#AmaN
@being__aman
Followers
1,983
Following
221
Media
165
Statuses
2,972
Explore trending content on Musk Viewer
LINGORM MAJOR FANDOM
• 683273 Tweets
Errejón
• 585216 Tweets
Durk
• 108552 Tweets
Tattvadarshi Sant Rampal Ji
• 69420 Tweets
#Mステ
• 66868 Tweets
FIGHTING FOR LOVE
• 58632 Tweets
#MGI2024
• 48184 Tweets
Keith
• 42562 Tweets
#HAPPYYUTADAY
• 35139 Tweets
結城さく
• 34603 Tweets
悪役令嬢の中の人
• 28423 Tweets
Gustavo Gayer
• 25738 Tweets
#ネトフリでタイプロ
• 24924 Tweets
#ساعه_استجابه
• 24539 Tweets
#中本悠太_わたし達のHOPE
• 23245 Tweets
Bologna
• 18508 Tweets
#النصر_الخلود
• 17779 Tweets
#유타생일_에브리바디_스크림
• 17555 Tweets
HAPPY BIRTHDAY YUTA
• 16958 Tweets
#荒野7周年空前の超感謝祭
• 16334 Tweets
#史上初金車確定無料ガチャ
• 16011 Tweets
LOVE IN MY HEART PREVIEW
• 14396 Tweets
レジェンド車両
• 13498 Tweets
全員最大金枠アイテム5つ
• 13320 Tweets
FACT復活
• 11111 Tweets
Pinned Tweet
@BugBountyTips_
@bugbounty
Title: Privilege esclation allow user to delete pending invitation
[1]
step to reproduce:
1: create two user A and user B.
2: User A[owner] invite user B [editor role].
3: user B accept User A invitation now user B is member of User A org.
10
45
138
8
185
620
Google dork for Bug hunting
#Tips
#Linux
#programming
#bugbountytips
#HacKING_FUN
#dorks
#educationalpurpose
16
216
565
New hackerone private program. ❤️
I hope not get dublicate 😒
Custom payload :- <svg><animate%20onend=alert(document.cookie)%20attributeName=x%20dur=1s>
@Hacker0x01
#bugbountytips
#bugbounty
#xss
20
83
331
open redirect filter bypass .
#BugBounty
#bugbountytip
@Hacker0x01
tip:
1: ?returnto= ❌
2: ?returnto=/\/\/\ ✅
8
48
213
X-request-id is reflecting in response. But i don't know is this bug or not.
Could any one tell me is this bug or not.
#bugbounty
#Help
23
19
180
My new pavilion laptop ❤️ performance is op. thanx bug bounty community 😀
@Hacker0x01
#GoalsandHighlights
#bugbounty
i want to achieve more goals. 🕉️
12
1
173
I was awarded $$$ ❤️🦅
@Hacker0x01
Bug :- business logic + privilege escalation
Tip:- try to change the content using burp like:- null to true
#bugbounty
10
11
156
Tip 1:- signup using Google auth and change name <h1>test</h1> and invite other user into org.
2:- the payload is reflected into a victim email.
😁😁 small bounty ever for html injection 🌟🌟
@Hacker0x01
#bugbountytips
#bugbounty
#Tips
8
25
150
I just published privilege escalation version 3 🤑$$$
#BugBounty
#bugbountytips
#bugbountytip
i hope you'll like it
3
15
139
hi this is my first article how i found race condition bug and earned some $$$ . hope you will like it
#BugBounty
#bugbountytips
#race
1
32
133
Bypass rate limit using case sensitive techniques.
My first bypass report ❤️❤️ triaged
@Hacker0x01
#Tips
#bugbounty
#Hackers
14
13
123
This is my 12th pre account takeover vulnerability that i have found today. Hope not get duplicate 🥲🥲🥲
@Hacker0x01
#bugbounty
10
6
121
I just published Bypass rate limit via case sensitive method ($$$)
#bugbountytips
#BugBounty
4
18
125
16
2
122
7
2
117
Yay.i was awarded $300🎉🎉
After a very long time.
