Sotwe logo Sotwe logo
0xBug07's profile banner image
0xBug07's profile image

winli

@0xBug07

Bug Hunter, CTF player, Cyber Enthusiasts.
Joined September 2024
104 Following
8 Followers
56 Posts
0xBug07 ย retweeted
phyr3wall's profile image
PHYR3WALL ๐Ÿ‡บ๐Ÿ‡ฒ Verified account @phyr3wall
I've been building my AI-powered offensive security harness for the past few weeks. It's successfully solved every active HTB box (minus the insane machines). To help others learn and build alongside me, I'm giving away your choice of a 1-Month Claude Pro subscription or 1-Month HTB VIP+. Follow -> Like -> Retweet to enter
phyr3wall's tweet photo. I've been building my AI-powered offensive security harness for the past few weeks. It's successfully solved every active HTB box (minus the insane machines). To help others learn and build alongside me, I'm giving away your choice of a 1-Month Claude Pro subscription or 1-Month HTB VIP+. Follow -> Like -> Retweet to enter
47
171
116
33
9K
0xBug07's profile image
winli @0xBug07
@ChiRai_rai @BugBountyDEFCON @PentesterLab @hackthebox_eu @secsystemd @censoredHacker @t0mvic @King0Root Thanks @ChiRai_rai, got the DM
0
0
0
0
67
0xBug07 ย retweeted
BugBountyDEFCON's profile image
Bug Bounty Village Verified account @BugBountyDEFCON
The winners of our latest @PentesterLab & @hackthebox_eu giveaway are in! 3 months Pentester Lab licenses: @secsystemd @0xBug07 @censoredHacker @t0mvic @King0Root 1 Year VIP HackTheBox @ChiRai_rai Congrats to the winners! If you didn't win, don't be too sad, there's more to come so stay tuned for more epic giveaways! ๐ŸŽ‰
7
44
2
1
2K
0xBug07's profile image
winli @0xBug07
@BugBountyDEFCON @PentesterLab @hackthebox_eu @secsystemd @censoredHacker @t0mvic @King0Root @ChiRai_rai Thanks @BugBountyDEFCON
0
1
0
0
66
0xBug07's profile image
winli @0xBug07
@BugBountyDEFCON @hackthebox_eu @PentesterLab I wanted to learn code review and PentesterLab has a very good resource on that and for trending AI red teaming also HTBs learning path which covers fundamentals of AI red team. Let's see, Luck matters or Hard work is the only key in infosec.
0
0
0
0
116
0xBug07 ย retweeted
BugBountyDEFCON's profile image
Bug Bounty Village Verified account @BugBountyDEFCON
Time for another giveaway! We will pick 6 winners to win one of the following: 1x Annual VIP @hackthebox_eu Licence 5x @PentesterLab 3 Month Licences To enter: 1๏ธโƒฃ Follow us @BugBountyDefcon 2๏ธโƒฃ Like this post โค๏ธ 3๏ธโƒฃ Re-tweet this post ๐Ÿ” Giveaway open until Monday June 15th! GOOD LUCK!
