeed_ioa month ago

🍖 HackerOne: HTML injection that may lead to XSS on https://t.co/hjo5nOdl4U through H1 Triage Wizard Chrome Extension 👉 https://t.co/3cVBIQV2Zi Source: HackerOne Hacktivity #infosec #hackers #datasecurity Follow @HackersFeed_io 🐦 for InfoSec content

profile

H1 Disclosed - Public Disclosures

@h1Discloseda month ago

⚡ HTML injection that may lead to XSS on https://t.co/uznUEc0rdi through H1 Triage Wizard Chrome Extension 👨💻 @jobertabma ➟ HackerOne 🟨 Low 💰 N/A https://t.co/AfC14S4bWp #bugbounty #bugbountytips #cybersecurity https://t.co/hbWqPcBunt

profile

Save to Notion 

@SaveToNotiona month ago

@proawez This thread is saved to your Notion database. Tags: [Ato, Xss, Bugbountytips]

profile

1337aweyz

@proaweza month ago

@imranparray101 @SaveToNotion #thread #xss #ato #bugbountytips

profile

shahmidoe

@shahmidoea month ago

echo test(.)com | waybackurls | grep "=" | grep -Ev "\.(svg|jpg|jpeg|png|gif|ico|bmp|webp|otf|eot|tif|tiff|ttf|woff|woff2|pdf|txt|js|css)" | gouro | qsreplace -a '"><iframe/src=javascript:alert(document.domain)>' | fff -k -M 'alert(document.domain)' #cybersecurity #xss #infosec

profile

shahmidoe

@shahmidoea month ago

#cybersecurity #bugbountytip #xss #infosecurity #infosec https://t.co/lWazPg3Gv1

profile

shahmidoe

@shahmidoea month ago

#infosecurity #infosec #bugbountytip #xss #cybersecurity https://t.co/uDlLxMX5Ci

profile

shahmidoe

@shahmidoea month ago

#cybersecurity #infosec #xss #bugbountytip https://t.co/ixP60k8Ptn

profile

Save to Notion 

@SaveToNotiona month ago

@proawez This thread is saved to your Notion database. Tags: [Xss, Bugbountytips]

profile

1337aweyz

@proaweza month ago

@mtrantalainen @nh___limon @Heli__9 @SaveToNotion #thread #xss #bugbountytips

profile

System Weakness

@SystemWeaknessa month ago

ChatGPT Hacking Prompts, SQLi, XSS, Vuln Analysis, Nuclei Templates, and more https://t.co/S3tuVfP73R #systemweakness #hacking #security #ethicalhacking

profile

N45HT

@N45HTOfficiala month ago

XSS 101 #xss #infosec #bugbountytips https://t.co/EhBNBRkPAp https://t.co/5eCvvd3CE7

profile

DoubleTake

@LeDoubleTakea month ago

Just solved : Web - Client/XSS - Stockée 1 challenge on Root-Me :þ https://t.co/R9vEbMfVOn @rootme_org #hacking #challenge #WebClient

profile

Ninad Mishra

@NinadMishra5a month ago

Best #firefox addons for testing -HackBar -Cookies Manager+ -User-Agent Switcher -Tamper Data -FoxyProxy Standard -Wappalyzer: -HttpRequester -RESTClient: -Tampermonkey -XSS Me -SQL Inject Me -iMacros -FirePHP #bugbountytips #bugbountytip #OSINT #pentest credits: @cry__pto

profile

LinuxSecurity

@lnxseca month ago

Hackers are exploiting XSS vulns in Apache web servers‼️☹️ The Lynis security scanner does not just tell users that something is wrong, but it also gives suggestions on how to secure it✅😀 Find out more in our newsletter 👇 https://t.co/cW3jNwrG8P #Linux #opensource #infosec

profile

iSecurity

@iSecuritya month ago

ChatGPT Hacking Prompts, SQLi, XSS, Vuln Analysis, Nuclei Templates, and more https://t.co/sWLfK7fz2H #hacking #cybersecurity #bugbounty

profile

The XSS Rat - 🇺🇦

@theXSSrata month ago

Love is in the air, and so is the thrill of hacking! James Beers and The XSS Rat have teamed up to offer an incredible Bug Bounty Bundle, including a variety of current courses. Enhance your skills, get your bundle now at https://t.co/QefZhG3eZQ!

profile

Daily Bounty Tips

@BountyTips_a month ago

https://t.co/yzuvusgmhJ #bugcrowd #bugbountyhunter #bugbountytips #hackerone #bugbounty #bugbountytip #bounty https://t.co/S9bjCmpBLc

profile

Imran Parray

@imranparray101a month ago

Another Story ! Title: Stored XSS Leads to full org Takeover. Bounty: $4500 Type: Stored XSS Explanation 👇 #bugbounty #bugbountytips #onebugaday #cybersecurity https://t.co/YYVTxAo4UN

profile

Pentester Academy

@SecurityTubea month ago

Ever wanted to know how XSS attacks work? Try it hands-on, for free! In this lab exercise, you will pentest a vulnerable web application with the XSSer tool. Sign in at https://t.co/vfBZUZ9khb and get started at https://t.co/9eVbY19yLq #XSS #pentest #infosec https://t.co/iANQHZoq7V

profile

HACKLIDO | Cybersecurity

@hacklidoa month ago

💠 XSSHunter setup for blind xss via 4ways By @Dheerajydv19 🔗 https://t.co/x6uErzi8Dz - - - # Tags - - - #cybersecurity #infosec #bugbountytip

profile

Rahul Patwari

@RahulPatwari117a month ago

CVE-2023-23161 A reflected cross-site scripting (XSS) injection vulnerability was discovered in the Art Gallery Management System Project v1.0. https://t.co/qyyICxLJVJ #cybersecurity #infosec #cve

profile

SEC Consult

@sec_consulta month ago

When you hear about "any interactions" on Valentine's Day, it can only mean one thing... https://t.co/TTlMUTwa9E #infosec #automation #sdm #xss https://t.co/rnzlG5bqxb

profile

Hakin9

@Hakin9a month ago

Cross-Site Scripting (XSS) flaws and focus on Blind XSS by Roberto Chemama & Antoine Planque. https://t.co/3T7LR5UNKi #security #opensource #cybersecurity #malware #cyber #pentesting #malwareanalysis #infosec #redteam #malwarehunting #hacking #infosec #threathunting #bugbounty

profile

0 day exploit

@0day_exploit_a month ago

Thread 🧵:👇 Found Open-redirect >> xss >> ato 1) Try normal XSS payload - javascript:alert(1) javascript:%61lert(1) javascript:&#37&#54&#49lert(1) javascript:%26%2337%26%2354%26%2349lert(1) #BugBounty #bugbountytips #infosec #403bypass

profile

Rahmat Qurishi

@RahmatQurishia month ago

I earned $300 for my submission on @bugcrowd Bug: reflected xss I use GAP extension by @xnl_h4ck3r to extract parameters And fuzz parameters with intruder on different endpoints #ItTakesACrowd #bugbounty #bugbountytip

profile

Dheeraj Yadav

@Dheerajydv19a month ago

4Ways to Setup Xsshunter for finding blind xss vulnerabilities Just published a new blog on @hacklido as I feel a need of it, checkout it at https://t.co/eSWti7njpz #XSSHunter #BlindXSS #WebApplicationSecurity #BugBounty #bugbountytips #PenetrationTesting #Infosec #bughunting

profile

VIEH Group

@viehgroupa month ago

Research | Bypass CSRF Protection w/ XSS https://t.co/VRmi8uOEjY #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

Gray Hats

@the_yellow_falla month ago

CVE-2023-25727: phpMyAdmin Releases Software Update to Fix XSS Vulnerability https://t.co/Jv59FsBMyc #opensource #infosec #security #pentesting

profile

Shubham Tiwari

@shubhamtiwari_ra month ago

I have reported many vulnerabilities to hackers #hackerone #BugBounty #bugbountytips #xss #vulnerabilities https://t.co/thceLLpf51

profile

Rachit

@iamR3KTa month ago

When you got nothing on a target program. Search for resolved reports of that program from - @hackerone hactivity - openbugbounty - Twitter search - Articles on Medium and try to bypass those vulnerabilities. Through this, I found XSS where I failed initially. #bugbountytips

profile

Daily Bounty Tips

@BountyTips_a month ago

https://t.co/XQLdL69kcU #hackerone #bugbountyhunter #bugbounty #bugbountytips #bounty #rewards #hack #xss #yeswehack #bugcrowd @Hacker0x01 @Bugcrowd @intigriti @yeswehack https://t.co/Xdd5MeNMDi

profile

Daily Bounty Tips

@BountyTips_a month ago

https://t.co/ZW8Ns1zMle #BountyTips #bugbounty #bugbountytips #bugbountyhunter #hackerone #xss @Hacker0x01 https://t.co/44qdqqUZrI

profile

Daily Bounty Tips

@BountyTips_a month ago

https://t.co/XQLdL69kcU #BountyTips #bugbounty #bugbountytips #bugbountyhunter #hackerone #xss https://t.co/2g6MUXhRNc

profile

Het Mehta

@hetmehtaaa month ago

https://t.co/WIkVWVUeIV https://t.co/L1ie5KbZDT https://t.co/r68rlCYnzh https://t.co/C3Y5DEKtbF https://t.co/zh68ZxNoo8 https://t.co/KXKZUAsOip https://t.co/viZcjDOW4q https://t.co/CSgw2SdkCH #infosec #cyber #security #hacking

profile

zzzZ

@WkendXua month ago

@0x0SojalSec #bugbountytips #bypass #xss @memdotai mem it

profile

iSecurity

@iSecuritya month ago

XSS Via QR Code https://t.co/n7CjfTrDXe #bugbountytips #xssattack #penetrationtesting

profile

Md Ismail Šojal

@0x0SojalSeca month ago

a repository to keep track of cool XSS payloads ⚔️ https://t.co/5auB2b5SlB Check this out! #infosecurity #XssPayloads #cybersec #bugbountytips https://t.co/uzhe7YDCic

profile

Ariel

@Ariel46326723a month ago

Exploit Collector: ChiKoi 1.0 Cross Site Scripting #BlackTechTwitter #xss #hacking #cybersecurity #sqlinjection #ps #bugbounty #pentesting #csrf #owasp https://t.co/Yg6yrN2qEY

profile

sudo_jeli

@sudo_jelia month ago

Yay, I was awarded a $750 bounty on @Hacker0x01! https://t.co/SOcQqjrmKG #TogetherWeHitHarder #hackerone #hacker0x01 #bugbounty #xss https://t.co/1beTEiUdqy

profile

Jordi Alba

@root_experta month ago

Xss Bypass trick! Just I found this in my archive, year 2021, this website was public program in bugcrowd, but this was self xss. Happy hunting! #xss #bypass #BugBounty https://t.co/DynZRXlojX

profile

VIEH Group

@viehgroupa month ago

Bypassing Cloudflare WAF: XSS via SQL Injection https://t.co/Ic8eita6eo #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

🐞Sara Badran

@SaraBadran18a month ago

Reflected XSS and 3,000$ Bounty from Microsoft Forms💵🤷‍♀️ -- By @Supakiad_Mee -- https://t.co/XpSJ2sHSxy -- #hackerone #BugBounty #bugbountytips #hackeronereport #writeups #Bugbountywriteupspublished #bugbountytip https://t.co/jiZNf7tQwl

profile

Andreas Finstad - (4ndr34z)

@4nqr34za month ago

Provide Server v.14.4 XSS -> CSRF -> RCE (CVE-2023-23286) https://t.co/ctELV8BWze This is why XSS never should be "out of scope" in bug bounty programs! #xss #bugbounty #CVE-2023-23286 #infosec

profile

My Space!

