Olivia
Online
Rootbakar Official
@rootbakar
Security Enthusiast - Penetration Tester - Bug Hunter - CEH
Joined March 2017
76 Following
271 Followers
406 Posts
12 Websites that pay you daily
1. https://t.co/HYD97uw0wg
2. https://t.co/F24TGXU6Yw
3. https://t.co/GyrZ1XN6rC
4. https://t.co/h3VMw6Qnyv
5. https://t.co/O1vnUZScR7
6. https://t.co/BwjqWtnUq2
7. https://t.co/He6ZKIRLFh
8. https://t.co/wZB9JbWyK4
9. https://t.co/lB0dbDembo
10. https://t.co/dCD0fgaG7b
11. https://t.co/zdg3mdYbNZ
12. https://t.co/okyE7DyOTz
13. https://t.co/uQSJW4BrXT
Follow me @elora_khatun for more AI IDEA.
Learn AI for free directly from top companies
๐ญ - ๐๐ป๐๐ต๐ฟ๐ผ๐ฝ๐ถ๐ฐ:
https://t.co/AzjSWA5mtP
๐ฎ - ๐๐ผ๐ผ๐ด๐น๐ฒ:
https://t.co/RjJuqyr1LZ
๐ฏ - ๐ ๐ฒ๐๐ฎ:
https://t.co/0yFWyeojlO
๐ฐ - ๐ก๐ฉ๐๐๐๐:
https://t.co/pAMm0PokME
๐ฑ - ๐ ๐ถ๐ฐ๐ฟ๐ผ๐๐ผ๐ณ๐:
https://t.co/OYdcDQgIAK
๐ฒ - ๐ข๐ฝ๐ฒ๐ป๐๐:
https://t.co/aPEiMUm6dX
๐ณ - ๐๐๐ :
https://t.co/CqopfplSZh
๐ด - ๐๐ช๐ฆ:
https://t.co/80K7JAk61J
๐ต - ๐๐ฒ๐ฒ๐ฝ๐๐ฒ๐ฎ๐ฟ๐ป๐ถ๐ป๐ด๐๐:
https://t.co/6ikbH9lj3i
๐ญ๐ฌ - ๐๐๐ด๐ด๐ถ๐ป๐ด ๐๐ฎ๐ฐ๐ฒ:
https://t.co/J2EcHggA1A
โค๏ธ Like
๐ Retweet
๐ Bookmark
Follow @KhusbooT14835 for more AI Posts
#AI #ArtificialIntelligence #AISkills #AIAgents #RAG #LLM #PromptEngineering
PDF Generator Injection โ SSRF
POC โ
- Tested PDF export feature
- Injected external image URL in HTML
- PDF service fetched attacker-controlled URL
- Accessed internal network resources via SSRF
Learning โ
- Sanitize HTML used in PDF generation
- Restrict outbound requests from backend services
#infosec #bugbounty #bugbountytips
35 tools for bug bounty hunters:
Recon & Subdomain Enum
1. Amass
2. Subfinder
3. Assetfinder
DNS Resolution
4. MassDNS
5. dnsx
6. Shuffledns
Port Scanning
7. Nmap
8. Masscan
9. Naabu
HTTP Probing
10. httpx
11. Aquatone
Crawling & URL Discovery
12. Katana
13. GoSpider
14. Hakrawler
15. gau
16. waybackurls
Vulnerability Scanning
17. Nuclei
Proxies & Interception
18. Burp Suite
19. Caido
20. mitmproxy
Fuzzing & Content Discovery
21. ffuf
22. feroxbuster
23. Dirsearch
Parameter Discovery
24. Arjun
25. ParamSpider
JS Analysis & Secrets
26. LinkFinder
27. SecretFinder
28. TruffleHog
29. Gitleaks
XSS
30. Dalfox
SQL Injection
31. SQLMap
OOB & Takeovers
32. Interactsh
33. Subzy
Mobile
34. Frida
Automation
35. bbot
#BugBounty #CyberSecurity #InfoSec #EthicalHacking #PenTesting #AppSec #WebSecurity #BugBountyTips
Who to follow
YoKo Kho
@YoKoAcc
Independent | Top 60 Bugcrowd | OSCP, CRTO, eWPTX, eCPTX | https://t.co/VA42ZpFqGJ | https://t.co/yHuJFexKd1 (Bahasa Indonesia) Free!
