Olivia
Online
bergee
@_bergee_
Webdev, bug hunter
Joined November 2017
944 Following
812 Followers
363 Posts
@brutecat Congrats. I bet it took you a long long time to first understand how things work and map attack surface before start any hacking.
Some books worth reading, doing bug bounty:
https://t.co/irdFgrY8yU
https://t.co/ZlB2xDTDls - "Bug Bounty Bootcamp"
https://t.co/9TbwY6Jmv8 - "Real-World Bug Hunting"
https://t.co/QuC38MpMkk - "Hacking APIs"
https://t.co/QuC38MpMkk - Black Hat GraphQL
#BugBounty
@chmodx1sh @SynackRedTeam Good job. Like that you talking about the time spent. Not an illusion of the easy win 💪🏻
@intigriti In fact I need one cert - burp cert installed ;)
@saur1n Thanks a lot
I do recommend reading this blog. Good stuff.
https://t.co/WgrdI3O7vt
#BugBounty
@getnow1986 It is not zipslip
Two criticals I found inside one zip uplaod functionality. Have a nice read and Merry Xmas
https://t.co/oDIoPoYJwQ
#bugbounty #bugbountytips
My first CVE. Insecure deserialization and PHP objects injection in WP "Doubly" plugin. Thanks @wordfence . #cve
Today, thanks to @NahamSec I bought pretty solid VPS at @Hostinger for 2 years. It is Black Week deal so for $4,79 per month you got parameters as in the screenshot. I need it for bug bounty and hosting so if you need one here it is: https://t.co/ii9rgxuT0f
#BugBounty #deal
Dear bughunters. Have you ever heard about self-RCE? I did. I found RCE via command injection and the company said that it is self-RCE as the filesystem is isolated with some chroot and this RCE affects only the user's files. What do you think?
#BugBounty #bugbountytips
https://t.co/mc8vSkjZSL
The new write-up on credentials theft with XSS and Google Analytics.
#bugbountytips #BugBounty #bugbountytip
Wbijaj na konferencję największej społeczności ITsec w Polsce!
✅ 4 ścieżki / ~40 praktycznych prezentacji, wiedza absolutnie z pierwszej ręki i bez ściemy
✅ Pokazy hackowania na żywo
✅ Jakość i niepowtarzalny klimat gwarantuje Sekurak
✅ 20 października w Krakowie:
https://t.co/cMSl43jnhn
How to read the files on server with zip files. The short story of zip symlink attack:
https://t.co/XiEiUJrr4z
Have a nice reading
#bugbounty #bugbountytip #bugbountytips
I found the crit on self-hosted program. Reading files on filesystem with unzipping the symlinks. Writeup soon.
#bugbountytips #bugbounty #bugbountytip
How to get paid for subdomain takeover without taking over the domain... :)
https://t.co/mZFgy2V2eb
#BugBounty #bugbountytips
Last Seen Users on Sotwe
Most Popular Users
Elon Musk 
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.6M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.2M followers
Taylor Swift
@taylorswift13
81M followers
Lady Gaga
@ladygaga
72.5M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
69.1M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.8M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.3M followers