@Supakiad_Meea month ago

I hope it's not a duplicate🥲. #xss #microsoft #BugBounty #bugbountytips https://t.co/OMZNp7Jg2h

profile

Programmatic.Solutions

@Programmatorisa month ago

Unsanitized HTML input - Visit https://t.co/wwJmM1HWyb for the solution. #web_application #xss #injection #infosec #engineer

profile

0xTaHa

@FX_T4h4a month ago

hi there, can anyone explain why we used "in" to solve this XSS challenge? https://t.co/85aweTmqRs thank uu!! #XSS #bugbountytips #infosec #ctf

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0747): Cross-site Scripting (XSS) - Stored in btcpayserver/btcpayserver. https://t.co/FvsSF3x4Sk Disclosed by https://t.co/PHAfdzcZFh, fixed by @BtcpayServer... #opensource #CVE #bugbounty #security #vulnerability

profile

Anukul Dhuriya

@AnukulHexxa month ago

Vulnexp 90 | Day26 XSS Labs ➡️Free Labs: #bugbountytips #bugbountytip Thread 🧵 : 👇 https://t.co/sLHC5FLdJT

profile

Hassan

@iamHasssana month ago

So, finally i have submitted my first vulnerability(DOM based XSS) after two weeks of testing ☺ #Pentesting #infosec #CyberSec

profile

Programmatic.Solutions

@Programmatorisa month ago

MIME types that allow XSS in modern browsers - Visit https://t.co/QPZZILapxJ for the solution. #web_browser #xss #javascript #mime_type #infosec

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0743): Cross-site Scripting (XSS) - Generic in answerdev/answer. https://t.co/DQvXee8ND5 Disclosed by https://t.co/3xOZvDI1Hp, fixed by @answerdev... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0742): Cross-site Scripting (XSS) - Stored in answerdev/answer. https://t.co/YGcQt9KPiA Disclosed by https://t.co/0vBD5at5Kv, fixed by @answerdev... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0741): Cross-site Scripting (XSS) - DOM in answerdev/answer. https://t.co/Q95YwhvWCC Disclosed by https://t.co/0vBD5at5Kv, fixed by @answerdev... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0740): Cross-site Scripting (XSS) - Stored in answerdev/answer. https://t.co/ut8D7TYbao Disclosed by https://t.co/3xOZvDI1Hp, fixed by @answerdev... #opensource #CVE #bugbounty #security #vulnerability

profile

VIEH Group

@viehgroupa month ago

How I found XSS on Admin Page without login! https://t.co/e153dJ72nm #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

VIEH Group

@viehgroupa month ago

Reflected XSS Leads to 3,000$ Bug Bounty Rewards from Microsoft Forms https://t.co/zncbtgMmRa #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

Sean Melia

@seanmealsa month ago

Spinning up your own private xss hunter server is incredibly easy and a good practice. Anyone that bug hunts regularly really should have one by now. Plus, it gives you a little insight into how the backend of the web apps that you’re hacking work.

profile

Open Source CVEs

@OpenSourceHacksa month ago

(CVE-2023-0736): Cross-site Scripting (XSS) - Stored in wallabag/wallabag. https://t.co/zE46hSbSOi Disclosed by https://t.co/WHnHdmsAhC, fixed by @j0k... #opensource #CVE #bugbounty #security #vulnerability

profile

CyberIQs

@CyberIQs_a month ago

XSS vulnerability #infosec #infosecurity #cybersecurity #threatintel #threatintelligence #hacking #cybernews #cyberattack #cloudsecurity #malware #ransomware #cyber #threathunting #ZeroTrust #CISA https://t.co/Hu1tkKH4cQ

profile

Programmatic.Solutions

@Programmatorisa month ago

Stored XSS + PHP Backdoor + File upload vulnerability - Visit https://t.co/7pPz1VQRXW for the solution. #php #xss #metasploit #infosec #coder

profile

cybercanine

@cyberK9xa month ago

🚨 Alert Hunters !! 🚨 Worried about #XSSHunter privacy? I've got you covered. Writing an in-depth article on hosting your own XSS Hunter instance. Keep an eye, dropping soon! 👀 #bugbounty #bugbountytips #cybersecurity #Infosec #WebSecurity

profile

cacheme

@justcachemea month ago

I have found an Open Redirect via Host Header on a website that does not have user registration (tried sqli & xss but no luck) but I feeI there's something here, Is there any one who's willing to collaborate? #bugbountytip #bugbounty

profile

Intect

@Intect6a month ago

Let's have look at the top 5 OWASP vulnerabilities of 2022 :- -> SECURITY MISCONFIGURATION -> SQL INJECTION -> INSECURE DESIGN -> XSS -> SSRF #vulnerabilities #Intect #Friday #Cybersecurity #OWASP #cyberattack #hacker #hacking #xss #ssrf #sqlinjection #cybersecuritythreats https://t.co/mqIM2pzETu

profile

Cybernoz

@Cybernozcoma month ago

Radio silence from DMS vendor quartet over XSS zero-days https://t.co/lJwrMPrSJk #cybersecurity #cybersecuritynews #cybernews #infosec #informationsecurity

profile

Anukul Dhuriya

@AnukulHexxa month ago

Cheat-Sheets: https://t.co/RcXJbb1Vce https://t.co/G5QgJwYDKX https://t.co/aJp6crFinw

profile

Anukul Dhuriya

@AnukulHexxa month ago

Vulnexp 90 | Day25 XSS Cheat-Sheets ➡️Cheat-Sheets: ➡️Payloads: #bugbountytips #bugbountytip Thread 🧵 : 👇

profile

SekureNet

@Sekureneta month ago

Radio silence from DMS vendor quartet over XSS zero-days #cybersecurity #infosec https://t.co/MmsUw4MtbD

profile

HackersFeed_io

@HackersFeed_ioa month ago

🍕 Radio silence from DMS vendor quartet over XSS zero-days LINK: https://t.co/2S3pgdjPFD Source: The Daily Swig #infosec #networksecurity #redteam Interested in OffSec? 💪 @HackersFeed_io

profile

Enciphers

@EnciphersLabsa month ago

Here is a story of how a self XSS was turned into Stored XSS. https://t.co/je9lh8bRQ7 #webappsecurity #xss #PenetrationTesting #websecurity #cybersecurity #informationsecurity #blog #threats #vulnerability #enciphers #hacking #dataprotection #cybercrime #training #appsec https://t.co/y97OTmHtXA

profile

Securzy

@SecurzyHQa month ago

Yesterday was a huge success! Thank you Rohit Gautam for an insightful webinar on #XSS Techniques & Automation for Bug Bounties. Participants learned valuable skills to improve their bug bounty game. Register at https://t.co/jCzDfyAUy6 for more such webinars! #BugBounty #Securzy https://t.co/EJ8Z6X5Wxi

profile

HB HACKS

@Hb_Hacksa month ago

Hack Services available 24/7 Link: https://t.co/4aQu4aGQiA… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS

profile

hackwith_Roman🖥🛰📡

@RomanhacExpert1a month ago

Hack Services available 24/7 Link: https://t.co/3da2FxeJXV… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS

profile

Hackwith_Garry 🖥🛰

@Experthac_Gary1a month ago

Hack Services available 24/7 Link: https://t.co/9H4AubCjDg… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/ahTNbS8amw

profile

Parvez Mosaraf

@mosaraf_babua month ago

#BugBounty #Burpsuite #DAST #Pentesting #Plugins #offsec #seguridadinformtica #ethicalhacking #cwe #cve #owasp #ciberdefensa #cibercrimen #ciso #ciberseguridad #ciberataque #ciberdelincuentes #exploit #pentester #offsec #redteam #ctf #hacking #xss #sqli #LIE https://t.co/KVuYwBFc0p

profile

Dharamveer prasad ( v_3_3_r )

@Dharamveer_____a month ago

🔥XSS hunters, don't overlook the power of URL context! Many vulnerabilities can be found by testing payloads in URL parameters, so make sure to check this area thoroughly: #infosec #AppSec payload list: 👇

profile

HackersFeed_io

@HackersFeed_ioa month ago

🥪 New XSS Hunter host Truffle Security faces privacy backlash 👉 https://t.co/Hyacv87ZCH Source: The Daily Swig #hacking #cybersecurity #infosec #hack What do you think about it?

profile

SekureNet

@Sekureneta month ago

New XSS Hunter host Truffle Security faces privacy backlash #cybersecurity #infosec https://t.co/VgOGrBhh1j

profile

CyberIQs

@CyberIQs_a month ago

Multiple Document Management XSS Flaw Let Attackers Access Sensitive #infosec #infosecurity #cybersecurity #threatintel #threatintelligence #hacking #cybernews #cyberattack #cloudsecurity #malware #ransomware #cyber #threathunting #ZeroTrust #CISA https://t.co/Hu1tkKH4cQ

profile

Br0k3n_1337

@Br0k3n_1337a month ago

Alhamdulillah❤️ I earned $350 for my submission on @bugcrowd Tips: Immediately Retest your report after it gets resolved. #ItTakesACrowd #bugbountytip #bugbountytips #bugbounty #xss https://t.co/T4WjG7qABU

profile

Bug bounty notes

@bugbounty0a month ago

#NahamCon2022EU: I Hope This Sticks: Analyzing ClipboardEvent Listeners for XSS by spaceraccoon #bugbounty #bugbountytip #infosec #bugbountytips https://t.co/2EY9VmWUTm

profile

Bug bounty notes

@bugbounty0a month ago

Vue JS Reflected XSS #bugbounty #bugbountytip #infosec #bugbountytips https://t.co/ut2WCgwTnC

profile

Hackwith_Garry 🖥🛰

@Experthac_Gary1a month ago

Hack Services available 24/7 Link: https://t.co/9H4AubCjDg… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/IWSSjmgTOL

profile

rohit_Kumar

@krrohit210302a month ago

Xss but duplicate 😞 #bugbounty https://t.co/URaTTalDjJ

profile

Anukul Dhuriya

@AnukulHexxa month ago

Writeups List : • https://t.co/fy7X2Qpz16 • https://t.co/p1U60RMrlu

profile

Anukul Dhuriya

@AnukulHexxa month ago

Vulnexp 90 | Day24 XSS Write-ups ➡️Writeups List : #bugbountytips #bugbountytip Thread 🧵 : 👇 https://t.co/oS0UuUPcgX

profile

Hardik Singh

@Kxddaha month ago

I'm trying to bypass XSS filter on an application: 1. It strips away any instance of < > + 2. Input limited to 40 chars 3. It doesn't save if input has ' [ ] \ Input appears mostly in either <td>input</td> and <option>input</option> #infosec #bugbounty

profile

Hackwith_Garry 🖥🛰

@Experthac_Gary1a month ago

Hack Services available 24/7 Link: https://t.co/9H4AubCjDg… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/igZsRmBH52

profile

Coy Emerald 🇳🇬🇺🇦

@CoyEmerald1a month ago

There's a security vulnerability (bug) in this picture, can you spot it? (a) Sql Injection (b) Xss (c) (fill in this space with your answer) 😅 #security #vulnerabilitydisclosure #bugbountytips @CoyEmerald1 @HackenProof @Hacker0x01 @intigriti https://t.co/TJQezMh1GK

profile

Hot10Security

@Hot10Securitya month ago

Popular keywords used with #vulnerability tweets Date: 2023-02-08 Unique Tweets: 321 TOP 10 KEYWORDS 1: Data 2: Cross 3: ESXiArgs 4: Site 5: Access 6: Vigil 7: US 8: CISA 9: XSS 10: Toyota bot-tweet #infosec #cybersecurity

profile

مهند 🐎 | Mohnad 

@Mohnada month ago

When pentester play Fivem then try to find some juicy Stored xss :) #bugbountytips #bugbountytip https://t.co/bMCfnHseB5

profile

Hackwith_Garry 🖥🛰

@Experthac_Gary1a month ago

Hack Services available 24/7 Link: https://t.co/9H4AubCjDg… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/3viif3Zqg3

profile

Hackwith_Garry 🖥🛰

@Experthac_Gary1a month ago

Hack Services available 24/7 Link: https://t.co/9H4AubCjDg… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/8fqasXXDDi

profile

Th3Pr0xyB0y

@Th3Pr0xyB0ya month ago

@bxsshunter is going open-source to ensure transparency & launching custom database integration for complete control of your data. Perfect for users who can't run custom instances. Get ready for this exciting update! (https://t.co/gjwNwSUa2N) #Cybersecurity #bugbountytips #xss https://t.co/CWNV91ubrr

profile

Th3Pr0xyB0y

@Th3Pr0xyB0ya month ago

Join https://t.co/gjwNwSUa2N now to stay informed when we release our open-source software and receive a comprehensive guide on how to gain full control over your data through personalized database integration. This feature will be included in an upcoming update. #bugbountytips https://t.co/JUib9Yf7wp

profile

Th3Pr0xyB0y

@Th3Pr0xyB0ya month ago

The #AWSVRP on #HackerOne now requires personal XSSHunter instances for reporting. We're providing open-source #BXSSHunter for the community & ability to integrate custom databases for full control over your data. Report vuln with peace of mind. #bugbountytips #cybersecurity https://t.co/pEjJmeNIUW

profile

CyberIQs

@CyberIQs_a month ago

Critical XSS flaw in phpMyAdmin allows malicious database operations #infosec #infosecurity #cybersecurity #threatintel #threatintelligence #hacking #cybernews #cyberattack #cloudsecurity #malware #ransomware #cyber #threathunting #ZeroTrust #CISA https://t.co/Hu1tkKH4cQ

profile

Th3Pr0xyB0y

@Th3Pr0xyB0ya month ago

Exciting news! Following industry trends and valuable insights from @zseano, we've decided to open-source our @bxsshunter. This update will empower users to monitor their data by integrating their custom database. Stay tuned for more details on the release! #bugbountytips https://t.co/sxGMqpOKaa

profile

IICyberSecurity

@iicsorga month ago

#infosec #cybersecurity Critical XSS flaw in phpMyAdmin allows malicious database operations https://t.co/sL6qLGvZQT https://t.co/Cp8kA6W4vI

profile

Hackwith_Garry 🖥🛰

@Experthac_Gary1a month ago

Hack Services available 24/7 Link: https://t.co/9H4AubCjDg… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/P53eN5pXwq

profile

abdulsec

@moodiAbdoula month ago

@Masonhck3571 Smart way to automate blind xss discovery in all bugbounty Target but i prefer the self hosted https://t.co/FihoM3mhTv

profile

bullsec

@bullsecsecurea month ago

@cyberK9x On an educational note. Part of the skillset for a successful infosec person should be standing up basic infrastructure stuff (like XSS Hunter or Burp Collaborator), learn a lot about configuration and management and doing it on a VPS isolates you from an actual f**k up.

