Mohsin Khan | on break 🇮🇳
@tabaahi_
Followers
15,525
Following
236
Media
277
Statuses
6,485
Explore trending content on Musk Viewer
オリンピック
• 561044 Tweets
Christianity
• 187077 Tweets
Cène
• 76784 Tweets
#TENatWATERBOMBBUSAN
• 68498 Tweets
DDAY YOU BETTA CATCH UP
• 67779 Tweets
隅田川花火大会
• 67485 Tweets
WTWGWS x MILKLOVE
• 64901 Tweets
ONE WORLD ONE SKY
• 63977 Tweets
世界遺産
• 60416 Tweets
佐渡金山
• 47043 Tweets
#男子バレー
• 42457 Tweets
バレー男子
• 33610 Tweets
#Olympics2024Paris
• 26356 Tweets
ニッポン
• 24082 Tweets
Vakko
• 22178 Tweets
#アークナイツハニバ2024
• 18259 Tweets
#withMUSIC
• 15941 Tweets
Patrick HK Walk Vlog🫨
• 14417 Tweets
Charlie Hebdo
• 14121 Tweets
フルセット
• 12347 Tweets
モンテス
• 10710 Tweets
So many beginners ask what to do after finding subdomains 🧵
1. Do directory search
2. Do Github dork
3. Do google dork
4. FUZZ for params
5. FUZZ for vhosts
6. Find Wayback data (gau, waybackurl)
7. Find javascript files
1/n
109
564
2K
Thread about hunting on the main application 🧵
1. Check the login process
- Do they allow signup with email or Google etc
- Do they allow you to signup with the
@company
email
- what is the content-type of the signup/login page
- when you enter valid cred, on which page you
1
469
1K
I watched nahamsec talk, here is my story. How
#bugbounty
hunting changed my life.
I was born in a poor family. Born on 11 sep 2000 in a small village where nobody knows how to use the computer. Even in today 2022 they don't know how to use the computer.
1/n
127
177
1K
I gave retirement (afew months ago) to my father at the age of 44 because of a bug bounty. And i wanted to gift him something. Today I bought this for my Father. our 2nd car. Note possible without bug hunting.
1
18
651
Anyone can follow this, if not finding bugs.
Next 3 months plan for you
#bugbounty
Thread
1/n
59
215
615
So many people ask how to make notes. This is how I take notes. I can't share of course. I am taking notes for 2yrs. If I learn something new I take notes. You can make your notes like this :)
54
104
609
Wanna improve your bug hunting
1. Go to
@intigriti
bug-byte
2. Every bug-byte blog post contains tools section
3. There are 171 bug-byte blogs.
4. Spend 1 or 2 weeks and learn about tools
5. Don't use something because everyone is using it.
#bugbountytips
#BugBounty
18
149
584
Can't imagine my life without bug hunting. To everyone don't forget where you come from and also respect your parents. Be kind.
Have a great day!
24
11
508
I earned $2,000 for my submission on
@bugcrowd
#ItTakesACrowd
It was SQLi.
Tip: every time sleep or wait cmd don't work. website also using PostgreSQL DB so use pg_sleep() cmd to confirm SQLi
#bugbounty
#bugbountytips
18
66
483
[story of September 2021]
#bugbounty
#bugbountytip
This is how I found 40 open redirection in 2 weeks. Bugcrowd accept open redirect as P4🧵
1. I collected all *,main domains
2. Used passive subdomain finding tools to find domains
1/n
24
131
477
reel: There are millions of bug hunters on platforms. So much competition. No bugs left etc.
reality: Less than 500 hunters are making money every month (who do consistently). Less than 5 people in each program are hunting consistently.
1/n
24
89
443
[For beginners] New blog post "What would I do if I start bug hunting from 0 again?"
14
109
398
Wanna find bugs before anyone else?
