Olivia
Online
HackingHub
@hackinghub_io
Educating the next generation of ethical hackers.
United Kingdom
Joined April 2019
14 Following
12.6K Followers
3.3K Posts
@NahamSec Link to full video:
https://t.co/UB5JTQNmRB
Things you MUST know before diving into bug bounty. 😎
@NahamSec highlights the non-negotiable fundamentals of your hacking journey.
Here’s a quick watch. 👇
Me staring at my callback server, waiting for that one Blind XSS payload I injected into a support ticket three weeks ago.
Check them out. 👇
https://t.co/2nrEoi0c9P
Here’s a quick process for finding mass-assignment vulns:
➡️ Do a GET request on any resource you own, note all fields returned
➡️ Replay those fields in the update POST/PUT requests
➡️ Add fields you see in API docs, JS source, or error messages
➡️ Check response for changed values
➡️ Test role/plan/is_admin
➡️ Also try org_id/tenant_id to cross tenant boundaries
Got it?
Learn more techniques by hacking our FREE Hubs!
POV: there's an avatar upload that only accepts images, and you want to land a PHP webshell.
Here's the weakness. A lot of upload filters only read the first few bytes (aka magic bytes) of a file to decide what it is. PNGs open with ‰PNG, GIFs with GIF8, JPEGs with their own signature. If the file type validator checks those magic bytes and nothing else, you can bolt them onto the front of any file and it will be accepted.
So you give it what it wants: a real image header up top, your payload underneath.
🖼️ Upload a clean image first. Note the success message and where the file lands.
🥷 Build a file that opens with valid PNG (or GIF/JPEG) magic bytes, then your PHP right after.
😏 Save it as .php or .phtml and upload.
🏆 Browse to the uploaded file and pass it a command.
Payload:
‰PNG\r\n<?php system($_GET['cmd']); ?>
Then hit the URL with ?cmd=id and see what comes back 🤞
More techniques like this, free in our Hubs 👇
https://t.co/BXCwq0g0f1
Hungry for another challenge?
Dive into our free hubs👇
https://t.co/2nrEoi0c9P
There’s a blacklist.
What’s your BYPASS? 👇
Ready for your next hacking challenge?
Explore our free hubs👇
https://t.co/2nrEoi0c9P
Oh, there’s some security implementation. 😎
Do you have a BYPASS? 👇
Want to practice your hacking techniques on real-world scenarios?
Access is 100% FREE. 👇
https://t.co/2nrEoi0c9P
POV: You are poking at an enterprise financial app.
The DOM is full of custom elements like <vaadin-text-field>, and you see network traffic firing POST requests to endpoints with ?v-r=uidl and ?v-uiId=.
You know it’s Vaadin.
👇🧵
Vaadin treats the request as a framework request, triggers initialization, and creates a session without proper authorization.
This is CVE-2026-2742: unauthorized session creation via reserved framework path access.
This one is a bit tight. Can you find a crack?
Craft your PoCs.
(This is the frontend code. Backend code is in the first reply👇.)
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers