Top Tweets for #bugbountyHelp
What you do for accessing a site when must need vpn ? How to use burpsuite?
#bugbounty #bugbountyhelp
If the common name in Nmap I can see https://t.co/ZziApyv4ux then how it is not belonging to the target am i missing something
@thedawgyg @codingo_ @NahamSec @ADITYASHENDE17 @stokfredrik
#bugbounty #bugbountyhelp #Cybersecurity
How to intercept traffic through @Burp_Suite when using Browser VPN
It works when Vpn on Windows is used but not when browser extension is used
#BugBountyHelp
#Pentesting
#bugbountytips #bugbounty #bugbountyhelp
hei bug bounty family, Today I stumbled upon this subdomain of a bb program. Is it valid for subdomain takeover? If yes, can we collaborate? we can split the bounty 50/50. Thank you

How can I inject payload in Graphql like this
Customer {\n custom_fields(first: 9999, orderBy: {field: LABEL, order: ASC}) {\n edges {\n value\n _node {\n id\n label\n
example I want inject in LABEL
#bugbountyhelp #graphql
Hello Hackers,
Is there a tool that allows you to remove or filter out subdomains running under Cloudflare from a list of subdomains?
#bugbountyhelp
Anyone if you are good in cryptography please leave a comment i will inbox you
it is a cookie that is encoded in some types of base64 but as a newbie i tried all base decoding methods like base 32 , base 58 , base 92 but i failed
#bugbountyhelp
#bugbounty
#ethicalhacking
I am reading/learning BAC bugs. Any recommendation on resources to learning? Thank you very much! #bugbounty #bugbountyhelp
Is @sony & Sony-SIE swag the same?๐ค
Thanks @Hacker0x01 and @Sony
Bug: swagger-ui to steal credentials
#bugbounty
#bugbountyhelp
#TogetherWeHitHarder

I have a sqli in Oracle DB.
"userName":"a' or 'ad'='a'||'d' AND 'a'=(SELECT 'a' FROM dual)--" => works
if I change table dual to all_tables => not works
if I change 'a' to user => not works
I test on live test db it works on both of case.
Any idea to check here? #bugbountyhelp
How much time does Flipkart takes to pay bounty?? #bugbountyhelp @Hacker0x01 @flipkartsupport @Flipkart
Any suggestions for a tool that takes a list of IPs and delivers the associated domain names? #bugbountyhelp
Hello #BugBounty hunters! ๐ต๏ธโโ๏ธ Need your expertise on a situation with a banking site.
๐ Identified: Clicking a subdomain login option redirects to an invalid domain because of they misspelled. The invalid domain is open for purchase.
#BugBounty #bugbountyhelp
[CVE-2021-28164] Exposure of Sensitive Information to an Unauthorized Actor -- closed as informative. @Hacker0x01
Attacker can read sensitive information.
#bugbountytips
#BugBounty
#bugbountyhelp
![mahfujwhh's tweet photo. [CVE-2021-28164] Exposure of Sensitive Information to an Unauthorized Actor -- closed as informative. @Hacker0x01
Attacker can read sensitive information.
#bugbountytips
#BugBounty
#bugbountyhelp https://t.co/lWaLVacFz5](https://pbs.twimg.com/media/F_cjsoEbsAAjtOW.jpg)
I found Firebase credentials in the js code and need help to exploit it. It's BB on Bugcrowd and ready to collaborate. #bugbounty #bugbountyhelp
I found XSS on a website, and was able to steal the cookies by setting up ngrok, but "document.cookie" value is different from the actual cookie, when seeing it from cookie-editor.
Can anyone explain, why it is happening?
#bugbounty #bugbountyhelp
Hello hunter,
Found some sensitive information in javascript file but i can i demonstrate this. Any one can help me.
@0x_rood
@AkashHamal0x01
#BugBounty
#bugbountytip
#Bugs
#BugBountyhelp

I submit a repot at @Hacker0x01 june 22-2022.
This report was Closed duplicated. And yesterday oct23-2023 i found 2 reputation point.
But, i donโt understand the reason. Any one can explain me about this??
#BugBounty
#bugbountytip
#bugbountyhelp
#bugbountycouminity

Reflected XSS, can call internal api to get logged in user email. What is the severity here? Thanks #bugbountyhelp
Found an RXSS able to steal some cookies tried ATO sadly failed. But i was able to perform a lot of IDOR from various endpoints. So what should be the severity?
#BugBounty #bugbountyhelp
Last Seen Hashtags on Sotwe
NOlimit filter:videos
Seen from United States
เธฃเธฑเธเธเธฒเธเนเธฅเธข
Seen from Thailand
เธฃเธฑเธเธเธฒเธเธเธเธก
Seen from Thailand
gaziantepgay
Seen from Turkey
abdl
Seen from Indonesia
pantsed
Seen from Vietnam
ChewDatGlass
Seen from United States
pornfail
Seen from Turkey
Omegle
Seen from United States
Most Popular Users

Elon Musk 
@elonmusk
240.7M followers

Barack Obama 
@barackobama
119.2M followers

Donald J. Trump 
@realdonaldtrump
111.7M followers

Cristiano Ronaldo 
@cristiano
110.9M followers

Narendra Modi 
@narendramodi
107M followers

Rihanna 
@rihanna
97.7M followers

NASA 
@nasa
92.2M followers

Justin Bieber 
@justinbieber
90.9M followers

KATY PERRY 
@katyperry
87.8M followers

Taylor Swift 
@taylorswift13
81.7M followers

Lady Gaga 
@ladygaga
73.2M followers

Virat Kohli 
@imvkohli
70.1M followers

Kim Kardashian 
@kimkardashian
69.9M followers

YouTube 
@youtube
68.7M followers

Bill Gates 
@billgates
64M followers

Neymar Jr 
@neymarjr
62.9M followers

The Ellen Show
@theellenshow
62.4M followers

CNN 
@cnn
61.9M followers

Selena Gomez 
@selenagomez
60.9M followers

X 
@x
60.8M followers











![mahfujwhh's tweet photo. [CVE-2021-28164] Exposure of Sensitive Information to an Unauthorized Actor -- closed as informative. @Hacker0x01
Attacker can read sensitive information.
#bugbountytips
#BugBounty
#bugbountyhelp https://t.co/lWaLVacFz5](https://pbs.twimg.com/media/F_cjsPgaAAAtUy9.jpg)


