Sahil Mehra 🇮🇳 @nullr3x - Twitter Profile

Pinned Tweet

about 2 years ago

Just published a new Medium post on a crucial #infosec topic! The post explores unconfigured Sign-in with Google functionality that could lead to unauthorized access to the admin account. #cybersecurity #pentest #ethicalhacking #vulnerability Read Now: https://t.co/hpGwGBFEV8

1

3

0

2

459

Sahil Mehra 🇮🇳 @nullr3x

over 2 years ago

🌟Mass Account Takeover Vulnerabilities ① IDOR Vulnerability ② Host Header Vulnerability ③ Chaining IDOR & Host Header => Mass Account Takeover 📷 Read Now: https://t.co/dKLTB0fSkH #ethicalhacking #CyberSecurity #bugbountytip #bugbountytips #bugbounty #infosec

0

7

0

5

469

nullr3x retweeted

Anuj @bsachunter

over 3 years ago

Go and check out our new blog of one of the finding on @hackerone Full Access to the Production Portal by us @bsachunter & @a_s_h_Hunter . https://t.co/1HlTiMjJFJ Tip:- Recon is the Key to Success. #togetherwehitharder #recon #BugBounty #infosec #infosecurity #cybersecurity

4

137

57

52

13K

nullr3x retweeted

Manav Goyal @a_s_h_Hunter

over 3 years ago

Yay, I was awarded a $2,000 bounty on @Hacker0x01! For P1 bug. Bug type : PII Disclosure of all users. https://t.co/YyFgH0hG51 #TogetherWeHitHarder Bounty partner: @bsachunter Special thanks to our Mentor:@sechunt3r @nullr3x @InfoSecComm @bugbounty18

6

58

7

8

9K

Who to follow

Aseem Shrey

@AseemShrey

Infrastructure Security Engineer @Scale_AI 🏗️ Building https://t.co/kOyHkqQK4k & https://t.co/4VLfZFblJl Prev. founded https://t.co/uFfUUZsukX #cybersecurity #AIsecurity

Sahil Mehra 🇮🇳 @nullr3x

over 3 years ago

@a_s_h_Hunter @Hacker0x01 @bsachunter @sechunt3r @InfoSecComm @bugbounty18 Congratulation brothers 👏 💜

1

2

0

159

nullr3x retweeted

EdikTheFurry @EdikFurry

over 4 years ago

Just a quick shout out to @nullr3x - found a possible #securitybreach and gave us the full details for is to fix it. Keep this gentleman in mind if you need web or #Android application testing or #VAPT security audit. Cheers!

0

1

0

Sahil Mehra 🇮🇳 @nullr3x

over 4 years ago

@sagaryadav8742 @_smile_hacker_ Congratulation bro 🎉🎉🎉

1

0

Sahil Mehra 🇮🇳 @nullr3x

almost 5 years ago

@Virdoex_hunter @sechunt3r Thanq bhai

1

0

Sahil Mehra 🇮🇳 @nullr3x

almost 5 years ago

Acknowledged by Apple Product Team Thanks @sechunt3r https://t.co/iVglbwUJJK #safari #macos #bigsur #security #bugbounty #TogetherWeHitHarder

nullr3x's tweet photo. Acknowledged by Apple Product Team
Thanks @sechunt3r
https://t.co/iVglbwUJJK
#safari #macos #bigsur #security #bugbounty #TogetherWeHitHarder https://t.co/M5B4vnSVpL

1

13

1

0

Sahil Mehra 🇮🇳 @nullr3x

almost 5 years ago

@0x01titsec @TheSecopsgroup @Disruptrs_ Congrats Bhai

1

0

nullr3x retweeted

Aditya sharma 🇮🇳 @Assass1nmarcos

almost 5 years ago

Saved A*s of a company from following data leak trend😂 2 billion users PII leaked through endpoint (contains banking details too) #databreach #securitybreach #bugbounty #hacking #dataleakage #bugbountytips #bugbountytip @sechunt3r @ADITYASHENDE17 @sratarun

Assass1nmarcos's tweet photo. Saved A*s of a company from following data leak trend😂
2 billion users PII leaked through endpoint (contains banking details too)
#databreach #securitybreach #bugbounty #hacking #dataleakage #bugbountytips #bugbountytip
@sechunt3r @ADITYASHENDE17
@sratarun https://t.co/3F9MSN1Y61

9

140

28

14

0

nullr3x retweeted

Sergey Toshin @_bagipro

about 5 years ago

A nice way to grab deeplinks on iOS is to just download them :) Open the "apple-app-site-association" file for the desired domain, and it will contain all the deeplinks Examples: - https://t.co/0bPWq2TbAC - https://t.co/ejPCIxMMbn - https://t.co/jMHt1DiiCW

5

153

45

59

0

nullr3x retweeted

Dave Vieira-Kurz @secalert

over 5 years ago

When testing password fields, my preferred password is: %01%E2%80%AEalert%0D%0A Let's break it down: %01 is SOH %e2%80%ae is RTLO %0d%0a is CRLF Test cases on login: 1. can I log in only using %01? 2. without the CRLF in it? 3. is trela accepted instead of alert? (due to RTLO)

16

3K

684

1K

0

Sahil Mehra 🇮🇳 @nullr3x

over 5 years ago

@DattanaMayank @redbull @intigriti @sechunt3r Congo Jr. 🔥🔥

1

0

nullr3x retweeted

Mayank Kamboj Dattana @Mayank_hacks

over 5 years ago

Thanks @redbull for giving me wings 😈 #swag #bugbounty @intigriti Special thanks to Big Bad Brothers @nullr3x @sechunt3r

10

95

4

0

nullr3x retweeted

Shivam @sechunt3r

over 5 years ago

I'm glad that I've become a part of Synack Red Team @synack @SynackRedTeam Thanks to my Big Brothers & Friends for always supporting me @nullr3x @avanish46 @h4ckologic @parveen1015 @gauravnarwani97 @Assass1nmarcos @DattanaMayank

sechunt3r's tweet photo. I'm glad that I've become a part of Synack Red Team @synack @SynackRedTeam

Thanks to my Big Brothers & Friends for always supporting me
@nullr3x @avanish46 @h4ckologic @parveen1015 @gauravnarwani97 @Assass1nmarcos @DattanaMayank https://t.co/mdhhf2XOrp

16

99

6

2

0

Sahil Mehra 🇮🇳 @nullr3x

over 5 years ago

@sechunt3r @synack @SynackRedTeam @avanish46 @h4ckologic @parveen1015 @gauravnarwani97 @Assass1nmarcos @DattanaMayank Congratulations bro 🔥❤️

1

2

1

0

nullr3x retweeted

Harsh Bothra @harshbothra_

over 5 years ago

Doing Recon the right way keeps you a step ahead always and gives you a better attack surface to work on! Here's a snippet from my Recent Talk on Scope Based Recon talking about What to look for during Recon Based on Given Scope. #bugbountytips #appsec #bugbounty #security