plenum 🇹🇳

@plenumlab

I work as a QA and part time bountyhunter. @hackerone @bugcrowd @intigriti Plenum

France

Joined January 2018

396 Following

3.5K Followers

1K Posts

Pinned Tweet

plenum 🇹🇳 @plenumlab

almost 3 years ago

I just published Identifying and Exploiting Unsafe Deserialization in Ruby XMLRPC https://t.co/ErM5wB8m7R

1

306

104

80

28K

plenumlab retweeted

about 1 year ago

Launching today! Volerion transforms raw CVEs into structured and instant insights #CVE #CyberSecurity #infosec

VolerionSec's tweet photo. Launching today!

Volerion transforms raw CVEs into structured and instant insights

#CVE #CyberSecurity #infosec https://t.co/D6BTP6RZcz

2

40

17

13

15K

plenum 🇹🇳 @plenumlab

about 1 year ago

@NahamSec And then wonder why do I keep doing this to myself

0

0

0

0

197

plenum 🇹🇳 @plenumlab

over 1 year ago

@Blaklis_ @SopraSteriaSecu Félicitations @Blaklis_ j’espère que au moins tu aura une augmentation cette année

1

0

0

0

129

Who to follow

mohammed eldeeb

Verified account

Bug Bounty Hunter & security engineer

BBAC kidnapped me | I hack things, play video games and occasionally take photographs

Verified account

🔥 Offensive Security Engineer, Developer and H4cker. Feel free to call me HAH-hul or HOWL—whichever you prefer!

plenum 🇹🇳 @plenumlab

over 1 year ago

@rez0__ Congrats all the best

0

1

0

0

134

plenum 🇹🇳 @plenumlab

over 1 year ago

Started using bluesky https://t.co/qYFvY8h39g

0

2

1

0

226

plenum 🇹🇳 @plenumlab

over 1 year ago

@intigriti Ssrf -> dns rebind -> access to cloud metadata. The rest is history 😁

0

0

0

0

163

plenum 🇹🇳 @plenumlab

over 1 year ago

@ITSecurityguard 🤔

plenumlab's tweet photo. @ITSecurityguard 🤔 https://t.co/USTKxFfi9m

1

2

0

0

279

plenum 🇹🇳 @plenumlab

almost 2 years ago

@rez0__ Congrats 👏

0

0

0

0

166

plenum 🇹🇳 @plenumlab

almost 2 years ago

@albinowax @h4x0r_dz Using individual by name is also interesting, to be able to hide all the tracking and unnecessary cookies

0

1

0

0

210

plenum 🇹🇳 @plenumlab

almost 2 years ago

@_godiego__ In the ever evolving landscape of ...

0

2

0

0

209

plenum 🇹🇳 @plenumlab

almost 2 years ago

@Jhaddix @DanaEpp @rez0__ @Shopify @G0LDEN_infosec Agreed, regardless of the program, things have been piling up for quite some time now, and we have seen this behavior becoming more common. Some reports have been disclosed already where we clearly see triage or vendor giving wrong cvss explanation sometimes totally made up.

0

1

0

0

358

plenum 🇹🇳 @plenumlab

almost 2 years ago

plenumlab's tweet photo. @rez0__ https://t.co/vWj6BlcrsG

0

0

0

0

93

plenum 🇹🇳 @plenumlab

almost 2 years ago

@zseano Glad it went good, hope you get well soon buddy

0

0

0

0

116

plenum 🇹🇳 @plenumlab

almost 2 years ago

The new critical content injection, quality over quantity

publiclyDisclosed @disclosedh1

almost 2 years ago

U.S. Dept Of Defense disclosed a bug submitted by ezequielpuig: https://t.co/xtOORAgJbX #hackerone #bugbounty

disclosedh1's tweet photo. U.S. Dept Of Defense disclosed a bug submitted by ezequielpuig: https://t.co/xtOORAgJbX #hackerone #bugbounty https://t.co/TZ9Qb9icyB

8

30

2

20

21K

0

1

0

1

537

plenum 🇹🇳 @plenumlab

about 2 years ago

@ctbbpodcast @domain Fun fact you can actually exploit it the other way around, if the app allows incoming emails and uses/shows the sender field, you can send emails with netcat, although it is tricky to not break SMTP syntax it is still a nice bug https://t.co/X8IzNoDH7c

1

19

2

17

738

plenum 🇹🇳 @plenumlab

about 2 years ago

@_godiego__ AC:H, UI:R

1

1

0

0

530

plenum 🇹🇳 @plenumlab

about 2 years ago

Are you a hacker ?

plenumlab's tweet photo. Are you a hacker ? https://t.co/fEtWqTeqLn

2

11

2

0

1K

plenum 🇹🇳 @plenumlab

about 2 years ago

I'm buying this one.

plenumlab's tweet photo. I'm buying this one. https://t.co/pUlJP0CQjp

0

18

0

0

660

plenum 🇹🇳 @plenumlab

about 2 years ago

CVSS: custom vulnerability scoring system

about 2 years ago

🧠

1

7

0

0

4K

0

3

0

0

575

plenum 🇹🇳 @plenumlab

about 2 years ago

@renniepak Strange way to say "I'm a cool guy" -_(*.*)_- ok

0

0

0

0

277

Last Seen Users on Sotwe

Trends for you

Most Popular Users