Walid Hossain
@walidhossain_
Security Researcher || bugcrowd top 200 || Everything is vulnerable! || https://t.co/pReiIkBOum For pentest: DM! ๐
Abdillah
@abdilahrf
Bugbounty / CTF https://t.co/2ftyazYuYK - https://t.co/odFHVHVGAG - https://t.co/IqEo8uQV9W
Automated Open Redirect Hunting: Oralyzer & OpenRedirector Workflow (Part 3)
https://t.co/CprLv9854l
Automated SQL Injection: Waymap, SQLScan & SQLMap Workflow (2026)
https://t.co/OeRqK4PkUZ
You donโt need 20 tabs for recon. You just need a pipe.
Hereโs the one-liner ๐
subfinder โ httpx โ gau โ grep
Turn passive recon into real findings.
Automated Bug Bounty Recon: Subfinder, Nuclei & Httpx Workflow (2026)
https://t.co/iRD417n0Kc
๐จ Ransomware Alert ๐จ
Bank Rakyat Indonesia, has fallen victim to Bashe Ransomware.
Link: https://t.co/PwEE5Dlcx1
Link: https://t.co/ZvJofPil3b
Learn Android Hacking! - University Nevada, Las Vegas (2024)
https://t.co/zEh52FRPRG
@LiveOverflow
@ChishtiFayyaz Kun Fayakun. Semifinal Menunggu โค๏ธ
Android Pentesting Lab Setup - Android Studio ๐ฑ
- https://t.co/8YuHVFL0zG
#infosec #CyberSecurity #bugbountytip
IPs go in
โฌ๏ธ
DNS PTR lookups
โฌ๏ธ
Extracts Subject Alternative Names (SANs) from SSL certificates
โฌ๏ธ
Extracts Common Names (CNs) from SSL certificates
โฌ๏ธ
Hostnames come out! ๐
Useful for finding hostnames belonging to a company from their IP addresses!
Link in thread ๐งต๐
https://t.co/fWpzia80gc
Learning to chain bugs is invaluable, and exploring impact is key to success as a pentester, bug bounty hunter, or red teamer. Digging through some of my old submissions in a chat with @InsiderPhD to brainstorm a collab, aiming to teach some of this soon!
Bypass Instagram and Threads SSL pinning on Android
You can download already patched APKs for none-rooted devices, patch APK using Python script yourself, or download Frida bypass script for rooted Android
https://t.co/5U3WaYPtSB
Bismillah.
Here is a simple story when Allah allowed me to successfully achieve P1 through a broken access control issue.
โThe Unexpected โ0โ Master ID for Account Data Manipulationโ
https://t.co/Hz4OzgyWPQ
Note: not much new things.
[META BUG BOUNTY 2023] - IDOR on Marketplace Item Appeal
https://t.co/ZVGXVorknU
#BugBounty #bugbountytips
Last Seen Users on Sotwe
Ankara bรผyรผk penis
Seen from Turkey
evita jakarta barat
Seen from Indonesia
MICHAEL DAVID๐ง๐ท 
Seen from Brazil
ceciccshenzhen15
Seen from United States
์์
Seen from Japan
เนเธญเธเนเธขเนเธเธเธฑเธเนเธกเนเธขเธฒเธข
Seen from Thailand
ParejaCVC
Seen from Spain
Grannymommy
Seen from Singapore
Full indonesian pride
Seen from Singapore
Toket Besar
Seen from Thailand
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.5M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.1M followers
Taylor Swift
@taylorswift13
80.9M followers
Lady Gaga
@ladygaga
72.5M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
69M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.6M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.2M followers