BugBountyDEFCON's tweet photo. Time for another giveaway! We will pick 6 winners to win one of the following: 1x Annual VIP @hackthebox_eu Licence 5x @PentesterLab 3 Month Licences To enter: 1๏ธโƒฃ Follow us @BugBountyDefcon 2๏ธโƒฃ Like this post โค๏ธ 3๏ธโƒฃ Re-tweet this post ๐Ÿ” Giveaway open until Monday June 15th! GOOD LUCK!
99
473
350
32
20K
0xBug07 ย retweeted
1024Cyber's profile image
1024 Cyber Services @1024Cyber
When a single ID fails, a pair might pass. IDOR bypasses can be that simple ๐Ÿ”ฅ - Victim's ID: 5200 - Attacker's ID: 5233 GET /api/users/5200/info โ†’ Access Denied โŒ GET /api/users/5200,5233/info โ†’ Bypassed โœ… #bugbountytips #PenetrationTesting
0
18
2
11
6K
0xBug07 ย retweeted
darshanhackz's profile image
Darshan Naik Verified account @darshanhackz
Thick Client Pentest Article is up Go and checkout : https://t.co/VMSyFOA6Y9
0
8
2
4
7K
0xBug07's profile image
winli @0xBug07
@TheSecOpsGroup Agentic AI
0
0
0
0
13
0xBug07 ย retweeted
TheSecOpsGroup's profile image
The SecOps Group Verified account @TheSecOpsGroup
๐Ÿ“ˆ ๐—ง๐—ต๐—ฒ ๐—ก๐—ฒ๐˜…๐˜ ๐—˜๐˜ƒ๐—ผ๐—น๐˜‚๐˜๐—ถ๐—ผ๐—ป ๐—ผ๐—ณ ๐—”๐—œ ๐—ฃ๐—ฒ๐—ป๐˜๐—ฒ๐˜€๐˜๐—ถ๐—ป๐—ด ๐—ถ๐˜€ ๐—›๐—ฒ๐—ฟ๐—ฒ ๐Ÿ‘‰ ๐—–๐—ฒ๐—ฟ๐˜๐—ถ๐—ณ๐—ถ๐—ฒ๐—ฑ ๐—”๐—ด๐—ฒ๐—ป๐˜๐—ถ๐—ฐ ๐—”๐—œ ๐—ฃ๐—ฒ๐—ป๐˜๐—ฒ๐˜€๐˜๐—ฒ๐—ฟ! ๐—š๐—œ๐—ฉ๐—˜๐—”๐—ช๐—”๐—ฌ ๐—”๐—Ÿ๐—˜๐—ฅ๐—ง ๐ŸŽ ๐™’๐™šโ€™๐™ง๐™š ๐™œ๐™ž๐™ซ๐™ž๐™ฃ๐™œ ๐™–๐™ฌ๐™–๐™ฎ ๐Ÿฏ ๐™๐™๐™€๐™€ ๐˜พ-๐˜ผ๐™œ๐˜ผ๐™„๐™‹๐™š๐™ฃ ๐™š๐™ญ๐™–๐™ข ๐™ซ๐™ค๐™ช๐™˜๐™๐™š๐™ง๐™จ ๐ŸŽ‰ ๐™๐™ค ๐™ฅ๐™–๐™ง๐™ฉ๐™ž๐™˜๐™ž๐™ฅ๐™–๐™ฉ๐™š: ๐Ÿ‘ ๐™‡๐™ž๐™ ๐™š ๐™ฉ๐™๐™ž๐™จ ๐™ฅ๐™ค๐™จ๐™ฉ ๐Ÿ—จ๏ธ ๐˜พ๐™ค๐™ข๐™ข๐™š๐™ฃ๐™ฉ โ€œ๐˜ผ๐™‚๐™€๐™‰๐™๐™„๐˜พ ๐˜ผ๐™„โ€ โ™ป๏ธ ๐™Ž๐™๐™–๐™ง๐™š ๐™ฉ๐™๐™ž๐™จ ๐™ฅ๐™ค๐™จ๐™ฉ ๐Ÿ”ฝ ๐—”๐—ฏ๐—ผ๐˜‚๐˜ ๐—ฒ๐˜…๐—ฎ๐—บ: The ๐—–๐—ฒ๐—ฟ๐˜๐—ถ๐—ณ๐—ถ๐—ฒ๐—ฑ ๐—”๐—ด๐—ฒ๐—ป๐˜๐—ถ๐—ฐ ๐—”๐—œ ๐—ฃ๐—ฒ๐—ป๐˜๐—ฒ๐˜€๐˜๐—ฒ๐—ฟ (๐—–-๐—”๐—ด๐—”๐—œ๐—ฃ๐—ฒ๐—ป) is a hands-on certification focused on testing candidateโ€™s understanding of the fundamental concepts related to Agentic AI and GenAI application security. ๐Ÿ’ธ ๐—จ๐—ป๐—น๐—ผ๐—ฐ๐—ธ ๐˜†๐—ผ๐˜‚๐—ฟ ๐—ฎ๐˜๐˜๐—ฒ๐—บ๐—ฝ๐˜ ๐˜„๐—ถ๐˜๐—ต ๐Ÿด๐Ÿฌ% ๐—ฑ๐—ถ๐˜€๐—ฐ๐—ผ๐˜‚๐—ป๐˜ ๐—ฐ๐—ผ๐—ฑ๐—ฒ: AGENTIC-80 ๐Ÿ” ๐—›๐—ผ๐˜„ ๐˜๐—ต๐—ฒ ๐—˜๐˜…๐—ฎ๐—บ ๐—–๐—ต๐—ฎ๐—น๐—น๐—ฒ๐—ป๐—ด๐—ฒ๐˜€ ๐—ฌ๐—ผ๐˜‚ (๐—”๐˜๐˜๐—ฎ๐—ฐ๐—ธ ๐—™๐—น๐—ผ๐˜„)ย ๐Ÿ” Identify AI Agent Behavior โ†’ Analyze Decision-Making โ†’ Interact with Tools โ†’ Discover Vulnerabilities โ†’ Exploit Weak Points โ†’ Perform Multi-Step Attacks โ†’ Goal Manipulation โ†’ Tool Abuse โ†’ Prompt Injection ๐Ÿ‘€๐ŸŽฅ ๐™’๐™–๐™ฉ๐™˜๐™ ๐™ฉ๐™๐™š ๐™—๐™š๐™ก๐™ค๐™ฌ ๐™ซ๐™ž๐™™๐™š๐™ค ๐™›๐™ค๐™ง ๐™ข๐™ค๐™ง๐™š ๐™ž๐™ฃ๐™›๐™ค๐™ง๐™ข๐™–๐™ฉ๐™ž๐™ค๐™ฃ Grab the opportunity today: https://t.co/htt02sZvVI #CyberSecurity #AgenticAI #AISecurity #Pentesting #RedTeam #Infosec #AppSec #EthicalHacking #CyberDefense #AI #SecurityTesting #CyberAwareness
