RT @PortSwiggerRes: The results are in! We're proud to announce the Top 10 Web Hacking Techniques of 2023!

Google(Chromium) suddenly decided to pay me for a UI Spoofing bug reported 3 years that had been idle, and from reward potential to no potential to potential. Ok thanks?

RT @PortSwiggerRes: The results are in! We're proud to announce the Top 10 Web Hacking Techniques of 2022!

RT @7aSecurity: This #privacy audit looks like the first LeaveHomeSafe #pentest ever, way below commercial apps: Broken SSL validation, SD…

RT @vxresearch: We are organising VXCON on 27 August. Please feel free to submit CFP.

RT @thezdi: Confirmed! Masato Kinugawa demonstrated a 3-bug chain of injection, misconfiguration and sandbox escape on Microsoft Teams to…

RT @RenwaX23: New writing about the story of 3 bug bounty reports in which I chain low severity bugs together for higher impact and less kn…

RT @EdOverflow: After 5 years of work, security.txt is officially an RFC. I am pleased to announce RFC 9116: I wo…

RT @Hacxyk: We found a way to spoof ENS domains and were awarded a $15k bug bounty by @ensdomains 👇Check out the write-up

@intigriti F

RT @PortSwiggerRes: The results are in! We're proud to announce the Top 10 Web Hacking Techniques of 2021!

RT @EdOverflow: New blog post: "What Bypassing Razer's DOM-based XSS Patch Can Teach Us" —

@garethheyes XSS wordle when?

Why do we need NFT on social media??

@luketucker @Hacker0x01 I'll miss you!

@freddyb typeof document.all != "function" && document.all(0)

@terjanq Thanks for the heads up it's back!

@freddyb @secalert how about ...

RT @filedescriptor: @garethheyes Also function solve(obj, property){ if(typeof obj != 'function') { obj(property).innerHTML =…

@garethheyes @aynap6 :D