profile

cybercanine

@cyberK9xa month ago

🚨 ALERT !! 🚨 Stop relying on third-party hosted XSS hunter instances! You never know what's being monitored and it's best to have full control over your testing environment.Invest in a $5 VPS and host your own instance for transparency & security. #bugbountytips #cybersecurity

profile

Sathish M

@goldenrockers1a month ago

@impratikdabhi @therceman @SaveToBookmarks #BugBounty #XSS

profile

Barbarosa

@Barbarossa0xa month ago

The vulnerability can be: - XSS - CSRF - DIRTY COOKIE - NEGOTIATE DOMAIN - NEGOTIATE HOST - NEGOTIATE PORT - NEGOTIATE PATH - NEGOTIATE PROTOCOL - NEGOTIATE PROTOCOL VERSION #infosec #CyberSec #Hacking #tryhackme

profile

Filipi Pires

@FilipiPiresa month ago

phpMyAdmin Releases Software Update to Fix XSS Vulnerability https://t.co/L0H5kLbovZ #security #opensource #cybersecurity #malware #cyber #pentesting #malwareanalysis #infosec #redteam #malwarehunting #hacking #infosec #threathunting #bugbounty #tools #offensivesecurity

profile

Gray Hats

@the_yellow_falla month ago

phpMyAdmin Releases Software Update to Fix XSS Vulnerability https://t.co/Jv59FsBMyc #opensource #infosec #security #pentesting

profile

Bug Zero

@BugZero_ioa month ago

#BugZeroLightReading this week Tidbits of Cross-Site Scripting (XSS) Read: https://t.co/xrEUPwnloY #BugZero #BugBounty #SriLanka #BugZeroLightReading #BugBountyTips

profile

Hackers Online Club (HOC)

@HOCupdatea month ago

HOCXSS — Automatic Cross-Site Scripting (#XSS) Vulnerability Scanner https://t.co/57RVqCEWTs Features : ● Automatic Parameters Detection ● Scan using TOR ● WAF Detection ● Multi-threaded Crawling ● Cookie Support #infosec #cybersecurity

profile

Cybernoz

@Cybernozcoma month ago

DOM XSS vulnerability in Gartner Peer Insights widget patched https://t.co/w5RyGx9Jr1 #cybersecurity #cybersecuritynews #cybernews #infosec #informationsecurity

profile

Hacker Spy Network

@HackerSpyNet1a month ago

Significance to “Not Set CSP” While Checking For XSS Vulnerabilities With XSpear? https://t.co/En6Gox8YW1

profile

ArcherL (@[email protected])

@realArcherLa month ago

Would you be interested in receiving customized new letters from https://t.co/a9616mChCH? Like, get articles based only on #xss #csrf #web #idors? I am experimenting with ways I can make it sustainable; as of now, it runs on what I earn from my part time job. #bugbountytips

profile

Luthra

@justluthraa month ago

I injected BXSS Payloads in 2020 but got XSS Fired Today #bugbounty #xsshunter https://t.co/Y67RsfNSW6

profile

HackersFeed_io

@HackersFeed_ioa month ago

🍟 DOM XSS vulnerability in Gartner Peer Insights widget patched LINK: https://t.co/tUwmvcUHQT Thanks The Daily Swig #infosec #networksecurity #redteam What do you think about it?

profile

SekureNet

@Sekureneta month ago

DOM XSS vulnerability in Gartner Peer Insights widget patched #cybersecurity #infosec https://t.co/W1K01FZK4q

profile

Begin n Bounty

@beginnbountya month ago

🔥XSS hunters, don't overlook the power of URL context! Many vulnerabilities can be found by testing payloads in URL parameters, so make sure to check this area thoroughly: #infosec #AppSec payload list: 👇

profile

s3c

@s3c_krda month ago

Bounty of stored XSS by collaboration with @siratsami71 @moe1n1 @zhenwarx #BugBounty #togetherwehitharder https://t.co/7o7JBfZUwK

profile

Hackwith_Garry 🖥🛰

@Experthac_Gary1a month ago

Hack Services available 24/7 Link: https://t.co/9H4AubCjDg… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/UssN7L9gDE

profile

🇮🇳 ! Bõt âmît

@Botami143a month ago

### WAF / Cloudflare Bypass 20+ XSS Payloads #bugbountytips #BugBounty #bugbountytip #cybersecuritytips #cybersecurity #hacker #Hacking #infosecurity #infosec #xss https://t.co/wcsXYDATVX

profile

Pratik Dabhi

@impratikdabhia month ago

$350 XSS in 15 minutes by @therceman https://t.co/Hq05YoSkR4 #bugbounty #infosec #Hacking

profile

Hackwith_Garry 🖥🛰

@Experthac_Gary1a month ago

Hack Services available 24/7 Link: https://t.co/9H4AubCjDg… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/x3uSpUR9tQ

profile

at0m

@atomiczseca month ago

#BugBounty #bugbountytips #bugbountytip #xss #payload #payloads #bughunting #bugs #javascript

profile

Hackwith_Garry 🖥🛰

@Experthac_Gary1a month ago

Hack Services available 24/7 Link: https://t.co/9H4AubCjDg… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/92U9qErSoB

profile

chosen negreaux americana

@TheDgtalEmpressa month ago

What’s your fave security vulnerability to exploit red team? ❤️‍🔥 #CyberSecurity #infosec #redteam #hacking #sqlinjection #xss https://t.co/oNkyKw2Z7S

profile

0xSe.eK

@0se0ek2 months ago

#100dayofbugbounty day01 (xss): 1)Read this blog: https://t.co/1FE3D4aWtk 2)hunting 3 hours and find 1 bugs but its duplicat 2)learn javascript language ------------ #bugbountytips #BugBounty #infosec #100DaysOfCode #100DaysOfCyberSecurity

profile

Hackwith_Garry 🖥🛰

@Experthac_Gary12 months ago

Hack Services available 24/7 Link: https://t.co/9H4AubCjDg… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/43LAeAnWWu

profile

hackwith_Roman🖥🛰📡

@RomanhacExpert12 months ago

Hack Services available 24/7 Link: https://t.co/3da2FxeJXV… #Metasploit #HackerOne #Synack #BugCrowd #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #XSS https://t.co/e4NfirdpfA

profile

bounter

@_bughunter2 months ago

Blind XSS To SSRF 🔥🔥🔥🔥 https://t.co/mKiPbSHZQm #bugbountytips #bugbountytip #bugbounty

profile

Mike Takahashi

@TakSec2 months ago

💣 XSS Hunter goes down Feb 11th! 🏆 Thank you @IAmMandatory for running it all these years! 👉 Build your own XSS Hunter w/ this easy script by @AdamJSturge: https://t.co/L9eq2fZiJL #xss #bugbountytips #bugbounty #hacking #infosec 👇🧵for more resources https://t.co/cpKMbtMHh2

profile

pandaquests (cute/cutie)

@pandaquests2 months ago

https://t.co/I9QUS39ZIX #xss #htmlinjection #javascript #cleancode #programming #programmer #coding #programmierung #hacking #web #code #codereview #computerscience #js #webdeveloper #webdevelopment #codingforbeginners #frontend #codenuggets #fyp #fy #pandaquests

profile

at0m

@atomiczsec2 months ago

in the next couple days, I will be posting about my #XSS methodology and where I find most of them and how I found some. Stay tuned #bugbounty #bugbountytip #bugbountytips @trufflesec @XssHunter 🫡 https://t.co/w7viJQHzh0

profile

khalil shreateh 🧢

@Shreateh2 months ago

https://t.co/fgwpcDRXBC #shreateh #exploit #hacker #computer #cybersecurity #blackleaders #technology #vulnerability #vulnerabilityisstrength #vulnerable #infosec #security #tech #hacking #programming #hackers #coding #safety #cybersec

profile

VIEH Group

@viehgroup2 months ago

Great news. new version of xss hunter. Link: https://t.co/at87pRp8MR #bugbountytips #xsshunter #xss #hacker #bugbounty https://t.co/U0CzmpwaYI

profile

HeNews

@HeNews92 months ago

The course also covers web application hacking, discovering and exploiting vulnerabilities, and protecting against XSS and MITM attacks. Finally, the course covers social engineering techniques and malware analysis.

profile

Hot10Security

@Hot10Security2 months ago

Popular keywords used with #vulnerability tweets Date: 2023-02-04 Unique Tweets: 210 TOP 10 KEYWORDS 1: Cross 2: Site 3: XSS 4: Scripting 5: GoAnywhere 6: MFT 7: CSRF 8: Fortra's 9: Injection 10: Vigil bot-tweet #infosec #cybersecurity

profile

Ptrace Security GmbH

@ptracesecurity2 months ago

Winning QR with DOM-Based XSS | Bug Bounty POC https://t.co/Lx1t1Ab4B1 #Pentesting #BugBounty #CyberSecurity #Infosec https://t.co/cpYAIRawQz

profile

Borna Nematzadeh

@LogicalHunter2 months ago

The @trick3st is a better way to automate your recon workflow! Here's a simple workflow to find XSS vulnerability. It imports URLs from the input and uses both dalfox and nuclei-xss-templates (-tags xss) for scanning. #bugbounty #bugbountytips https://t.co/rfXZD9RpYK

profile

Md Ismail Šojal

@0x0SojalSec2 months ago

Path based xss with diffrence type methods⚔️ 1: Inecject payload in every path and check xss 2: append fake paramters in every path and check xss vulnerability 3: made poc for you in your terminal https://t.co/82zFTiWWmg #infosec #bugbountytips #CyberSecurity https://t.co/BHuPzXuEiv

profile

payloadartist

@payloadartist2 months ago

⚙️ XSSHunter service is deprecated. Now what? 👇(1/2) @trufflesec launched a better version of it with more checks - CORS - Secrets on the page the payload fires - Exposed .git directory https://t.co/VPFRxraj6L #bugbounty #infosec #cybersecurity #redteam #bugbountytips https://t.co/NcTP4WGUKa

profile

Rami (drunkrhin0)

@drunkrhin02 months ago

You're sleeping on this if you haven't read it yet 😴 ✅ DOM XSS ✅9+ entities affected ✅Detailed explanation (with diagrams too!) ✅PoC ✅ Absolute legend @justinsteven #bugbountytips https://t.co/Z41wr7GL6u

profile

Ashish Dhone

@ashketchum_162 months ago

Hacked @Apple Teacher Learning Centre - ATLC 4th time ❤️ Bug: Bypass Blind XSS Bounty: $7500 Soon I'll be posting case study on my channels at, https://t.co/g1LMOhSQUH https://t.co/rRiWLQ7owA ./KEEP_hacking #apple #keep_hacking #news #media #BugBounty #hacker #HackerNews https://t.co/UqTRcrEmcT

profile

r3kt

@iamR3KT2 months ago

@krishnsec and I collaborated on one program at @Bugcrowd through this I earned more than my one month salary in just 4 nights. Reported 10 Ref XSS 2 SSRFs etc Really learned new things from him new target - Hustle to earn my first 4 digit bounty. Improving in #BugBounty

profile

Manoj Khadka🇳🇵

@Manojkhd2 months ago

When try some web put xss🐞payload then Boom!💥 with PoC ex payload: <script>window.location=”http://evil[.]com”;</script> #xss #bugbountytips https://t.co/vGDrJt3pQ0

profile

Rey

@Rey_Nevan2 months ago

@Infosec_Taylor There is a big difference between a pentest and looking for issues on a website. So it really depends if we speak missing encryption, xss, or sql injection. Just like in the strip club, looky looky but no touchy touchy

profile

Hacking Articles

@hackinarticles2 months ago

Comprehensive Guide on Cross-Site Scripting (XSS) https://t.co/bF8HmpQ7pc #infosec #cybersecurity #cybersecuritytips #pentesting #oscp #redteam #informationsecurity #cissp #CyberSec #networking #networksecurity #CheatSheet #infosecurity #cyberattacks #bugbounty #bugbountytips https://t.co/draWLOf1Oj

profile

VIEH Group

@viehgroup2 months ago

DOM-Based XSS for fun and profit $$$! | Bug Bounty POC https://t.co/OK9tBqCb1N #infosec #cyberattack #cybersecurity #bugbounty #bugbountytip #hacking

