Discover and read the best of Twitter Threads about #bugbounties

Most recents (3)

Want to find RCE on Web Applications? 🚀

Here are some ways to escalate or direct RCEs in Bug Bounties

A thread🧵

#bugbounty #bugbounties #wapt #rce #zeroday
1. LFI with Log Poisoning :
➼ Apache Log:…
➼ SSH…
➼ FTP Log:…

2. Via File Upload :
➼ Upload .php reverse shell
➼ If not, Bypass Restrictions :
(a) Double Extension
(b) Random Upper & Lower Case Names
(c) Changing Mime Type
(d) Null Byte
(e) Magic Byte
➼ If image allowed, use ExifTool and add PHP reverse shell in comment metadata
Read 7 tweets
We are just starting our session @hasgeek. @abh1sek talking about data breaches and how they happen.…

Join the live stream on the webpage.

Thank you @hasgeek for giving us this amazing platform to talk about what we love most #datasecurity #appsec
Agenda for the session
Read 29 tweets
I hate the certification industry, it prevents talented people from participating, particularly younger and less well off. If you want to learn online #investigations I'll teach you everything I can with live support absolutely free. #OSINT #infosecjobs
If you can get an employer to pay then go for @SANSInstitute because @mcafeeinstitute stinks of stock photography and shyster marketing. Not to mention these people kick ass. @jms_dot_py @WebBreacher @kirbstr @baywolf88
An @OReillyMedia subscription ($39) and @jms_dot_py course ($45). These are what young #infosec / #OSINT investigators. Should be spending money on. Keeping low monthly payments allows people to get the skills while paying for quality.
Read 6 tweets

Related hashtags

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!