60
87
50
13
3K
0xBug07 ย retweeted
hackinghub_io's profile image
HackingHub Verified account @hackinghub_io
Can you read the configuration? How?๐Ÿ‘‡
hackinghub_io's tweet photo. Can you read the configuration? How?๐Ÿ‘‡ https://t.co/1ZOaeJL9OC
1
31
3
13
2K
0xBug07 ย retweeted
pwn_ai's profile image
pwn.ai @pwn_ai
๐Ÿšจ ZERODAY: ImageMagick ๐Ÿšจ Our autonomous pentester https://t.co/zHUcIkHqvr just dropped multiple zeroday chains in ImageMagick that achieve RCE and File Leak from a single .jpg or .pdf file, bypassing EVERY security policy (Default, Limited, AND Secure). ๐Ÿคฏ ๐Ÿ’ฅ Affects Ubuntu, Debian, WordPress & millions of servers globally. Happy Monday and Happy Hunting! ๐Ÿฅฐ https://t.co/nNAvFAvPOx
pwn_ai's tweet photo. ๐Ÿšจ ZERODAY: ImageMagick ๐Ÿšจ Our autonomous pentester https://t.co/zHUcIkHqvr just dropped multiple zeroday chains in ImageMagick that achieve RCE and File Leak from a single .jpg or .pdf file, bypassing EVERY security policy (Default, Limited, AND Secure). ๐Ÿคฏ ๐Ÿ’ฅ Affects Ubuntu, Debian, WordPress & millions of servers globally. Happy Monday and Happy Hunting! ๐Ÿฅฐ https://t.co/nNAvFAvPOx
7
469
122
411
44K
0xBug07's profile image
winli @0xBug07
@Ky0toFu @yeswehack Please post a write-up of this
0
0
0
0
79
0xBug07 ย retweeted
SuyashS91823422's profile image
Suyash Sharma @SuyashS91823422
I earned $xxxx for my submission on @bugcrowd https://t.co/8GBItcviHD #ItTakesACrowd Bug Type- 2x Reflected XSS Tip: use DuckDuckGo dorks as same as google dorks , you will get new endpoints
SuyashS91823422's tweet photo. I earned $xxxx for my submission on @bugcrowd https://t.co/8GBItcviHD #ItTakesACrowd Bug Type- 2x Reflected XSS Tip: use DuckDuckGo dorks as same as google dorks , you will get new endpoints https://t.co/CqHFIpwOPB
2
128
3
38
4K
0xBug07 ย retweeted
obscaries's profile image
obscaries โ˜ AppSec @obscaries
โ€œStop relying on Google alone โ€” real recon starts where search engines get uncomfortable.โ€๐Ÿ‘‡๐Ÿ’€
obscaries's tweet photo. โ€œStop relying on Google alone โ€” real recon starts where search engines get uncomfortable.โ€๐Ÿ‘‡๐Ÿ’€ https://t.co/vyIc3NH2lC
8
1K
220
1K
41K
0xBug07 ย retweeted
theXSSrat's profile image
The XSS Rat - Proud XSS N00b :-) Verified account @theXSSrat