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0608): Cross-site Scripting (XSS) - DOM in microweber/microweber. https://t.co/zF4lKUoOTq Disclosed by https://t.co/bYpI4eoNDU, fixed by microweber maintainers... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0607): Cross-site Scripting (XSS) - Stored in projectsend/projectsend. https://t.co/aK4e96vmtK Disclosed by @@d47sec, fixed by projectsend maintainers... #opensource #CVE #bugbounty #security #vulnerability

profile

Abhishek Meena

@Aacle_2 months ago

✨Bug Bounty Pro Tip: ➡Escalate everything you find! #bugbounty #Infosec #hacking • Don’t report SSRF, Escalate to RCE. • Don’t report Self-XSS, Chain it with Clickjacking. • Don’t report Self-Stored XSS, Chain it with CSRF. More🧵(1/n) : 👇 https://t.co/4NHJzEtXU5

profile

Dr.FarFar

@3XS02 months ago

#FREE 2ಠ23 ♥ Acunetix Premium 15.3.230123162 Full Activated – Discount 100% OFF https://t.co/Joixus9aMb Link : https://t.co/kvz50QYeZl #Acunetix #HackerOne #Hackers #Synack #BugCrowd #XSS #BugBounty #BugBountyTips #InfoSec #CyberSecurity #100DaysOfCode #Malware #HackerNews https://t.co/8SGqMWgvCD

profile

Cybersecurity Tooling Bot

@infosec_intel2 months ago

Github: https://t.co/DKV5D94Bg6 Stars: 9 Watching: 0 Last change: Aug 8, 2021 #infosec #redteam #pentesting #hacking #cybersecurity #bugbounty

profile

Cybersecurity Tooling Bot

@infosec_intel2 months ago

Github: https://t.co/0XV9h5Bcwq Stars: 869 Watching: 28 Last change: Oct 31, 2022 #infosec #redteam #pentesting #hacking #cybersecurity #bugbounty

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0606): Cross-site Scripting (XSS) - Reflected in ampache/ampache. https://t.co/nhgZcnUkD7 Disclosed by https://t.co/dmte2VSaRV, fixed by @ampache... #opensource #CVE #bugbounty #security #vulnerability

profile

0ha€ck^

@mrzip2zip2 months ago

The best extension in browser to found xss, sql , encode; decode payload and more https://t.co/NfBsFo4gpJ ——— #bugbountytips #BugBounty #infosec #cybersecurite #Pentesting #Hacked #bugcrowd https://t.co/urDpY0MScX

profile

VIEH Group

@viehgroup2 months ago

XSS, Flash Cross-Domain Policy, and CSRF Vulnerabilities Discovered on a Single Website https://t.co/SGHtOv29OW #bug #bugs #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

VIEH Group

@viehgroup2 months ago

XSS vulnerability https://t.co/HWvYrmE81i #bug #bugs #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

Manoj Khadka🇳🇵

@Manojkhd2 months ago

Do you like 🐞deface using XSS, and I love hunting with parameter PoC #xsshunter #bugbountytips #xss https://t.co/P3d81h5JDH

profile

beam

@beamsterzero2 months ago

@CanYouHearBR Currently hacking your web server and doing a XSS script

profile

0xSe.eK

@0se0ek2 months ago

How to found xss(xss methodology): https://t.co/0DOcR2Bmid ----------------------- #BugBounty #BugBountyTip #bugbountytips #infosecurity #infosec #Hacking https://t.co/0sdytCoRu7

profile

Lewis

@0reoSec2 months ago

@inj3ct0r: #0day #Hikvision Remote Code Execution / #XSS / #SQLi #Injection #Vulnerabilities #RCE https://t.co/7E5t6LsnsV #cybersecurity #infosec @0reoSec

profile

VIEH Group

@viehgroup2 months ago

Vue JS Reflected XSS https://t.co/aZbs8ZheFL #infosec #Bugbounty #bugbountytips #cybersecurity #hacking #cyberattacks

profile

HACKLIDO | Cybersecurity

@hacklido2 months ago

📩 Cyber Security Round Up #4: 150,00 EUR worth XSS, Binary Exploitation, Hacking ATMs, JavaScript Hacking, API Security, NoSQL, SSRF, IDORs & more… 🔗 https://t.co/CYMBoX4g8F --- # Tags --- #infosec #infosecurity #cybersecurity #bugbountytip #bugbountytips #ChatGPT

profile

CyberIQs

@CyberIQs_2 months ago

Don’t Give Up On XSS! | Fun Firefox XSS #infosec #infosecurity #cybersecurity #threatintel #threatintelligence #hacking #cybernews #cyberattack #cloudsecurity #malware #ransomware #cyber #threathunting #ZeroTrust #CISA https://t.co/Hu1tkKH4cQ

profile

XSS Report

@XssReport2 months ago

20.000 XSS reports left behind! Over 2000 bounty hunters chose https://t.co/uVCBeExkBl. Congratulations on your bounties! #xss #bugbounty #xssreport

profile

VIEH Group

@viehgroup2 months ago

How I found XSS on Admin Page without login! https://t.co/e153dJ6uxO #bug #bugs #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

VIEH Group

@viehgroup2 months ago

Reflected XSS Leads to 3,000$ Bug Bounty Rewards from Microsoft Forms https://t.co/DpiQUWueZT #bug #bugs #bugbounty #bugbountytip #bugbountytips #hacking #hacker #ethicalhacking #ethicalhacker #ethicalhackers #cybersecurity

profile

H1 Disclosed - Public Disclosures

@h1Disclosed2 months ago

⚡ Stored XSS in Public Profile Reviews 👨💻 vj1naruto ➟ https://t.co/Jg5UIutlvx ⬜ None 💰 $250.0 https://t.co/T1ZYyhwHGl #bugbounty #bugbountytips #cybersecurity https://t.co/73W2mrk8Nr

profile

H1 Disclosed - Public Disclosures

@h1Disclosed2 months ago

⚡ Stored XSS in SVG file as data: url 👨💻 @irisrumtub ➟ Shopify 🟧 Medium 💰 $5300.0 https://t.co/C7HleUXN95 #bugbounty #bugbountytips #cybersecurity https://t.co/nM1XxnCGW1

profile

Lewis

@0reoSec2 months ago

@packet_storm: Hikvision Remote Code Execution / XSS / SQL Injection https://t.co/DiJp59WPRN #advisory #cybersecurity #infosec @0reoSec

profile

Matt Suiche

@msuiche2 months ago

@joernchen XSS ruined infosec

profile

Brier & Thorn México

@BrierandThornMX2 months ago

Conoce mas sobre Cross Site Scripting (#XSS), checa nuestro blog sobre el tema. https://t.co/10iII0CgzV #infosec #XSS #ciberseguridad

profile

int

@0x1int2 months ago

Such a nice scam in #BugBounty field 😂☠️ this isn't an XSS issue. https://t.co/dD12Kv4Ffw

profile

Mike Takahashi

@TakSec2 months ago

XSS in multi-step flows: 1. Something stored/reflected, but not w/ Repeater 2. Turn "Intercept" On 3. Submit the form on the page 4. Forward requests until you get to the reflected request 5. Inject your XSS payload 💥 #xss #bugbountytips #bugbounty #infosec #hackingtools https://t.co/MFSrEvV45M

profile

Goziem

@g0ziem2 months ago

@ADITYASHENDE17 @R29k_ @akita_zen @Jhaddix @zseano @hacker_ @0x0SojalSec @abdlah_md I found an endpoint, which is &code= I think it is vulnerable to xss but it blocks (, ), <script>, ` How do I bypass cloudflare waf? #xss #BugBounty

profile

eagle rage

@eaglerage02 months ago

20 YOUTUBE CHANNELS TO LEARN HACKING PhD security HackerSploit InsiderPhD Null byte STÖK ZSecurity Hak5 IppSec The XSS Rat Nahamsec SecurityFWD Vickie Li Dev NetworkChuck The Cyber Mentor John Hammond Rana Khalil ITProTV PwnFunction edureka! David bombal #CyberSec #BugBounty

profile

Demon

@R29k_2 months ago

1- Found a support page. 2- It had Name,email and message fields 3- There was an option for saving your info, selecting it will save your Name and Email on the support page. 4- There was a self-xss in Name Field. 5- Chained it with CSRF and got a nice Stored XSS #BugBounty #xss

profile

Beg Hunter

@BegHunter2 months ago

Full disclosing XSS ATO 0day method #0dayHunting #TogetherWeStrikeHarder #bugbountytips https://t.co/C0N7HkzmIy

profile

Th3Pr0xyB0y

@Th3Pr0xyB0y2 months ago

If you are looking to move away from #xsshunter @XssHunter you can give a try to a new product @bxsshunter (https://t.co/VRQCgNtZht) give us a try and let us know what more features you need! #xss #xsshunter #BugBounty #bugbountytips #blindxss https://t.co/RuYeT5Mgo7

profile

Glênnio

@iGlennio2 months ago

Falha de XSS no site da Globo no @valoreconomico permite redirecionar, infect ou roubo de sessão de cookies de outros usuários. #BugBounty #bugbountytips #Hacked #Hacking #Pentesting #cybersecuritytips #globo #GloboNews #Twitter #virus #hacker #ITSecurity #Defcon #SEC https://t.co/2I97I6aSDw

profile

BXSS Hunter

@bxsshunter2 months ago

@bxsshunter (https://t.co/vwMj0MYp29) now supports all the same features now + more of them ! go ahead and give us a try! #bxsshunter #bugbounty #bugbountytips #blindxss #bugbountytip #infosec #cybersecuritytips #cybersecurity #xss #xsstips https://t.co/MmgZXZCiLD

profile

Cyber Xplore

@CyberXplore2 months ago

Exciting news! BXSS Hunter (https://t.co/PT2HFpr02C) has been updated with improved CORS detection, secret DOM detection, .git directory detection, & bug fixes! #xsshunter #bxsshunter #bugbountytips #bugbountytips #CyberSecurity #cybersecuritytips #bugbounty @bxsshunter

profile

BXSS Hunter

@bxsshunter2 months ago

Exciting news! BXSS Hunter (https://t.co/vwMj0MYp29) has been updated with improved CORS detection, secret DOM detection, .git directory detection, & bug fixes! #xsshunter #xss #bxsshunter #bugbountytips #bugbountytips #CyberSecurity #cybersecuritytips #bugbounty #bxss

profile

Th3Pr0xyB0y

@Th3Pr0xyB0y2 months ago

@bxsshunter has been updated to Version 1.0.1 checkout changelog at https://t.co/DQOP2RKxso & check out new features such as 1- cors detection 2- secrets detection in dom 3- detection of .git directories #bxsshunter #xsshunter #xss #bugbountytips #bugbounty #CyberSecurity https://t.co/dkpJfKFGhl

profile

Th3Pr0xyB0y

@Th3Pr0xyB0y2 months ago

@CyberXplore is proud to announce that https://t.co/VRQCgNtZht has been updated with new features such as : 1- detection of cors issues 2- detection of secrets in dom 3- detection .git directories 4- bug fixes #xsshunter #xss #bxsshunter #bugbountytips #bugbounty @bxsshunter

profile

Mohamed Ibrahim

@mOhamedd7w2 months ago

Got XSS on #bugcrowd #bugbounty #bugbountytips https://t.co/ZtJ2AWwIGJ

profile

socket

@yxw212 months ago

New XSS platform released. Support using your own domain name. Support webhook. Mates with the burpsuite extension to log the full request that triggers xss. For more, please visit. https://t.co/WtUhwVFo0j #xsshunter #xss #hackerone #bugbounty #bugcrowd #bugbountytip #burpsuite https://t.co/osa82hf4qv

profile

Pentester Academy

@SecurityTube2 months ago

Ever wanted to know how XSS attacks work? Try it hands-on, for free! In this lab exercise, you will pentest a vulnerable web application with the XSSer tool. Sign in at https://t.co/vfBZUZ9khb and get started at https://t.co/9eVbY19yLq #XSS #pentest #infosec https://t.co/kNUNKFdf8C

profile

Excommunicado

@wy42102 months ago

My xsshunter triggered but it shows Cloudflare IP and the other one is not visible from where it belongs. Anyone can help me with that. @0x0SojalSec @hetmehtaa @TakSec #bxss #bugbountytip

profile

Chagara

@emchagara2 months ago

Yesterday I ran a small poll to understand what InfoSec pros consider as easy kills for beginners in cybersecurity, here is your result. So incase you want to build your confidence in hacking, start with injection attacks. Eg; XSS, SQL injection, Command Injection etc. https://t.co/W9HRPQN2LQ

profile

onhexgroup

@onhexgroup2 months ago

گروه @trufflesec اعلام کرده ، طی صحبتی که با خالق #XSSHunter انجام دادن ، یه نسخه جدید با امکانات بیشتر از این ابزار منتشر کردن. #xss #bugbounty #باگ_بانتی https://t.co/1IGPpageUJ

profile

Muhammed Farish

@muhamedfarish2 months ago

https://t.co/PFBHVOZRlJ #cybersecurity #bug #bugbounty #security #computerscience #networks #hacking #hacker #programming #ethicalhacking #pentesting #kalilinux #parrotos #coding #Fetlla #Medium #infosec

