Discover and read the best of Twitter Threads about #bughunting

Most recents (3)

A bugbounty threads about OTP related hunting

1/n

Test these whenever you encounter with OTP related functionalities like email or phone confirmation, password reset, login with OTPs etc.

#bugbounty #bugbountytips #bugbountytip #hacking #cybersecurity #infosec #bughunting
2/n

1. Bruteforce OTP (tool : Burp intruder)

2. Developers implement additional parameters to protect their application from bruteforce attack. eg. LoginAttempt=3 or wrong_attempt_left=1, modify or remove these parameters
3/n

3. There is a huge possibility that you may get banned during brute forcing OTP. You can bypass that by taking some steps like: - Change *User-Agent* header - Change IP via VPN or IP rotator

4. You can add custom headers to bypass the bruteforcing restrictions :
Read 12 tweets
A bugbounty threads about OTP related hunting

I test these whenever I encounter with OTP related functionalities like email or phone confirmation, password reset, login with OTPs etc.

#bugbounty #bugbountytips #bugbountytip #hacking #cybersecurity #infosec #bughunting

1/n
2/n

1. Bruteforce OTP (tool : Burp intruder)

2. Developers implement additional parameters to protect their application from bruteforce attack.
eg. LoginAttempt=3 or wrong_attempt_left=1, modify or remove these parameters
3/n

3. There is a huge possibility that you may get banned during brute forcing OTP. You can bypass that by taking some steps like:
- Change *User-Agent* header
- Change IP via VPN or IP rotator

4. You can add custom headers to bypass the bruteforcing restrictions :
Read 11 tweets
R3D001: Statrted @udacity Front End NanoDegree (FEND) yesterday. #100DaysOfCode #GrowWithGoogle #udacity
R3D002: Cruising through HTML and CSS, filling in gaps. #100DaysOfCode #GrowWithGoogle
R3D003: Re-doing Animal Trading Card (HTML/CSS) in @udacity Front End Nanodegree #100DaysofCode #GrowWithGoogle
Read 123 tweets

Related hashtags

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!