Yes I,Completed the Linux & Linux Security course, from basics to admin level. It's been an amazing journey, and I'm now feeling confident in my skills. Huge thanks to
@ImranAf33027443
for an outstanding course. and hope it boosts my cybersecurity career!
I love Linux
❤️
Happiest day—another P1! 🎉
successfully Chained 3 vulns for ATO.
Just 4 months into cybersecurity,I started with 0 knowledge still in school, and I’m proud of myself.
For details of vulnerability see another comment 👇👇
I also do writeup
#bugbountytips
#bugcrowd
#bugbounty
If I can exploit an in-scope brand by leveraging vulnerabilities in out-of-scope brands, marking it "out of scope" doesn't address the real risk. Attackers don't care about scope; they look for any way in. Also they fixed the issue, it shows the impact is valid! 🤡
Seeing the hate towards
@coffinxp7
, I realize some people have too much time on their hands. He's just doing his job and never trolls anyone. If you have an issue with his work, let others decide. He never asks to be tagged, but if I'm benefiting from his content, I will tag him
@coffinxp7
@ThisIsDK999
I agree with you see many hunters full of ego never share any tips or insights for beginners and just write "yay I was awarded with xxx$ 🤡" wtf fuck I do with your bounty I need tips or any guidance they never share anything just show off audience subscribe them to get tips .
🎉🥳 Congrats to Abhirup Konwar (
@KonwarAbhi98099
) 🏅 Your hard work and persistence are truly inspiring. Keep up the amazing work and continue to shine! 🔥
🌟Check out his channel for top bug hunting insights:
🥷Received 3 Badges on HackerOne
📽️Subscribe LegionHunter
🙏All those 4 years of tears and self doubt wiped away in a second.
Every small effort counts! Happy Hacking 🧑💻
#hackerone
#bughunting
#vulnerability
#xss
#rxss
So basically I chained 3 vulnerability
no confirmation + session misconfiguration + forget password link bypass (by side channel)
I mean at last victim recieved the link of forget password but I can forget the password by another url or we can side channel -domain/recover/..
Hi everyone! 👋 Be sure to check out the write-ups and resources to master IDOR (Insecure Direct Object References). I'm also planning to dive into these resources.
Yes I,Completed the Linux & Linux Security course, from basics to admin level. It's been an amazing journey, and I'm now feeling confident in my skills. Huge thanks to
@ImranAf33027443
for an outstanding course. and hope it boosts my cybersecurity career!
I love Linux
❤️
@shreyas_chavhan
@imranparray101
In your bb journey what's the one decision that you take which you think is the revolutionary decision and change everything ?
@sunilyedla2
* Manipulated like this: /xyz?order_id=<6 digit ID>
Can you explain the part again from where did you get the I'd of 6 digital and is GUID os not guessible like it's mixture of alphabet and numbers ??
Thank you 🙏
@a13h1_
Yes please answer some important questions like should a beginner choose big platform , hackerone and bugcrowd or they first hunt on self hosted as they are less crowded
@itsz4x
@Hacker0x01
Please guide me also I am beginner and 17 year old how can I become like you I have a passion for cybesecurity and wants to build my carrier in it
@PhysicswallahAP
@PSijairya
@physics__wallah
hello sir I am student of pw and recently uncovered a critical security flaw in PW where personal data and source code is leaked and submitted a detail report on mail please look into this matter 🙏
@nav1n0x
Sorry for such silly questions I am absolutely beginner 🙏
1) how do I know that at this request or at this endpoint I have to search for lfi
2) how do I know that I have to create specifically this payload because I see many hunter use payload like ./../../../etc/password ?
(Day 1 of 100 Days of Knowing Linux 🚀)
Hey everyone! 👋
Let's kick off by exploring the Linux ecosystem.🐧 Among thousands of distros, two giants lead the way:
Red Hat 🟥: Known for enterprise stability.
Debian ⚪: Loved for its versatility and open-source community.
(1/4)
@Hac10101
Honestly say I found sometimes his resources helpful but the claim he made about 0% false positive is exaggerated no one can achieve 0% false positive but I respect that guy we can learn from everybody don't need to hate anyone ❤️ respect and love for all🫡
@rameshkiyer
@Motabhai012
@TimesAlgebraIND
You visit temple to do Puja and not to just eat meat and liquor if you can't control yourself don't come and bytheway pure vegetarian food is available to koi bhuka nhi marega har baat PE wokness dikhana jaruri hai
@Masonhck3571
Man I love you as a absolute begginer I can relate two days ago I argue with triage person because they close my report as informative but I continuously learning and improving thanks ❤️
@being__aman
Read it great article 👏👏🎉- I want to know to get triaged do you like show them impact by actually cracking password using brute forcing or we can directly report once we are able to bypass the rate limit hope you understand my question
@3ncryptSaan
Hello brother really happy for you I am 17 year old and currently in school and I want to build my career in cybersecurity and I have a passion for this field but many people say this field have no jobs etc you will suffer to find a good salary jobs etc
@0xTib3rius
@Rahim7X
@coffinxp7
He's just a small-minded 🤏kid who mindlessly trolls others because he thinks it's 'cool,' blindly following orders like a rotten fish contaminating the entire pond.