#bugbountytip
#bugbounty
1. Let's say you have scope,text
2. You run your tools to find domains and save them to subs,text
Everyday when you go to sleep run
cat scope,txt | domain tools | anew subs,txt | tee -a newly-appear-doman,txt
1/2
18
123
380
I am taking 260 days of hacking & self growth challenge. I will document my journey. My goal is to do bug hunting & more exercise.
21
21
343
How not to get burnout 🧵(What I do)
1. I don't spend hours on one endpoint/params. If I don't figure out something in 1hr I will move to the next target or endpoint.
2. After awarding each 4-digit bounty, I reward myself. I and my family go somewhere: travel and experience 1/n
15
73
341
Reported 10 SQLi 2 triaged and 8 duplicates. Thanks to my friend for teaching me 😊.
Just try to use sleep payloads in every request. Still I am noob in SQLi will write about it after approval from the program.
#bugbounty
23
19
317
Tip for beginner: Learn bug hunting faster
1. Grep all subdomains of point base program
2. Send all domains to burp suite
1/2
#bugbounty
#bugbountytips
24
100
292
Doing bug hunting without any goals will lead to burnout, procrastination, etc. Set goals like
- traveling
- Buying a bike, car, or a new laptop, etc.
- moving to a new city
Clear your "WHY". When you know WHY you are doing it, You will work for it :)
22
38
280
A few days ago I wrote about my recent finding. Worth $4000. I was not active on Twitter so sharing today
#bugbounty
5
70
278
Ask me anything. [Only for today]. Also before asking the question, check the comment section. I will not answer the same question more than once.
123
72
273
I will suggest everyone watch Frans talk with nahamsec. I watched this 10 times. its GOLD for bug hunters
3
73
258
Recent Bug (Story time) 🐞
Discovered via "?continue=
https://privatecompany"
that redirects to app.privatecompany and sends the access_token to privatecompany/?access=token.
1/n
#bugbounty
#bugbountytip
#bugbountytips
11
40
258
what tools do you use to find subdomain, I am currently using amass & subfinder. Want to improve my recon game. comment tools you use to find domains.
54
30
222
After 2yrs of hard work, I bought a new home in the city, a car, and helped my family. Clear bank loan.
1
4
224
My father is 43yrs old and I am 21. We walk everyday for 30-60 minutes. It feels like he never feels tired.
Everyday I talk to him about bug bounty, Now he can explain what bug bounty hunting is lol.
Also he knows what P1-P4 means 😂
18
4
222
if you want to be good at hacking, read all great bug hunters tweet like this. Here I search "ssrf
@nnwakelam
" so that I can read everything
@nnwakelam
post about SSRF. It will help you to be great hacker. Don't ask about tips. Use your brain.
#bugbountytips
#bugbounty
6
59
207
ever tried to Bruteforce for subdomains like:
we are trying to find more domains of dev\.example\.com
FUZZ\.dev\.example\.com\.dev\.example\.com
FUZZ\.dev\.example\.dev\.example\.com
FUZZ\.example\.dev\.example\.com
FUZZ\.dev\.dev\.example\.com
5
38
207
who said old programs are secure? I found P1s on the program, which started in 2019, and hundreds of bugs were already reported.
18
6
203
Day 3 of
#bugbounty260
#bugbounty
➡️ Bug report / hours of hacking :
0 (recieved $1800 bounty. I have simple rule: when I recieved bounty I take one day break)
➡️ Read
1/n
7
34
195
what you use
amass enum -passive -df scope.txt | anew subs.txt
or
cat scope.txt | while read line; do amass enum -passive -d $line | anew subs.txt ;done
11
49
194
I think nobody did something like this before, so it might be fun to try.
For every like, I'll spend (1 hour X total Like) hunting bugs in a program. Once the challenge is complete, I'll post a write-up detailing how it went.
I will start the challenge on 1st May.
