RT @pxmme1337: Don’t go out of scope

Perks of being a Bug Bounty Hunter: Found a bug in GitHub, got it accepted, and now I have GitHub Pro for FREE… FOREVER.

@bot0x01 @Bugcrowd Thank you ✨✨

RT @_Wakhoo_: welllllp, stay curious 🔥

@_Wakhoo_ @Bugcrowd Thank you ✨🔥🔥

@Thee_Eclipse @Bugcrowd Thanks ✨ 🔥

RT @stealthybugs: One day, the technique for exploiting this vulnerability will be available. Not today, but one day. Working with other b…

RT @kinugawamasato: ooh, this works on Chrome Canary :D <input type="hidden" oncontentvisibilityautostatechange="alert(/ChromeCanary/)" st…

RT @Techken_Tiff: Cybersecurity escape room?! Yes please!

RT @HackzYash: You should read the new article. Show your suppo…

@itz_mg_ Nice! 🫡

RT @Mr_Dark55: Bypassing WAF through a large number of characters is a successful method

@w_n1rmala Tiktok and IDORs 🫂

RT @zseano: hunting for bugs is so addictive 🤤

RT @TakSec: Google Dorks for Bug Bounty Input your target to generate Google Dork links for easy OSINT recon #bugbountytips https://t.co…

RT @TakSec: My favorite Google dork flow: 1. Start w/ "site:<domain>" 2. Remove stuff "-www" 3. Keep reading and removing until you get to…

@CyberWarrior4D5 Get Burpsuite

@NishanShil72327 Yep

@sy3dshih4b Very rare but the verification code might have a verification ID that is not tied to the session. Like: { VerificationID: arandomid Code: 452719 } So you could request code for attacker account then use the attacker’s code and ID to verify victim account password change