Here are 50 essential bug bounty techniques for your 2026 methodology: Subdomain Takeover (CNAME Verification) BOLA / IDOR (Broken Object Level Authorization) BFLA (Broken Function Level Authorization) JWT Algorithm Confusion (RS256 to HS256) JWT None Algorithm Bypass HTTP Request Smuggling (CL.TE / https://t.co/bZhb51d6DG) Blind SSRF via DNS OOB (Out-of-Band) Cloud Metadata Exfiltration (169.254.169.254) Prompt Injection (LLM/AI Chatbots) RAG Data Leakage (AI Vector DBs) Race Conditions (Turbo Intruder) Mass Assignment (Hidden JSON Parameters) Prototype Pollution (Client & Server Side) GraphQL Introspection Querying GraphQL Batching Attacks SSTI (Server-Side Template Injection) Second-Order SQL Injection Blind XSS in Admin Panels Web Cache Poisoning (Unkeyed Headers) Favicon Hash Asset Discovery JS Source Map Reconstruction Google Dorking for Sensitive Docs GitHub Secret Scanning (.env / .git) S3 Bucket Misconfiguration (Public Write/Read) Firebase Database Rule Enumeration OAuth Redirect URI Manipulation Cross-Site Leakage (XS-Leaks) CORS Misconfiguration (Origin Reflection) PostMessage Data Theft CSP Bypass via JSONP Endpoints Insecure Deserialization (Object Injection) XML External Entity (XXE) Injection Local File Inclusion (LFI) via Wrappers Command Injection via Metadata (ExifTool) Dependency Confusion (NPM/PyPI) Open Redirects (SSRF Entry Points) Password Reset Token Leakage (Referer Header) MFA Workflow Bypass (Response Manipulation) OTP Brute-forcing (No Rate Limit) Parameter Pollution (HPP) Price Manipulation (Negative Quantities) Coupon Code Brute-forcing Virtual Host Fuzzing (VHost Discovery) Wayback Machine URL Mining Exposed Docker/K8s API Endpoints Email Change Account Takeover (ATO) Verbose Error Page Info Leakage Dangling Markup Injection Remote Code Execution (RCE) via File Upload IDN Homograph Attacks #BugBounty #BugBountyTips #Infosec #CyberSecurity #Hacking #EthicalHacking #RedTeaming #WebSecurity #Pentesting #Programming #AI #LLM
5
192
43
240
11K
0xBug07 ย retweeted
Secfortress's profile image
Secfortress @Secfortress
https://t.co/PPnnpaEXwb Got blocked by cloudflare while using burp proxy, this subreddit helped!!
3
228
47
286
13K
0xBug07 ย retweeted
hackinghub_io's profile image
HackingHub Verified account @hackinghub_io
Keep your eyes peeled on these endpoints. ๐Ÿ‘€ /login โžก๏ธ authentication bugs /reset-password โžก๏ธATO /upload โžก๏ธ RCE /api/v1/user/1001 โžก๏ธ BOLA /search?q=query โžก๏ธ Injection bugs /view?file= โžก๏ธ SSRF /admin โžก๏ธ internal access Which endpoint have you found the most bugs on? ๐Ÿ‘‡
7
455
76
389
21K
0xBug07 ย retweeted
NullSecurityX's profile image
NullSecurityX Verified account @NullSecurityX
CVE-2026-20841 - Windows notepad.exe RCE #BugBounty #CyberSecurity
NullSecurityX's tweet photo. CVE-2026-20841 - Windows notepad.exe RCE #BugBounty #CyberSecurity https://t.co/MqyS7JJaWY
3
364
38
150
23K

