I just Published - A Comprehensive Guide to Manually Hunting SQL Injection in MSSQL, MySQL, Oracle, and NoSQL (MongoDB) - I tried to explain everything I could. Let me know your opinion and suggestions, if any. I will keep updating the article whenever I find time. Thank you! #BugBounty #SQLinjection #SQLi

@0xJin @bugoverfl0w Dude asks for tips in every single bug bounty tweet but still reports more bugs than most of us... impressive.👏

@NahamSec Is it just me, or is the link really not working? I tried using a VPN too!

@0xJin 😅

Such reports make me feel like I'm at least finding bugs the right way... BTW, open the attachment in the report at your own risk (NSFW)!

This reminds me of when I almost got a nice bounty for RCE on one of PayPal’s servers. Ultimately, I couldn’t get the bounty because it worked only once. I provided them with a full PoC, but it was marked as NA after triage because the vulnerable server never came back up… strangely. 😂 I was even contacted by PayPal’s SoC team about this. 😂

@JvShah124 That must be really hard to teach AI to flip photos. 🤔

@arshadkazmi42 @GodfatherOrwa @Hacker0x01 @Bugcrowd Enable PayPal payment please.

@TrungTPhan 😂😂😂

@bug_vs_me Use AI to find bugs in the code generated by AI. 😂

Was analyzing a JS file, and this made my day.😂😂

@PicturesFoIder Girl has better timing and camera than NASA.

@coffinxp7 Yes, agree.

@torik_1999 There might be a more efficient way, but I use: curl -s " https://web. archive .org/cdx/search/cdx?url=*.target.com&fl=original&collapse=urlkey" | awk -F/ '{print $3}' | sort -u

@roohaa_n No, doesnt work.

Wordlist:

@roohaa_n Yes.

@HSajwanization How about spending a few hundred dirhams on decal instead of buying a whole car?

MSRC is broken, also their feedback system...

@jeetbhdr They fixed it immediately.