profile

Nitro Soul

@Mohamed225642392 months ago

XSS by exciting script with open redirect lead to run scripts to CROSS SITE SCRIPTING https://t.co/ZY2lQoN6WP #bugbunty #bugbountytips #openredirect

profile

Security Talent

@devmehedi1012 months ago

Alhamdulillah, I completed another big project of #penetration_testing / #ethical_hacking. Can get a #reverse_shell through DOM Based #XSS. The client was happy with me and awarded me an extra amount and gave a nice review. https://t.co/gHpYBFQcke #bugbountytip #bugbountytips https://t.co/kGI0jtK0DU

profile

Kali Nathalie 🏳️‍⚧️

@K4L1_FS2 months ago

[Infosec] Nem tudo são flores, eu por exemplo nunca achei um XSS em mundo real 😭 (É sério....🥲) https://t.co/zoNsAB067d

profile

Mohamed Yasser

@Mohamed225642392 months ago

لما تبقا داخل بتراجع علي معلوماتك في لاب معين و تكتشف ثغرة xss reflected 😂😂في نص اللاب #XSS #bugbountytips #webgoat #BugBuntyHunting https://t.co/pKoVqoqYlL

profile

Mike Takahashi

@TakSec2 months ago

🔎 Google Dork - XSS 🔍 inurl:q= | inurl:?s= | inurl:search= | inurl:query= | inurl:lang= | inurl:keyword= inurl:& site:example[.]com Find common parameters vulnerable to XSS #recon #bugbountytips #infosec #seo https://t.co/Wg7AI7gu9A

profile

HackGit

@hack_git2 months ago

Xssor.go Xssor is XSS payloads reflections in source code checker. https://t.co/zIHBg4Z5qi #pentesting #bugbounty https://t.co/Iu7DPmaXVn https://t.co/2XgSSzFiq7

profile

E.T

@EugenTezlaw2 months ago

@R29k_ @NeolexSecurity @Bugcrowd Omg with simple xss and sql bugs it's really possible to earn so much money? I should return back to hacking....

profile

Suyash Sharma

@SuyashS918234222 months ago

Reported many #bugs in many organisations This month Bug type:- 4 XSS (medium) 2 misconfigured Jenikens instances (HIGH) #bugbountytips #UPDATE #infosec #CyberSec https://t.co/MpfBsCldYF

profile

Eyuga

@Eyug_a2 months ago

Hii guys want to learn about #xss do you guys have any tutorials for me to watch or read to learn xss. #Linux @LiveOverflow @TCMSecurity #ethicalhacking #Pentesting #bugbounty

profile

Prince Prafull

@PrincePrafull32 months ago

Suggest some xss payloads to bypass >, <, (, ), alert, script etc. filters #xss #payloads #bugbountytips #BugBounty #webappsecurity

profile

Hot10Security

@Hot10Security2 months ago

Popular keywords used with #vulnerability tweets Date: 2023-01-29 Unique Tweets: 176 TOP 10 KEYWORDS 1: Cross 2: Site 3: Scripting 4: XSS 5: Request 6: Forgery 7: CSRF 8: CVE 9: Help 10: Desk bot-tweet #infosec #cybersecurity

profile

أحْمَدُ مُحَمَّد

@ahmdmhamed_2 months ago

Hi, This my write-up about bypassing CSRF protection via XSS https://t.co/Ss7TAOF7ij #BugBounty #bugbountytips

profile

pizzapower

@pizzap0w3r2 months ago

Found some cool stuff lately: https://t.co/CwIt6sFUcI… https://t.co/zwc3TYI8zb… https://t.co/hf8fgWOlIl… https://t.co/yDSJDy5Uu6… Plus an SQLi in a big ecosystem. #cybersecurity #infosec #hacking

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0470): Cross-site Scripting (XSS) - Stored in modoboa/modoboa. https://t.co/QpCMQXOeZH Disclosed by https://t.co/yP3tBVjXCL, fixed by @modoboa_mail... #opensource #CVE #bugbounty #security #vulnerability

profile

iSecurity

@iSecurity2 months ago

How I was able to find 4 Cross-site scripting (XSS)on vulnerability disclosure program ? https://t.co/HQKGzj9OWz #bugbounty #websitesecurity #cybersecurity

profile

Amr Mustafa

@Amr_MustafaAA2 months ago

I just published How I was able to find 4 Cross-site scripting (XSS) on vulnerability disclosure program  https://t.co/KCEB07IpD5 #BugBounty #bugbountytips #CyberSecurity

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0519): Cross-site Scripting (XSS) - Stored in modoboa/modoboa. https://t.co/8w7uCZSFfC Disclosed by https://t.co/mmZxqUVyCn, fixed by @modoboa_mail... #opensource #CVE #bugbounty #security #vulnerability

profile

Jack

@Jaxon11772 months ago

Hi .. Anyone have any success using https://t.co/rvBJxswot4 tool? #BugBounty

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0488): Cross-site Scripting (XSS) - Stored in pyload/pyload. https://t.co/5SvRCyYr57 Disclosed by @bAuholz_, fixed by @pyload... #opensource #CVE #bugbounty #security #vulnerability

profile

[email protected]

@Minacris890M2 months ago

I found a Cross-site scripting (XSS) and bypassed the WAF (akamai) on one of the TikTok ads endpoint and could lead it to takeover any account on TikTok ads #BugBounty #bugbountytips

profile

Ali Tütüncü

@alicanact602 months ago

@bugbounty_memes It's just a Reflected XSS report template, not nuclei template or something like that 😂

profile

iSecurity

@iSecurity2 months ago

Blind XSS To SSRF https://t.co/v107lCwv5H #webapplicationsecurity #cybersecurity #bugbounty

profile

RedPacket Security

@RedPacketSec2 months ago

HackerOne Bug Bounty Disclosure: rails-actionview-sanitize-helper-bypass-leading-to-xss-using-svg-tag-byhaqpl - https://t.co/vmPydcQxH1 #HackerOne #CVE #Vulnerability #OSINT #ThreatIntel #Cyber

profile

Fares Walid

@SirBagoza2 months ago

Published my .go version of xssor https://t.co/urYh2qrmwk Q: What's Xssor? A: Xssor is XSS payloads reflections in source code checker. Differences of .py version? - Quicker - Duplicated urls Skipper #infosec #bugbountytips #cybersecuritytips

profile

s3c

@s3c_krd2 months ago

I found a Cross-site scripting (XSS) and bypassed the WAF (akamai) on one of the TikTok ads endpoint and could lead it to takeover any account on TikTok ads #BugBounty #bugbountytips https://t.co/ZFVWnjcBrg

profile

Anonymous H4ck3r

@AnonymousH4ck352 months ago

AWESOME BUGBOUNTY TOOLS Subdomain Enumeration Port Scanning Fuzzing GraphQL/CRLF/CSRF/SQL/XSS/XXE Injections Directory Traversal Open Redirect Subdomain Takeover and more. https://t.co/JcdifiPdHX https://t.co/dBi52sMB7h

profile

Lewis

@0reoSec2 months ago

@SaraBadran18: RCE, SQl injection, Stored XSS in @MyBB -- Publication date :- 2023-01-25 -- By @ptswarm -- https://t.co/FrTXqlF0LK -- #hackerone #BugBounty #bugbountytips #hackeronereport #writeups #Bugbountywriteupspublished #bugbountytip https://t.co/mdTDNiDoQ4 #cyberse…

profile

🐞Sara Badran

@SaraBadran182 months ago

RCE, SQl injection, Stored XSS in @MyBB -- Publication date :- 2023-01-25 -- By @ptswarm -- https://t.co/6ikSFioL0r -- #hackerone #BugBounty #bugbountytips #hackeronereport #writeups #Bugbountywriteupspublished #bugbountytip https://t.co/AvKkCltRtH

profile

H1 Disclosed - Public Disclosures

@h1Disclosed2 months ago

⚡ Rails ActionView sanitize helper bypass leading to XSS using SVG tag. 👨💻 @haqpl ➟ Internet Bug Bounty 🟧 Medium 💰 $2400.0 https://t.co/36VYP3IHYG #bugbounty #bugbountytips #cybersecurity https://t.co/Ywdnjjssfd

profile

Hitesh Patra

@0xdeviner2 months ago

Made a YT video on @bxsshunter, a cool alternative to @XssHunter As you might know, #xsshunter will no longer be in support for your blind XSS hunting journey, a similar tool with additional functionality is now available. https://t.co/KpIBTTwHjs #bugbountytips #infosec

profile

Abdelrhman Allam

@sl4x02 months ago

Research | Bypass CSRF Protection w/ XSS https://t.co/0OHItG5LlO #websecurity #infosec #appsec #recon #bugbountytips #bugbounty #bughunting #csrf #xss #securityresearch

profile

@x1337Loser

@0xnirob2 months ago

@0xRiy4d @yaworsk @zseano Learn basic concept of web hacking, then you Will realize which one should you learn first! Mine one is XSS then access control issue. Good luck❤️

profile

Dhaval Patel

@d4rk_hors32 months ago

file upload to XSS #BugBounty #bugbountytips #bugbountytip #infosec #appsec #CyberSec #ethicalhacking Link: https://t.co/dqNCSBa2BI

profile

Md Ismail Šojal

@0x0SojalSec2 months ago

HTTP Status Code for ⚡️#XSS 200, 201, 202, 203, 206 301, 302, 303, 305 400 to 417 except 407 500 to 508 #infosec

profile

Md Ismail Šojal

@0x0SojalSec2 months ago

When trying for XSS if alert() is blocked you can use an alternative like⚡️. by @KathanP19 1. confirm 2. prompt 3. eval 4. write Found Some More Here👇 https://t.co/xM9XLvuoXE #infosec #cybersec #bugbountytips

profile

Md Ismail Šojal

@0x0SojalSec2 months ago

Massive XSS⚔️#infosec #bugbountytips #cybersecuritytips https://t.co/YFWnl92ljT

profile

Programmatic.Solutions

@Programmatoris2 months ago

In NodeJS, what is a good way of ensuring user submitted data in (text input) forms is not malicious? - Visit https://t.co/msfL5EiMOh for the answer. #xss #sql_injection #nodejs #infosec #softwaredevelopment

profile

H1 Disclosed - Public Disclosures

@h1Disclosed2 months ago

⚡ XSS at TikTok Ads Endpoint 👨💻 @s3c_krd ➟ TikTok 🟥 High 💰 N/A https://t.co/mm8iRQHM4B #bugbounty #bugbountytips #cybersecurity https://t.co/UrvByJ7DVA

profile

H1 Disclosed - Public Disclosures

@h1Disclosed2 months ago

⚡ XSS on ( █████████.gov ) Via URL path 👨💻 @Ajay_jachak24 ➟ U.S. Dept Of Defense 🟧 Medium 💰 N/A https://t.co/xYlX7r05xV #bugbounty #bugbountytips #cybersecurity https://t.co/AzMIp8hQC3

profile

H1 Disclosed - Public Disclosures

@h1Disclosed2 months ago

⚡ reflected xss in www.████████.gov 👨💻 maskedpersian ➟ U.S. Dept Of Defense 🟧 Medium 💰 N/A https://t.co/UknbNEO9qf #bugbounty #bugbountytips #cybersecurity https://t.co/kUsEDKsfKJ

profile

H1 Disclosed - Public Disclosures

@h1Disclosed2 months ago

⚡ Reflected XSS on ██████.mil 👨💻 @alishahmughal12 ➟ U.S. Dept Of Defense 🟧 Medium 💰 N/A https://t.co/UUxpYt0b1x #bugbounty #bugbountytips #cybersecurity https://t.co/lE4djAp4TT

profile

Ptrace Security GmbH

@ptracesecurity2 months ago

Bypassing Cloudflare WAF: XSS via SQL Injection https://t.co/m5iR0oCz6f #Pentesting #SQLinjection #CyberSecurity #Infosec https://t.co/iq2qnnizW3

profile

Sysbraykr

@sysbraykr2 months ago

XSS/WAF/SQL filter bypass. < - %EF%BC%9C (\uff1c) > - %EF%BC%9E (\uff1e) \ - %EF%BC%BC (\uff3c) / - %EF%BC%8F (\uff0f) ' - %EF%BC%87 (\uff07) " - %EF%BC%82 (\uff02) #bypass #xss #waf #sql #SysBraykr #BugHunting #InfoSec #WeBreakIt2SecureIt

profile

ABHIJITH PK

@ag3n7apk2 months ago

Stored XSS #BugBounty #xss https://t.co/0EBWAQkgd3

profile

RedPacket Security

@RedPacketSec2 months ago

HackerOne Bug Bounty Disclosure: xss-at-tiktok-ads-endpointbys3c - https://t.co/9D5hFvRIaj #HackerOne #CVE #Vulnerability #OSINT #ThreatIntel #Cyber