I found a bug with the help of my phone.
@InfoSecComm
@Hacker0x01
@ADITYASHENDE17
@sheikhrishad0
@nihad_rekany
@Kanhaiya_sh4rma
@AkashHamal0x01
@RanjitAdhikar34
16
6
112
11
2
114
10
7
113
I was awarded $$$ ❤️🦅
@hackerone
#BugBounty
#bugbountytips
Bug:- Privilege escalation v3
Tip:- play chess daily
6
2
106
80%bug hunter:- yay i was awarded $$$$ .
Me:- what was the bug bro
Bug hunter:- write up coming soon ( saalo bug name he btadoge to kya chla jayega tumhara😕. Oh sorry fir inhe writeup se bhi to follower milege ).
That’s why i love
@ADITYASHENDE17
bro .
#bugbounty
#Bugbo
17
7
102
I was awarded $$$ ♥️
@Hacker0x01
Bug:- memory corruption
#bugbountytip
#bugbounty
first bounty of the month.
5
2
83
4
3
79
I was awarded $$$ 🥷❤️
@Hacker0x01
#Bugbounty
Bug:- privilege escalation via match and replace rule.
9
1
78
you can read all the paid medium articles.
just go to . and paste the link of paid medium article link.
#bugbountytips
#BugBounty
#bug
5
19
76
How did i earned $1500 hope you will like it guys support guys.
@Hacker0x01
#bugbounty
#bugbountytips
0
21
76
Hackerone rewarded me $100
@Hacker0x01
#Tips
#tricks
#workhard
🙂 try this social engineering spam message before submitting the report.
6
4
72
1
1
70
Hey
@GodfatherOrwa
@Kanhaiya_sh4rma
@ADITYASHENDE17
i am confused the website is vulnerable or not to sql injection. Please tell me
9
5
66
When new bug hunter found a p4 bugs like ( no rate limit)
New bughunter Tip :- think out of the box 😂😂😂
5
4
68
7
0
67
3
0
67
After a very long time 🌟🌟 thanx
@RanjitAdhikar34
for sharing a tips.
@Hacker0x01
#hackerone
#BugBounty
1
0
64
4
0
60
Yay ! Hackerone rewarded me
#bounty
@Hacker0x01
❤️
Bug name:- low privilege user role can self promote as a admin
3
1
62
Fuck fuck fuck fuck 😭😭 literary i think i should stop bug hunting.
@Hacker0x01
#bughunting
#bugbounty
this is not my field. Hardwork is not pays off.
24
1
59
2
0
56
Hackerone not rewarded me bounty but they rewarded me $250 bonus. Only for logical bug and quality of the report.
@Hacker0x01
#bugbountytip
#bughunting
#bugbounty
Now, next time I'll try to post $$$$. I want to beat myself . 🇮🇳
3
1
56
How that is possible hackers
@ADITYASHENDE17
@e11i0t_4lders0n
@GodfatherOrwa
@Kanhaiya_sh4rma
@AnubhavSingh_
@mamunwhh
@MrRajputHacker
@remonsec
@basantkarki007
..still website redirect to my account
12
7
54
yay! Hackerone rewarded me $$$
@hackerone
#bugbountytips
#BugBounty
#bugbounty
tip: check response manipulation
5
2
52
Yay! I was awarded $$$ for bonus . Even bug is oos. Split the bounty.❤️😇
#BugBounty
#bugbountytips
#Hardwork
@Hacker0x01
3
1
50
After one month. The issue has been resolved.
Bug:- access admin panel
@theXSSrat
@RanjitAdhikar34
@remonsec
2
0
39
Happy to secure Microsoft
Now Microsoft will addded my name in haf
@GodfatherOrwa
@ADITYASHENDE17
@Kanhaiya_sh4rma
#bugbountytips
#bugbounty
Bug :- access employee portal
4
2
40
4
0
39
I am happy to see that
Microsoft added my name in Hall of fame ❤️❤️
Thanx
@InfoSecComm
@GodfatherOrwa
@remonsec
@e11i0t_4lders0n
@Kanhaiya_sh4rma
@ADITYASHENDE17
@AkashHamal0x01
4
1
37
If you got private invitation and the program is bank based . Which bug will you try to find first and what is your approach .