#bugbounty
9
1
202
Lets give some tip to beginners about XSS. Comment what approach you use to find XSS. include tools. Tag bug hunter who find lots of XSS. Thanks
#bugbounty
#bugbountytips
18
68
191
Day 2 of
#bugbounty260
#bugbounty
➡️Bug found
1. 2 business logic
2. One privilege escalation
➡️ Yesterday bug update
No reply yet
1/n
11
33
192
learning from zseano :) this is what I do basically to find XSS. instead of <h2> you can use <u> or <s> tags. sometimes WAF blocks every HTML tag. So try <tabaahi> :)
3
46
186
I found around 10 XSS in one POST request all 10 params are vulnerable. can I report 10 bugs or include them all in one report?
39
4
178
my birthday is tomorrow so take it as a gift for all of you :) have a great day ahead!
29
4
166
At the end of day 2 I will share p4 checklist for beginners. What to look on
@Bugcrowd
programs.
#bugbounty
2
7
160
Because I was facing back pain issues. It took him 7 months to buy a $60 chair. I still use the same chair to not forget where I come from.
3
1
157
Don't know who needs to hear this. 🚨
Don't take too much stress. one of my friends died today due to stress. Maybe you are in big trouble/problem it will be solved one day for sure. Problems are part of our Life. Believe in God and do what is important.
14
11
152
Work hard for 5 years or work hard for next 60 years.
13
13
153
Best way to find good programs for hunting for a long time. BTW this is not mine. Once bugbountyhq suggest to me this
🧵
1. Check how quick they pay
2. their bounty tables and response times to researchers
From There
1/n
3
43
150
🎉 Birthday Challenge 🎉
Goal: Make $60k by 11-09-2024
Time Left: 120 days (4 months)
Let's make it happen! 💪💰
28
4
148
When I have no motivation for hunting
I look for XSS
When I get bored
I look for XSS
When I don't have anything to do
I look for XSS
#bugbounty
7
10
142
My bank account froze. Because of lots of transactions. They want to know what I am actually doing.
31
4
139
Advice from a top million-dollar
#bugbounty
hunter: If you have friends and can collaborate, try this 👇
1. spend 2 months on one target with 3 people
2. make a spreadsheet
3. equal collab, split, and effort
4. focus on a single target and annihilate it
13
10
143
New bug hunter's ask for resources. If you can't find resources by yourself in 2022, you don't deserve to be a bug hunter. Go get a certificate and get a job.
#bugbountytip
11
10
139
Keep working hard guys. Everything you dream of today you can achieve.
9
4
137
For beginners
#bugbountytips
#bugbountytip
Watch all nahamsec live recon videos and understand how he is using tools to find domains. It will help you to find your first bug.
6
21
134
For beginners, I shared "Easily win" bugs a few months ago. You can download it for free and can start looking for P4s in just 30 minutes after reading this. Note: These issues accept as P4 on "bugcrowd". I don't know about other platforms as I don't hunt much anywhere else. :)
3
22
130
@BountyOverflow
one of the pro bug hunters found $70000 bug
ffuf -w vhostwordlist -u httpd://something -H "Host: FUZZ" -mc 200 -c
he got access to the internal panel without authentication.
10
27
130
31. Change false to true in the JSON request body > check if something changed> like getting access to the premium feature
32. check CRLF
33. Check Oauth bypass
34. Now if you don't know about the topic > google > read > practice > find bug :)
35 DONE
0
12
130
I want the 400th bug to be a P1 or P2 valid rewarding issue :)
7
3
130
In 2019 Q4 started hacking and rewarded $450 on 6th January 2020. Since then I haven't stopped.
1
1
123
One day I saw dawgyg youtube video. And started learning about bug hunting. In 2019 first time after years I asked my father to buy chair for me.
3
2
123
You found the bug and the company immediately shut down that domain, which means it is great finding bro. I will do the writeup in the future about this finding :)
13
2
126
2017 I went to the college and dropped after 1 month. Because we can't afford it. I worked in computer shop and after 1 yr of work I managed to buy a laptop for myself.
2
2
123
@b1utt3r3d
Great question
tagging people for the tip trick will not help me so I will do this.