profile

${Manash}

@manash0362 months ago

Recently, I reported an open redirect (OR) vulnerability that I was able to convert to a full account takeover. Cookies had HttpOnly enabled, so was not possible to steal directly. This is what I did 🧵👇 🏃TLDR OR=>XSS=>Steal token from /sso/refresh #BugBounty #infosec (1/n)

profile

Black Hat Ethical Hacking

@secur1ty1samyth2 months ago

Offensive Security Tool: XSSRocket XSS Rocket is written by us with the help of #ChatGPT as experimentation and is designed for Offensive Security and #XSS (Cross-Site-Scripting) attacks. Read the full post: https://t.co/ULUCMjGZBN #infosec #informationsecurity #redteam https://t.co/XCq9XFqUZe

profile

Sysbraykr

@sysbraykr2 months ago

Bypassing Cloudflare WAF: XSS via SQL Injection https://t.co/ikvHmtGPfS #SysBraykr #BugHunting #InfoSec #WeBreakIt2SecureIt

profile

hemi

@jookermoon2 months ago

https://t.co/KVrWFi2Tna

profile

Hot10Security

@Hot10Security2 months ago

Popular keywords used with #vulnerability tweets Date: 2023-01-26 Unique Tweets: 339 TOP 10 KEYWORDS 1: Site 2: Vigil 3: Cross 4: Facebook 5: Twitter 6: Make 7: Scripting 8: XSS 9: Windows 10: CryptoAPI bot-tweet #infosec #cybersecurity

profile

0x999

@_0x9992 months ago

Currently working on a Burp Suite extension designed for Blind XSS injection in Headers, if anyone has any suggestions for additional features that should be added please do lmk, Here are the current features👇 (pls excuse the ugly UI, it's temporary) #bugbountytips #bugbountytip https://t.co/OWIZJCvG0R

profile

Muhammed Farish

@muhamedfarish2 months ago

https://t.co/zWnR15aofH #cybersecurity #bug #bugbounty #security #computerscience #networks #hacking #hacker #programming #ethicalhacking #pentesting #kalilinux #parrotos #coding #Fetlla #Medium #infosec

profile

Hot10Security

@Hot10Security2 months ago

Popular keywords used with #vulnerability tweets Date: 2023-01-25 Unique Tweets: 403 TOP 10 KEYWORDS 1: Cross 2: Site 3: Log 4: Scripting 5: XSS 6: Google 7: Data 8: Vigil 9: VMware 10: GoTo bot-tweet #infosec #cybersecurity

profile

CyberIQs

@CyberIQs_2 months ago

How to Prevent Cross-Site Scripting (XSS) Attacks #infosec #infosecurity #cybersecurity #threatintel #threatintelligence #hacking #cybernews #cyberattack #cloudsecurity #malware #ransomware #cyber #threathunting #ZeroTrust #CISA https://t.co/Hu1tkKH4cQ

profile

unpaired_electron

@Ajay_jachak242 months ago

Blind XSS leads to data leakage But the Domain is out of scope.. Will they pay for this? What do you think ? #bugbountytips #BugBounty #hackerone #bugcrowd https://t.co/awg70DKiMX

profile

BXSS Hunter

@bxsshunter2 months ago

Feel free to DM Us Issues Being Resolved - 1- XSS FIRE PAGE NOT LOADING WHEN MANY XSS FIRES HAPPENS 2- IP ADDRESS ALWAYS COMING 127.0.0.1 3- Some Minimal Issues #bxsshunter #bxss #bugbountytips #bugbounty https://t.co/171GmQ0MJE

profile

Th3Pr0xyB0y

@Th3Pr0xyB0y2 months ago

In case someone finds any issues on @bxsshunter feel free to dm or @bxsshunter . Update - There was server load today we handled it effectively with little down time of 5-10 minutes Signup Now At https://t.co/VRQCgNtZht #xsshunter #bxsshunter #bxss #bugbountytips #bugbounty

profile

bugbountymemes

@bugbounty_memes2 months ago

Make sure you are using Trusted Service when using alternatives to XssHunter Imagine you got 50+ Payload fired but not able to login your so called XssHunter alternatives #bugbounty #xss

profile

Rahmat Qurishi

@RahmatQurishi2 months ago

I earned $100 for my submission on @bugcrowd 1.Signed up to main website. 2.browsed subdomains, found an endpoint that was vulnerable to xss Payload: <script>alert(origin)</script> Easy bug🙂 #ItTakesACrowd #BugBounty

profile

Lewis

@0reoSec2 months ago

@ptswarm: 💬 New article by our researcher Aleksey Solovev: "MyBB <= 1.8.31: Remote Code Execution Chain". 🐞 Abusing Nested Parsers Conditions for getting XSS 🐞 From Privileged SQL Injection to RCE Read the article: https://t.co/FrTXqlF0LK #cybersecurity #infosec @0reoSec

profile

PwnLab.Me

@PwnlabMe2 months ago

Detaylı bir XSS reposu; https://t.co/Yyr98j65Q4 #cybersecurity #git #github #xss #bugbounty

profile

XSS Report

@XssReport2 months ago

"We are truly delighted that you have received a reward by using our platform. We hope you will be able to receive even more beautiful rewards. Congratulations!" #xss #bugbounty via https://t.co/uVCBeExkBl https://t.co/qAkPogSvWb

profile

Jefferson Gonzales

@gonzxph2 months ago

XSSHunter Alternative Since the xsshunter will be deprecated this 1st of February here's the two alternative website you can try for blind xss 1. https://t.co/rHOI00NcUP 2. https://t.co/nUeMkoBwhZ by @CyberXplore #bugbountytips #BugBounty #xss

profile

Cyber Zilla

@SunilAd942142932 months ago

What tool do you use to automate blind xss??? #BugBounty #togetherwehitharder #bugbountytip

profile

Goziem

@g0ziem2 months ago

XSS Report is another alternative. Features: 1. XSS payloads 2. Info about where the payload fired. https://t.co/tqglrLHhD7 #bxsshunter #xss #bugbountytips #bxss #xsshunter #bxss

profile

🇮🇳 ! Bõt âmît

@Botami1432 months ago

### WAF / Cloudflare Bypass 25+ XSS Payloads #bugbountytips #BugBounty #bugbountytip #xss #cybersecuritytips #cybersecurity #sqlinjection #hacker #Hacking https://t.co/bfe2zuVtxI

profile

[email protected]

@Minacris890M2 months ago

What do you use for blind XSS hits these days? I've used @XssHunter before, but since it is going to be deprecated on Feb 1 I'm looking for an alternative #bugbountytips #bugbounty #xss

profile

Mike Takahashi

@TakSec2 months ago

Tips for getting into Bug Bounty - Part 2: 1. Pick a topic on @PortSwigger Web Security Academy, such as XSS: https://t.co/wioDWTzs9W 2. Hack the labs for that vulnerability type 3. If you can't beat one out, look at the answer and learn how it works #infosec #bugbountytips https://t.co/Eou9nDEfED

profile

Crazy

@0PWorld2 months ago

Help : i found XSS Payload Fired On https://t.co/oUP5NjB7ha but when i try to open url say : This site can’t be reached how can i open it look pic #infosec #cybersecurity #cybersecuritytips #bugbountytips https://t.co/XAtwOd5BTs

profile

payloadartist

@payloadartist2 months ago

XSS using postMessage in Google Cloud Theia notebooks https://t.co/7VDivVojGJ By @sivaneshashok @kl_sree #infosec #bugbounty #bugbountytips #Hacking #cloudsecurity https://t.co/AIKGio2V0R

profile

7h3h4ckv157

@7h3h4ckv1572 months ago

The ultimate tool for discovering and reporting vulnerabilities. With BXSSHUNTER: 📢 https://t.co/JciPPOjHtF 1- XSS HUNTER Dashboard 2- Pro XSS Reports 3- Payload Tracking 4- Host Remote Payloads 5- Learning Hub 6- Instant XSS Alerts #infosec #BugBounty #bugbountytips #xss

profile

HackTube5

@HackTube52 months ago

3 One line Bug Bounty Tips #BugBounty 1. Always check for common vulnerabilities such as SQL injection, XSS, and CSRF. 2. Test for both known and unknown vulnerabilities by using both manual and automated testing methods. 3. Keep an eye out for subdomains and test them as well.

profile

LinuxSecurity

@lnxsec2 months ago

Want to scan for XSS vulns in your websites/web apps? Then look no further than Pwn XSS, a powerful tool used by malicious hackers & security professionals alike! Learn how to install & run Pwn XSS👇https://t.co/Lf8DN6BK3G Given it a try? What do you think? #infosec #Linux

profile

Th3Pr0xyB0y

@Th3Pr0xyB0y2 months ago

Great news for the security community! bxsshunter by @CyberXplore is free for everyone & it has been developed for the community. #bugbountytips #xss #BugBounty #bxss #bxsshunter #blindxss #xsshunter https://t.co/dkpJfKFGhl

profile

Th3Pr0xyB0y

@Th3Pr0xyB0y2 months ago

6- Instant XSS Alerts An Alternative To XSS Hunter From @CyberXplore For Any Queries Contact @bxsshunter or email us at [email protected] #xss #xsshunter #bxsshunter #cybersecurity #bugbountytips #bugbounty #BXSS #XSSHunter

profile

Th3Pr0xyB0y

@Th3Pr0xyB0y2 months ago

Improve your XSS hunting with BXSSHUNTER - Join our community for xss tips, instant notifications, easy reports, and a public profile to showcase your skills. signup now at https://t.co/VRQCgNtZht & elevate your game now! #bxsshunter #xss #bugbountytips #bxss #xsshunter #bxss https://t.co/10MrLU8OeO

profile

x1m

@x1m_martijn2 months ago

What do you use for blind XSS hits these days? I've used @XssHunter before, but since it is going to be deprecated on Feb 1 I'm looking for an alternative #bugbountytips #bugbounty #xss

profile

Sexcurity | Make love, not war!

@s3xcur1ty2 months ago

Mengintip Dashboard Admin Situs Haram (Bahasa Indonesia) - @kustirama https://t.co/4dHxxv3e9d #InfoSec #CyberSecurity #Security #XSS #BlindXSS #StoredXSS #WriteUp #BugHunting #BugBounty

profile

Securityblog

@Securityblog2 months ago

Reflected XSS Leads to 3,000$ Bug Bounty Rewards from Microsoft Forms | by Supakiad S. (m3ez) | Jan, 2023 | InfoSec Write-ups https://t.co/I1eFfLxuzw

profile

Pentester Academy

@SecurityTube2 months ago

Ever wanted to know how XSS attacks work? Try it hands-on, for free! In this lab exercise, you will pentest a vulnerable web application with the XSSer tool. Sign in at https://t.co/vfBZUZ9khb and get started at https://t.co/9eVbY19yLq #XSS #pentest #infosec https://t.co/PWE3GGCeUB

profile

Nur Rokhim

@Noerrokhim19972 months ago

XSS on the https://t.co/XtCggaGaGi Full video: https://t.co/Q7CvRc2nuk #cyber #BugBounty #cybersecurity # https://t.co/SmZmzUDaQp

profile

Muhammed Farish

@muhamedfarish2 months ago

https://t.co/MGw3kjtWKf #cybersecurity #bug #bugbounty #security #computerscience #networks #hacking #hacker #programming #ethicalhacking #pentesting #kalilinux #parrotos #coding #Fetlla #Medium #infosec

profile

Lu3ky13

@lu3ky132 months ago

Yay, I was awarded a $3100 bounty on @Hacker0x01! https://t.co/JRIv8Fju4i #TogetherWeHitHarder the first time I submitted an xss like this ><script>alert(1)</script> I bypassed JSON response second, after the fixed bug, I found a bypass with its payload #BugBounty #bugtips

profile

Marcos Furquim

@markinfurkin2 months ago

Mais um para o bug bounty #BugBounty #reverseengineering #xss https://t.co/4fajTQNS1Z

profile

RedPacket Security

@RedPacketSec2 months ago

HackerOne Bug Bounty Disclosure: xss-on-link-and-window-openerbypisarenko - https://t.co/uKxdZcWtSf #HackerOne #CVE #Vulnerability #OSINT #ThreatIntel #Cyber

profile

Thee Eclipse

@Thee_Eclipse2 months ago

A simple straight forward DOM XSS exploit in #jQuery at @PortSwigger by @intigriti #XSS #Hacking #hackingtools #intigriti https://t.co/a1RE8wgTSO

profile

H1 Disclosed - Public Disclosures

@h1Disclosed2 months ago

⚡ XSS on link and window.opener 👨💻 pisarenko ➟ Slack 🟧 Medium 💰 $1000.0 https://t.co/T2K6IuaMPD #bugbounty #bugbountytips #cybersecurity https://t.co/JeeeVS3Lab