@AkashHamal0x01
@ADITYASHENDE17
@krishnsec
@_zwink
@harshbothra_
@abdlah_md
@0xMstar
@nav1n0x
7
2
35
Bad luck... First time I found an idor vulnerability one of my private program.. But unfortunately it's a duplicate...
@ADITYASHENDE17
@theXSSrat
@e11i0t_4lders0n
@remonsec
(ye dhuk kahe khatam ni hota be)
1
0
35
Any one can help me i found a htmli in google in two subdomains. but i am unable to escalate xss. Collaboration is available dm me any one is interested.
#BugBounty
#bugbounty
@GoogleVRP
19
0
30
1
0
30
If i found access token of the (target website) in github .. how to exploit any one can please know about the trick ..
@GodfatherOrwa
i am waiting for your comment
4
3
29
I am
Hunting on google ads since 2 weeks I didn’t get anything . Only 3 days are left for the month to end. Basically if I didn’t get any bug b/w these day’s then i will quit bug bounty for long time. I don’t care about it. This is my punishment also i will 100 pushes up daily.
10
0
27
In October, I submitted 10 vulnerabilities to 1 programs on
@Hacker0x01
.
#TogetherWeHitHarder
But still didn’t get 4 digit bounty. Hope this month
4
0
24
Hi
@jobertabma
. Could you assist me with my recent report, which was marked informative by newly launched program.
Bug:- In the UI, the free plan is restricted from creating individual webhooks, but I am able to bypass this limitation and generate an unlimited no of webhooks.
1
0
22
In August, I submitted 10 vulnerabilities to 2 programs on
@Hacker0x01
.
#TogetherWeHitHarder
3
1
21
i am thrilled to announce that i have successfully completed the google cyber security certification course.🙂
@Google
#BugBounty
1
1
19
4
1
17
Travelling to
@bsidesahmedabad
♥️ . Drop “Hii” those who r coming and let’s meet
#BugBounty
@Hacker0x01
7
1
14
8: user B send that remove req . or invite req.
9: now user b can permanetly disable, remove , or invite any member without user A permission.
impact: abilty low prvilege user can invite delete members
2
0
12
@Jayesh25_
Using this technique . I can only create account without email. When i am trying to to enter a victim email i got a email already exists. Can i report it? 🤣
1
0
11
Hello uncle rat
@theXSSrat
if i insert a document.domain the payload is working but if i insert document.cookie into a img attribute xss trigger but blank why can you help me
2
1
10
@nav1n0x
Hi bro i found boolean-based blind in email parameters but i don’t know how to exploit could you please help me
1
1
10
@security_lit
1:- Create a two account user a user b.
2:- change the email of user A to user B.
3:- user A successfully change the email without any error.
4: user B try to open account but website shows an error account doesn’t exist.
Impact:
Complete account takeover.
0
1
10
@arth_bajpai
I don’t know who is wrong but Because i am hindu I’ll definitely support Hindus. But kuch hindu chutiye ne he naam khrb kr rkha hai saale har jgh jai shree ram krte rhte hai zbdsti . Logo se zbrdasti jai shree ram bulwate hai . Is this good?Respect kmani pdti hai khrid nahi jati
3
0
8
Hello guys, Only 3 months left in the year and hope you have learned so many new things .🙃 Have you completed your goals or still working on them ? 🤔Goal can be anything not just related to bug bounty.
Tell me all of you. What is your 2024 goal.🫡
#BugBounty
#life
#goals
7
0
8
[2]
4: user B go to member list and he saw pending members invitation list.
5: just remove/disable any one member that is available in pending list.
6: don't remove just cap the remove req or send to repeater. & drop the remove req.
as well as user B cap the invite req.
1
0
8