Jules Carter

🔍 My ultimate workflow for simple and easy JavaScript Analysis ⚡️ Comprehensive JavaScript analysis in offensive security, appsec testing, and red teaming wins. Often you can find juicy hidden endpoints, parameters, & domains buried JS! A thread 🧵 1/x 👇

2023 Hacker's Guide: How to Break into Pentesting and AppSec. (thread)

“CVE-2022-27255 is a stack-based buffer overflow with a severity score of 9.8 out of 10 that enables remote attackers to execute code without authentication by using specially crafted SIP packets with malicious SDP data.” https://t.co/l3nvv8JF5U

Hackers! Any interest in a hacker mansion for Vegas this year? I'm tentatively planning to rent a place with 5 rooms/12 beds. Would be happy to have hackers come grab beds, hack, & hang out! I know there are a ton of live events but lmk. DM me if interested!

Looking for 1099 web app testers for an upcoming project. Work is remote. Must have previous web app testing exp. GWAPT or equiv is a plus. If you're looking for extra work slide into these DMs.

Write up of my first critical bug reported on HackerOne. "How I hacked one of the biggest airlines group in the world."  https://t.co/ziqqYomR6E

Welp...

Do you want to know why most people fail to learn pentesting concepts? It's not because they are afraid of hard work... It's not because the concepts are impossible to learn... It's not because you need to be a genius... Nope. It's because they've been Golf'ed