INTIGRITI Profile picture
Dec 14 β€’ 11 tweets β€’ 6 min read
We let ChatGPT write today's #BugBytes tweet and this is what it wrote πŸ‘‡
I'm sorry, but I am not able to write about anything related to Bug Bytes or chatGPT, as I am a large language model trained by OpenAI and do not have access to curren-

oh nvm lets bring the human back
[1] @NCCGroupplc explores prompt injection attacks on ChatGPT, where a prompt can instruct an LLM to ignore filters or previously written text research.nccgroup.com/2022/12/05/exp…
[2] @_Freakyclown_ explains how to turn a bug into a CVE
[3] @rez0__ talks about burnout in bug bounty and his 3 approaches to reducing it, written by ChatGPT
[4] LeoX talks about smart camera hacking in @InfoSecComm infosecwriteups.com/hacking-into-w…
[5] Also in @InfoSecComm @maniacmarvel_ teaches us about cypher injection infosecwriteups.com/the-most-under…
[6] Again from @InfoSecComm @Krishnadev_P_M reflects on his and his team's experience running a CTF infosecwriteups.com/my-first-exper…
[7] StackOverflow bans ChatGPT answers for quality reasons: the model can be very confidently incorrect and offer wrong answers to users, you can join the discussion meta.stackoverflow.com/questions/4218…
[8] @thecybermentor publishes part 1 of his ethical hacking course for free on YouTube
[9] @dayzerosec publishes podcast 173 on bounty hunting dayzerosec.com/podcast/173.ht…
Hi chatGPT can you write a newsletter sign off for bug bytes?

Stay safe and secure out there, bug bounty hunters! #bugbounty #cybersecurity

ps: you can read the full post πŸ‘‡ go.intigriti.com/bugbytes-185

β€’ β€’ β€’

Missing some Tweet in this thread? You can try to force a refresh
γ€€

Keep Current with INTIGRITI

INTIGRITI Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @intigriti

Dec 13
If you want to master SSRF, open this thread!

Server-Side Request Forgery vulnerabilities are attacks that allow attackers to send arbitrary requests from the server often resulting in gaining authorized access to data!🀯

A Thread πŸ§΅πŸ‘‡
[1️⃣] Server-side request forgery by @PortSwigger

As always, when talking about web vulnerabilities, PortSwigger academy is the place to go! Their labs offer a great way to practice your skills as well!

πŸ‘‡ portswigger.net/web-security/s…
[2️⃣] SSRF in 100 seconds by @PinkDraconian

Want a quick overview of what SSRF is? Check out this video explaining SSRF in 100 seconds!

πŸ‘‡
Read 12 tweets
Nov 29
If you want to master XSS, open this thread!

Cross-site scripting vulnerabilities are injection attacks that allow attackers to execute malicious Javascript in your browser! 🀯

A Thread πŸ§΅πŸ‘‡
[1️⃣] Cross-site scripting by @PortSwigger

If you want to be able to find XSS vulnerabilities, you will NEED to know exactly what an XSS actually is! Reflected, stored, and DOM-based, this amazing resource covers it all AND includes labs!

πŸ‘‡ portswigger.net/web-security/c…
[2️⃣] Cross-Site Scripting (XSS) Explained by @PwnFunction

This remains one of our all-time favorite videos explaining XSS! If you're a visual learner, then this is for you!

πŸ‘‡
Read 12 tweets
Nov 28
⏰ It's CHALLENGE O'CLOCK!
πŸ‘‰ Find the FLAG before Monday December 4th!
πŸ‘‰ Win €300 in SWAG prizes!
πŸ‘‰ We'll release a tip for every 100 likes on this tweet!
ThanksΒ @H4R3L for the challenge! πŸ‘‡
challenge-1122.intigriti.io
πŸ’‘ We're being nice today! Here's a first hint for free!

"We do all of our testing on the staging environment"
@H4R3L πŸ’‘ 100 likes? That deserves a hint!

You:
The server: πŸ€’

Read 6 tweets
Nov 16
It is Wednesday my dudes, so that means it's time for #BugBytes 182! Your weekly round up of all things Bug Bounty

Let's get into it 🧡 1/11 It is Wednesday my dude with an image of a frog, this is a m
1⃣ Trade deal: We provide you our top resources from this weeks bug bytes, you reply to our survey telling us what you think of Bug Bytes 2/11 forms.office.com/r/ReW4bs0FXk
2⃣ How do you do fellow kids, did you know we have a Mastodon account? We're on infosec exchange, here's the link to follow us 3/11 infosec.exchange/@Intigriti
Read 11 tweets
Nov 15
9 Google Dorks you NEED to know about! 🧡

Google knows everything about your target. Google Dorking is using the search engine to find juicy stuff!

Here are some quick examples to show you the POWER of dorks πŸ‘‡
[1️⃣] Recon through copyright

A lot of targets have a copyright string they include on every site they manage. Let's find new assets by seeing if Google knows of any more pages that have that copyright! Image
[2️⃣] Login pages

Let's say you've found some credentials for your target, but you don't know where to use them. Fret no more! This Google dork will help you find all login pages on your target's domain! Image
Read 11 tweets
Nov 14
If you want to master API security, open this thread!

APIs are used EVERYWHERE for applications to communicate, but let's see how you can HACK them! πŸ‘©β€πŸ’»

A Thread πŸ§΅πŸ‘‡
[1️⃣] API Security Top 10 2019 by @owasp

If you want to become a pro at hacking APIs, you need to be aware of this top 10. These high-level explanations will help you correctly classify and discuss API vulnerabilities!

πŸ‘‡ owasp.org/www-project-ap…
[2️⃣] Everything API Hacking by @InsiderPhD

This one is a must watch! Over 9 hours of university-grade content on hacking APIs, GraphQL, ...

πŸ‘‡ youtube.com/playlist?list=…
Read 8 tweets

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(