## 3-4 MONTHS
1. Complete the portwigger labs by watching labs solution videos on youtube
2. Read all HackerOne disclose reports
3. Read
@PentesterLand
writupes
4. Take notes
1/2
7
21
124
My father is a very hard worker but after all the hard work (14hr/day work) he got paid $70/month. So it was the story till 2017.
1
1
118
How about this: "🔍 New to bug hunting and feeling stuck? Don't worry, I've got you covered! Check out these tips to kickstart your bug bounty journey. 🚀💻
#BugBounty
#bugbountytips
#bugbountytip
[THREAD 🧵] 1/n
9
27
119
Never completed a portswigger lab before. I think it is the right time to spend 1-2 weeks completing labs. you can comment on resources like: talk videos (can help me understand topics better), research paper, GitHub repo etc. So that anyone can use it to learn more
11
6
117
Am i the only internet user who doesn't have an Uber account? / Never created one.
35
0
111
From 2018 Started doing web development. And after 1 year of web development, I got haired and only made$ 100 for 3 weeks of work.
1
0
114
Pro Tip: Search for pro bug hunters' GitHub profiles and track changes over the years. They might initially disclose private tools or checklists, only to make them private later. Use to find what their profile looks like in the last few yrs.
#bugbounty
😂
9
9
115
Noob question: How to increase the possibility of finding so many bugs. What you think, Comment please
#bugbounty
#bugbountytip
23
15
106
I found 200+ XSS on one public program. company using xyz parameter on every subdomain and I found bug on xyz parameter. Can I make multiple report or include all vulnerable domain in 1 report.
@zseano
@thedawgyg
12
4
108
I need to take risks and spend more time looking for P1s. I can report P4s and P3s every day but now I feel like I am wasting too much of my time on P3-P4.
13
2
113
You found dev internal domains, Did you use BIG Wordlist directly to FUZZ for directory or you first use default dirsearch wordlist to know if domain is interesting to do further fuzzing or not.
Not a recon guy. Learning. I hope someone answers this :)
15
14
112
Program fix all of my findings. 15 minutes before. I bypass all of them and found more issues. Ready for the duplicates. 😂
5
2
111
@cyberx00t
if /api/users/attacker_id try
/api/users/victim_id
/api/users/attacker_id/%2e%2e%2fvictim_id
/api/users/
/api/users/attacker_id,victim_id
/api/users/attacker_id&victim_id
If any of this return victim PII. Your First P1 goal will be complete.
🫡
1
17
112
I hate to do bug hunting 😭 ohh wait my bug triaged. I love bug hunting.
9
4
110
Full time bug hunter ❌
Full time Twitter user ✅
6
2
110
@MrTuxracer
Noted it makes sense. Like when we found IDOR in numerical IDs we always try /user/1 or /user/0
13
9
105
Day 4 of
#bugbounty260
#bugbounty
➡️ Bug found & hours of hunting
0 bug found. Hunted 4hr today
➡️ Learn
Spend 2hr with my friend learning new bug type (can't disclose)
➡️ Read
1/n
4
12
100
Left side k gate ko hata rha hu. Any more suggestions?
Plot size: 35.5 x 75 (2,662 sqft)
Duplex house
Been working on our new home for the past 2 months and it's shaping up nicely! Still a year to go until it's complete. Thanks to
@Bugcrowd
For everything 💕
32
4
104
If you are a beginner and want to start learning
#bugbounty
complete these exercises by STOK. Don't ask every bug hunter about tips, secrets, etc.
2
21
100
Don't know who needs to hear this:
where Focus goes, energy flows. Better to focus on positive things and do what is important.
5
7
101
Day 6 of
#bugbounty260
#bugbounty
➡️ Bug found / reports
2 triaged 6 panding. Working on Spotify hope I will find my first valid bug on Spotify before 1 May
1/n
➡️ Read
5
15
97
This year I talk to (on a phone call) more than 100 beginner bug hunters and guided them. & I charge $0 😅 Please don't tag me on how to start tweets, when I will have time I will DM for sure.
13
2
94