profile

Сомьядип Мандал👾

@wtf_yodhha2 months ago

Credit @GodfatherOrwa url/?f=etc/passwd ==> 403 encode etc/passwd as base64 url/?f=L2V0Yy9wYXNzd2Q= ==> 200 #note you can use this trick in SQL , SSTI , XSS , LFI , Etc... #bugbountytips #bugbountytip https://t.co/c885FZ578v

profile

BlackClover

@Bc10ver2 months ago

Top story: @GodfatherOrwa: 'url/?f=etc/passwd ==> 403 encode etc/passwd as base64 url/?f=L2V0Yy9wYXNzd2Q= ==> 200 #note you can use this trick in SQL , SSTI , XSS , LFI , Etc... #bugbountytips #bugbountytip ' https://t.co/KNEOJ3hXJo, see more https://t.co/neOMbBi5Ty

profile

Begin n Bounty

@beginnbounty2 months ago

If the input is being reflected in a JavaScript context and is being passed through the encodeURIComponent function, it is possible to use certain characters to bypass the encoding and potentially execute an XSS attack. #AppSec #infosec

profile

Godfather Orwa 🇯🇴

@GodfatherOrwa2 months ago

url/?f=etc/passwd ==> 403 encode etc/passwd as base64 url/?f=L2V0Yy9wYXNzd2Q= ==> 200 #note you can use this trick in SQL , SSTI , XSS , LFI , Etc... #bugbountytips #bugbountytip https://t.co/vEd2UdjTMi

profile

Rohan.exe 🖤

@roohaa_n2 months ago

Yay, I was awarded a $550 bounty on @Hacker0x01! My First bounty ever :) Tip : Use your blind xss payload every where in contact form or in customer support #TogetherWeHitHarder #bugbounty #bugbountytips https://t.co/Q8lMOrKGR1

profile

iSecurity

@iSecurity2 months ago

Understanding the XSS Threat: A Comprehensive Guide to DOM Based Cross Site Scripting Vulnerability https://t.co/HSLW4e0hSX #cybersecurity #hacking #bugbounty

profile

Amit Kumar🇮🇳

@Amitlt22 months ago

Understanding the XSS Threat: A Comprehensive Guide to DOM Based Cross Site Scripting Vulnerability. #CyberSecurity #BugBounty #bugbountytip #xss #Hacking https://t.co/U10mMLB6Yd

profile

Linux Security Labs

@LSELabs2 months ago

Tool review: Pybelt (pentest toolkit) #xss #infosec #tools https://t.co/NRf1kIPJgV

profile

VIEH Group

@viehgroup2 months ago

Find hidden GET parameters in javascript files #bugbountytips #BugBounty #bugbountytip #xss #cybersecuritytips #cybersecurity #sqlinjection #hacker #Hacking https://t.co/P6AXRYz4L8

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0410): Cross-site Scripting (XSS) - Generic in builderio/qwik. https://t.co/rDeKNXZYUP Disclosed by https://t.co/I1YxmrfsDA, fixed by @adamdbradley... #opensource #CVE #bugbounty #security #vulnerability

profile

Hot10Security

@Hot10Security2 months ago

Popular keywords used with #vulnerability tweets Date: 2023-01-22 Unique Tweets: 167 TOP 10 KEYWORDS 1: Cross 2: Site 3: Scripting 4: XSS 5: Request 6: Forgery 7: CSRF 8: WP 9: Injection 10: SQL bot-tweet #infosec #cybersecurity

profile

Pepe Venegas

@Pepe_V102 months ago

Cross-site Scripting - I have just completed this room: https://t.co/dFqbfD0yt2 #tryhackme #XSS #Cross-Site Scripting #DOM #Reflected XSS #Stored XSS #Blind XSS #Polyglot #xssgi via @realtryhackme #Security #ethicalhacking #Hacking #hacker #hackers #IT #learning

profile

azu

@azu_re2 months ago

見てる: "Reflected XSS Leads to 3,000$ Bug Bounty Rewards from Microsoft Forms | by Supakiad S. (m3ez) | Jan, 2023 | InfoSec Write-ups" https://t.co/xOemcB0IvJ

profile

Het Mehta

@hetmehtaa2 months ago

Reflected XSS Leads to 3,000$ Bug Bounty Rewards from Microsoft Forms #Infosec #BugBounty #CyberSecurity #xss https://t.co/Fls9DX4e1D

profile

CyberIQs

@CyberIQs_2 months ago

Reflected XSS Leads to 3,000$ Bug Bounty Rewards from Microsoft Forms #infosec #infosecurity #cybersecurity #threatintel #threatintelligence #hacking #cybernews #cyberattack #cloudsecurity #malware #ransomware #cyber #threathunting #ZeroTrust #CISA https://t.co/Hu1tkKH4cQ

profile

🇮🇳 ! Bõt âmît

@Botami1432 months ago

CRLF Injection to XSS #bugbountytips #BugBounty #bugbountytip #cybersecuritytips #cybersecurity #hacker #Hacking https://t.co/umuXV9fTdW

profile

Programmatic.Solutions

@Programmatoris2 months ago

Cross site scripting and the use of http-only cookies? - Visit https://t.co/E0jEgfOFhh for the answer. #xss #attack_vector #infosec #developers #developerlife

profile

Bhavesh Harmalkar 🇮🇳

@bhavesharmalkar2 months ago

#Learn365 Day 22: Read random blogs 1. Learn to build it, then break it 2. Reflected XSS Leads to 3,000$ 3. How I found XSS on Admin Page without login! 4. Critical bug on google by get full access on [Google Cloud BI Hackathon] (1/n) #cybersecurity #BugBounty

profile

iris

@IrisTech_2 months ago

108/365 Finished OWASP Top 10 room on TryHackMe. XSS Payloads are fun 🤭 #100DaysOfHacking #365DaysOfHacking #womenintech #cybersecurity #infosec #womenintech #TechTwitter

profile

Goziem

@g0ziem2 months ago

How can I use Nuclei to find xss bug #BugBounty #bugbountytips

profile

My Space!

@Supakiad_Mee2 months ago

I'm excited to share my latest write-up about vulnerability found on the Microsoft Security Response Center bug bounty program, which highlights the vulnerabilities I discovered and the rewards received. https://t.co/yCf49p3bK0 #bugbounty #cybersecurity #MSRC #ethicalhacking

profile

Constantin Mic

@ConstantinMic2 months ago

This polyglot XSS payload can still bypass to many filters: jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()//>\x3e #bugbountytips #cybersecurity #it

profile

VassBot

@vassbot2 months ago

@hackuu_ you can Hey everyone! @Vassbot is the best when it comes to protecting your #WordPress site from Cross Site Scripting (XSS) vulnerabilities in Conversational Forms for ChatBot <= 1.1.6. Protect your website, trust the experts. #cybersecurity #hacking

profile

Fares Walid

@SirBagoza2 months ago

I have published my first write-up 🤭About: Using CSRF + XSS to account takeover 🥰🥰 https://t.co/iik0DrrPKT #BugBounty #bugbountytips #Hacking https://t.co/KeQiJCsq0b

profile

🇮🇳 ! Bõt âmît

@Botami1432 months ago

Find hidden GET parameters in javascript files #bugbountytips #BugBounty #bugbountytip #xss #cybersecuritytips #cybersecurity #sqlinjection #hacker #Hacking https://t.co/9EXrPGpdOO

profile

terjanq

@terjanq2 months ago

@irsdl @infosec_au Yeah. I did pwn a few cases where XSS was only on login page. The easiest is to open one window with auth content, do crsf-logout, open xss and read sensitive info from auth window (:

profile

InfoSec Ninja 🇮🇳

@InfosecMonk2 months ago

I completed the Web Security Academy lab: Reflected XSS into HTML context with nothing encoded: <script>alert(1)</script> @WebSecAcademy #xss #bugbounty #webappsec https://t.co/Sfs9LPgaEL

profile

at once

@atonce112206042 months ago

Calling all curious minds! Check out my latest Medium article on "Uncovering a Reflected XSS on a Public Bug Bounty Program" by clicking the link below. https://t.co/olEg7KFnSE Follow for more engaging content. #medium #article #community #BugBounty #xss #bugcrowd

profile

Goziem

@g0ziem2 months ago

How do I find xss using Nuclei? @pdnuclei #BugBounty #infosec #bugbountytips #xss #cybersecuritytips

profile

Drugs Hack

@DrugsHack2 months ago

Awesome #XSS https://t.co/FAccSSEzi8… #bugbounty #bugbountytips #cybersecurity https://t.co/P8k3SxO6Fd

profile

mnkeni francis

@MnkeniFrancis2 months ago

ronin-rb/ronin-vulns: Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template In... #Cybersecurity #infosec #security via https://t.co/olBiC9iZIh https://t.co/LGoia3OJ38

profile

Hot10Security

@Hot10Security2 months ago

Popular keywords used with #vulnerability tweets Date: 2023-01-21 Unique Tweets: 173 TOP 10 KEYWORDS 1: Cross 2: Site 3: Vigil 4: Scripting 5: XSS 6: Request 7: Forgery 8: CSRF 9: Vulnerability 10: RCE bot-tweet #infosec #cybersecurity

profile

iSecurity

@iSecurity2 months ago

What is cross-site scripting (XSS)? Web App Pen-testing https://t.co/yWBHulTC01 #cybersecurity #bugbounty #xssattack

profile

terjanq

@terjanq2 months ago

@irsdl @infosec_au You can steal credentials stored in a password manager in both scenarios. There are also a few tricks that let you "unauthenicate" a user for a moment, and then after XSS re-authenticate them.

profile

Stalwart

@the_unswerving2 months ago

XSS Powerful Methodology for Beginners #Infosec via https://t.co/yNOfVDx5DP https://t.co/XTKnCK4ZZj

profile

Anton

@therceman2 months ago

@infosec_au Or injecting custom payloads into local storage… and if there is a flaw in reflection on client-side can be used to achieve Stored-XSS too. So pre-auth XSS is bad, especially if you can find a way how to turn it into Stored XSS later.

profile

Anton

@therceman2 months ago

@infosec_au I believe that pre-auth XSS can be used for injecting custom cookies that later in some cases can be used to achieve Stored-XSS for auth users

profile

Md Ismail Šojal

@0x0SojalSec2 months ago

XSS Methodology for Beginners full :⚔️🛡️ https://t.co/oFQ3ua4aaF #infosec #cybersec #bugbountytips

profile

Md Ismail Šojal

@0x0SojalSec2 months ago

GlobalProtect XSS https://globalprotect/global-protect/login.esp?user=j%22;-alert(1)-%22x #infosecurity #bugbountytips #cybersecuritytips

profile

Md Ismail Šojal

@0x0SojalSec2 months ago

You can bypass a WAF during a XSS attack on ASP(dot)NET-IIS technology by using a HTTP parameter pollution attack #infosecurity #bugbountytips https://t.co/9NoUy2CuEB

profile

CYBER4ALL

@cyber_4all2 months ago

Basic Linux Commands #linux #unix #terminal #commands #files #network #processes #compression #permissions #cyberattacks #cybersecurity #dataprivacy #infosec #malware #blueteam #Soc #phishing #xss #malicious_insiders #forensic #cyber4all #c4a #ethicalhacking #learning4all https://t.co/Ahb6PWpznk

profile

Ricardo Iramar

@ricardo_iramar2 months ago

@irsdl @infosec_au IMO cannot be compared with self-xss. Imagine a user receives a link from a valid domain with an encoded payload and it opens in a browser. The login page appears and the user provides the credentials. The xss payload sends the credentials directly to an attacker.

profile

Soroush Dalili 🗹

@irsdl2 months ago

@infosec_au Safe to say it is similar to self xss when it is unauth? or you think it can be worse? Obviously it is worse when user is authenticated

profile

Soroush Dalili 🗹

@irsdl2 months ago

@infosec_au I normally don’t think about pre or post auth when it comes to xss unless it is stored. You made me thinking 🤔

profile

Bug bounty notes

@bugbounty02 months ago

I Hope This Sticks: Analyzing ClipboardEvent Listeners for Stored XSS #bugbounty #bugbountytip #infosec #bugbountytips https://t.co/7labBhSn6r

profile

Bug bounty notes

@bugbounty02 months ago

How I was able to steal users credentials via Swagger UI DOM-XSS #bugbounty #bugbountytip #infosec #bugbountytips https://t.co/djTJmmaNoB

profile

Bug bounty notes

@bugbounty02 months ago

CVE-2022–42710: A journey through XXE to Stored-XSS #bugbounty #bugbountytip #infosec #bugbountytips https://t.co/kyYNklvFwz

profile

Programmatic.Solutions

@Programmatoris2 months ago

Xssing without opening a new html tag < - Visit https://t.co/9snA7cDqGS for the solution. #web_application #xss #infosec #tech #engineering

profile

Programmatic.Solutions

@Programmatoris2 months ago

jQuery $.get HTML code and XSS - Visit https://t.co/VqKDI1pgX6 for the solution. #xss #ajax #jquery #infosec #peoplewhocode

profile

SentientJohnny

@SentientJohnny2 months ago

Change ones name in a certain, sacred way to perform an XSS attack on the Book of Life; hacking universalism into existence, or banning specific targets from Heaven.