Last Seen Users on Sotwe

ICEQUEENCO1's profile image
ICE_QUEEN_CO Verified account
tanerzzzfdd's profile image
TรœRBAN VE ร‡ARลžAFLILAR
Seen from Turkey
Dedekeko4's profile image
Tahan Lama
Seen from Indonesia
AnfieldEdition's profile image
Anfield Edition | รฆ Verified account
Seen from United Kingdom
panflinflo's profile image
PLACK
Seen from Turkey
MSausin99912's profile image
monika sausin
Seen from Indonesia
jfjfjfj95416737's profile image
jfjfjfjf
Seen from Turkey
TopHubvn's profile image
Yรชu Bรฉ Nhiแปu ๐Ÿซต๐Ÿป
Seen from Singapore
Aurelaosy's profile image
Rendyansyah
Seen from Indonesia
Caliiikkk's profile image
๐“‚๐‘’๐“‡๐“‹๐‘’

Trends for you

1
Ronaldo
Under 10K tweets
2
USAID
Under 10K tweets
3
mark lee
Under 10K tweets
4
#PORUZB
Under 10K tweets
5
Cancelo
Under 10K tweets
6
Powell
Under 10K tweets
7
Joao Felix
Under 10K tweets
8
#gachiakuta169
Under 10K tweets
9
Xenoverse 3
Under 10K tweets
10
Blair Witch
Under 10K tweets

Most Popular Users

elonmusk's profile image
1
Elon Musk Verified account
@elonmusk
240.4M followers
barackobama's profile image
2
Barack Obama Verified account
@barackobama
119.3M followers
realdonaldtrump's profile image
3
Donald J. Trump Verified account
@realdonaldtrump
111.7M followers
cristiano's profile image
4
Cristiano Ronaldo Verified account
@cristiano
110.1M followers
narendramodi's profile image
5
Narendra Modi Verified account
@narendramodi
107M followers
rihanna's profile image
6
Rihanna Verified account
@rihanna
97.5M followers
nasa's profile image
7
NASA Verified account
@nasa
92.1M followers
justinbieber's profile image
8
Justin Bieber Verified account
@justinbieber
90.8M followers
katyperry's profile image
9
KATY PERRY Verified account
@katyperry
87.4M followers
taylorswift13's profile image
10
Taylor Swift Verified account
@taylorswift13
81.3M followers
ladygaga's profile image
11
Lady Gaga Verified account
@ladygaga
72.8M followers
kimkardashian's profile image
12
Kim Kardashian Verified account
@kimkardashian
69.7M followers
imvkohli's profile image
13
Virat Kohli Verified account
@imvkohli
69.5M followers
youtube's profile image
14
YouTube Verified account
@youtube
68.7M followers
billgates's profile image
15
Bill Gates Verified account
@billgates
63.7M followers
theellenshow's profile image
16
The Ellen Show
@theellenshow
62.5M followers
neymarjr's profile image
17
Neymar Jr Verified account
@neymarjr
62.2M followers
cnn's profile image
18
CNN Verified account
@cnn
61.9M followers
x's profile image
19
X Verified account
@x
60.8M followers
selenagomez's profile image
20
Selena Gomez Verified account
@selenagomez
60.5M followers