profile

Mike Takahashi

@TakSec2 months ago

XSS Cookie Exfil by voiddy Payload w/ confirm: "/></div><div/OnpOinTeReNter=eval("var u='nt.c'.concat('ook'.concat('ie'));confirm(eval('do'.concat('cume'.concat(u))))")>click here<input type="hidden=alert https://t.co/PJRNsCWjFL #bugbounty

profile

infosec-jobs.com

@infosec_jobsCOM2 months ago

HIRING: Analyste CERT / Incident Responder senior (H/F) / Sèvres, France https://t.co/IsMfrD6a7L #InfoSec #InfoSecJobs #Cybersecurity #jobsearch #hiringnow #CyberCareers #Sèvres #France #ActiveDirectory #C #CISSP #Cloud #DDoS #EDR #Forensics #GCFA #GCIH #GIAC #Linux #XSS

profile

Priyanshu Sahay

@priyanshu_itech2 months ago

How To Do CSRF Exploitation By Using Stored XSS Vulnerability – #TUTORIAL [Video] https://t.co/cbmZOolVKl #penetrationtesting #infosec #security #hackersonlineclub #cybersecurity

profile

Hackers Online Club (HOC)

@HOCupdate2 months ago

How To Do CSRF Exploitation By Using Stored XSS Vulnerability – #TUTORIAL [Video] https://t.co/ApsPZ0W1AH #penetrationtesting #infosec #security #hackersonlineclub #cybersecurity

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0338): Cross-site Scripting (XSS) - Reflected in lirantal/daloradius. https://t.co/Od0ApQg1D7 Disclosed by https://t.co/E1qF4lGgfX, fixed by @filippolauria... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0337): Cross-site Scripting (XSS) - Reflected in lirantal/daloradius. https://t.co/JqMD4xSZdl Disclosed by https://t.co/E1qF4lGO5v, fixed by @filippolauria... #opensource #CVE #bugbounty #security #vulnerability

profile

LinuxSecurity

@lnxsec2 months ago

Want to scan for XSS vulns in websites/web apps?🔓 Then look no further than Pwn XSS, a powerful tool used by malicious hackers & security professionals alike. Learn how to install & run Pwn XSS👇👇 https://t.co/Lf8DN6ChTe Given it a try? What you think?🤔 #linux #infosec

profile

saad alhrby

@LazySaad2 months ago

i found this bug https://t.co/cjTtRl5eUo in website but xss didn`t triggred is it worths to report our leave it? btw it loads the source from https://t.co/i45lbZv9wR ... ... #bugbounty

profile

Programmatic.Solutions

@Programmatoris2 months ago

How to ensure that files uploaded by users do not contain any XSS code - Visit https://t.co/aFlWAx0jEa for the answer. #javascript #xss #threat_mitigation #infosec #programming

profile

Programmatic.Solutions

@Programmatoris2 months ago

Newline XSS vulnerability - Visit https://t.co/CZ0xU8Yfrt for the solution. #javascript #xss #infosec #programmer #developer

profile

Programmatic.Solutions

@Programmatoris2 months ago

Script tag loading "https://t.co/uHBy5hANKh" in e-commerce transaction data - real attack or something else? - Visit https://t.co/SS3savhjv5 for the answer. #attacks #xss #javascript #e_commerce #infosec

profile

Glênnio

@iGlennio2 months ago

Encontrei um XSS Stored no SIS da Rede Globo. O ataque foi identificado e corrigido em 30 minuto. Mas infelizmente para equipe, devido a demora estou a 3 passos a frente. #hacking #Pentesting #XSS #GloboNews #GloboNewsEmPonto #RedeBBB #RedeGlobo #CyberSecurityAwareness #BugBounty https://t.co/MISHpz4t5S

profile

fletch

@fletch_ai2 months ago

Fletch Top Threat Alert: Vulnerability Spotlight: XSS vulnerability in Ghost CMS - #CVE-2022-47194 #FletchScore = Medium/Emerging #CyberSecurity #ThreatIntel #InfoSec CVE-2022-47197 CVE-2022-47195 CVE-2022-47194 CVE-2022-47196 https://t.co/K9gQv9obyb

profile

Hot10Security

@Hot10Security2 months ago

Popular keywords used with #vulnerability tweets Date: 2023-01-19 Unique Tweets: 410 TOP 10 KEYWORDS 1: Azure 2: MainWP 3: Extension 4: Cross 5: Site 6: Scripting 7: CVE 8: XSS 9: RCE 10: Vigil bot-tweet #infosec #cybersecurity

profile

H1 Disclosed - Public Disclosures

@h1Disclosed2 months ago

⚡ Cookie exfiltration through XSS on the main search request of https://t.co/YmCo3V0SPU 👨💻 voiddy ➟ LocalTapiola 🟧 Medium 💰 $500.0 https://t.co/m3XCQvXP8c #bugbounty #bugbountytips #cybersecurity https://t.co/UQQvWqojN7

profile

CyberIQs

@CyberIQs_2 months ago

Vulnerability Spotlight: XSS vulnerability in Ghost CMS #infosec #infosecurity #cybersecurity #threatintel #threatintelligence #hacking #cybernews #cyberattack #cloudsecurity #malware #ransomware #cyber #threathunting #ZeroTrust #CISA https://t.co/Hu1tkKH4cQ

profile

ӉѦСҠіИԌ ҬЄѦӍ ԌГԱթѺ ѺҒіСіѦL

@HackingTeam12 months ago

XSS/WAF/SQL filter bypass. < - %EF%BC%9C (\uff1c) > - %EF%BC%9E (\uff1e) \ - %EF%BC%BC (\uff3c) / - %EF%BC%8F (\uff0f) ' - %EF%BC%87 (\uff07) " - %EF%BC%82 (\uff02) #bypass #xss #waf #sql 💻Comunidad de Ciberseguridad y Hacking 💻

profile

Mike Takahashi

@TakSec2 months ago

XSSHunter Discord Notifications by @AdamJSturge https://t.co/MmDY3oOLmk #bugbountytips #bugbounty #infosec #hacking #xss

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0323): Cross-site Scripting (XSS) - Stored in pimcore/pimcore. https://t.co/tSa4CJILd7 Disclosed by https://t.co/6dCOfMLYmV, fixed by pimcore maintainers... #opensource #CVE #bugbounty #security #vulnerability

profile

LinuxSecurity

@lnxsec2 months ago

Want to scan for XSS vulns in websites/web apps?🔓 Then look no further than Pwn XSS, a powerful tool used by malicious hackers & security professionals alike. Learn how to install & run Pwn XSS👇👇 https://t.co/Lf8DN6BK3G Given it a try? What you think?🤔 #linux #infosec https://t.co/Z76TgsA2MW

profile

Nithin 🦹‍♂️

@thebinarybot2 months ago

Name a concept in bug bounty you want me to write a detailed article on. Expecting something like IDOR, BAC etc. PS: Anything except XSS please 🙈 #bugbounty

profile

Mahmoud Abd Alkarim

@Maakthon2 months ago

#htmlspecialchars() function in PHP only encode ASCII characters. #XSS #bypass #bugbountytips #BugBounty #html #php #javascript #hacking https://t.co/NreVNzG99x

profile

Adam J Sturge

@AdamJSturge2 months ago

I added Discord to XSSHunter and wrote an article about how to set it up https://t.co/nzTPPJB6Wh #infosecurity #infosec #bugbountytips #Pentesting #Security #cybersecurity

profile

NetFiT.eth

@OnNetFiT2 months ago

An xss payload for a VueJS based application: {{_Vue.h.constructor`alert(1)`()}} {{$emit.constructor`alert(1)`()}} #BugBounty #bugbountytips #infosec #CyberSec

profile

Hot10Security

@Hot10Security2 months ago

Popular keywords used with #vulnerability tweets Date: 2023-01-18 Unique Tweets: 348 TOP 10 KEYWORDS 1: CVE 2: Scripting 3: XSS 4: Attacks 5: Git 6: Vulnerabilities 7: Injection 8: Data 9: Vulnerability 10: Cloud bot-tweet #infosec #cybersecurity

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0314): Cross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq. https://t.co/lT0gndGcBK Disclosed by @aggressiveusers, fixed by @ThorstenRinne... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0313): Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq. https://t.co/rlmWPGlbZt Disclosed by https://t.co/jYCFhLpreW, fixed by @ThorstenRinne... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0312): Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq. https://t.co/JgA0kkLtS5 Disclosed by https://t.co/CO1HKk5eFz, fixed by @ThorstenRinne... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0310): Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq. https://t.co/49QPeEgxfW Disclosed by https://t.co/CO1HKk5eFz, fixed by @ThorstenRinne... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0309): Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq. https://t.co/SiIrXmJ8dT Disclosed by https://t.co/CO1HKk5eFz, fixed by @ThorstenRinne... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0308): Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq. https://t.co/fTIKyrhLuE Disclosed by https://t.co/CO1HKk5eFz, fixed by @ThorstenRinne... #opensource #CVE #bugbounty #security #vulnerability

profile

Open Source CVEs

@OpenSourceHacks2 months ago

(CVE-2023-0306): Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq. https://t.co/sbYdhQdGdo Disclosed by https://t.co/IJVlWK9pbV, fixed by @ThorstenRinne... #opensource #CVE #bugbounty #security #vulnerability

profile

Alonso Caballero

@Alonso_ReYDeS2 months ago

Disponible el video del Webinar Gratuito: "Cross-Site Scripting (XSS)". #cybersecurity #hacking #readteam #bugbounty #forensics #osint 🎯 https://t.co/QU6ghIwHeR https://t.co/bjJyidjuRb

profile

Gokul A.P 

@CodingGokul2 months ago

Hey Guys, I have been rewarded with a P2 reward ! [+] Severity : P2 [+] Bug : XSS in Jira [+] Bounty : $400 Try to check for all the Old CVEs when You find Jira instance ! #bugbounty #pentesting #webpentesting #cybersecurity #hackerone #bugbountytips https://t.co/5aRznpSw24

profile

Nik H

@Nikahverse2 months ago

XSS mindmap =) https://t.co/EUrRhy0WYI #xss #mindmap #bugbounty #bugbountytips #cybersecuritytips #CyberSec https://t.co/sz6pZcb4fx

profile

CYBER4ALL

@cyber_4all2 months ago

Cybersecurity Attack Vectors #cyberattacks #cybersecurity #dataprivacy #infosec #malware #blueteam #Soc #phishing #xss #mitm #ransomware #SQLinjection #malicious_insiders #forensic #incidentresponse #cyber4all #c4a #ethicalhacking #learning4all https://t.co/G2c7znMeZh

profile

Anonymous H4ck3r

@AnonymousH4ck352 months ago

Some ModSecurity WAF bypass xss payload list:👇 🔥👇 #infosec #AppSec <svg/onload=eval(atob(‘YWxlcnQoZG9jdW1lbnQuY29va2llKQ==’))> <svg/onload=eval(atob(‘YWxlcnQoJ1hTUycp’))> <svg onload='new Function`[“_Y000!_”].find(al\u0065rt)`'>

profile

Willie Birch

@btcwin_2 months ago

XSS "403 forbidden" bypass write up #Cybersecurity #infosec #security via https://t.co/CCtqTjT3f6 https://t.co/97MmlOSANg

profile

RedTeam Pentesting

@RedTeamPT2 months ago

🚨🚨🚨 A critical vulnerability in Skyhigh Security's Secure Web Gateway has been fixed 🔥 https://t.co/DIP5rmu4js Make sure to update 🩹 Details will follow soon! #patchday #infosec #xss

profile

H1 Disclosed - Public Disclosures

@h1Disclosed2 months ago

⚡ DOM XSS at `https://t.co/toWqmx06j8{site}` due to outdated Swagger UI 👨💻 @i_eh_dreamer ➟ Adobe 🟧 Medium 💰 N/A https://t.co/ctyHLhYG5f #bugbounty #bugbountytips #cybersecurity https://t.co/vzC4LaTIpT

profile

spyx

@spyx_myky2 months ago

Wordpress Elementor DOM XSS still up there. CVE-2022-29455. Payload for "xss" pop up: https://site/#elementor-action:action=lightbox&settings=eyJ0eXBlIjoibnVsbCIsImh0bWwiOiI8c2NyaXB0PmFsZXJ0KCd4c3MnKTwvc2NyaXB0PiJ9Cg= #bugbountytip #bugbountytips https://t.co/fBbChseq0v

profile

Decode Decrypt

@DecodeDecrypt2 months ago

XSS "403 forbidden" bypass write up #Cybersecurity #infosec #security via https://t.co/a2QDS692i1 https://t.co/KDYA1dyOW9

profile

Banking and Fintech News

@StanleyEpstein2 months ago

XSS "403 forbidden" bypass write up #Cybersecurity #infosec #security via https://t.co/eBW8Lmmpx7 https://t.co/TT7vD44Y9r