Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
HackenProof Profile picture
HackenProof
@HackenProof
Leading web3 bug bounty platform #StandWithUkraine Discord: https://t.co/rGKYeQfUky YT: https://t.co/cLUr6ODztP TG: https://t.co/CzUMzjZg0r
Jun 20, 2023 9 tweets 2 min read
How to Become a Web Application Bug Bounty Hunter

Mastering Web Application Security with Free Resources

Become a web app bug bounty hunter to explore vulnerabilities and enhance skills. Contribute to a safer digital landscape with an exhilarating path.

#bugbounty Image Become familiar with the Linux terminal Bandit CTF is one of the best places to do that. It is a beginner-friendly Capture The Flag (CTF) challenge designed to teach and test basic command-line skills and Linux system security concepts.
Mar 13, 2023 10 tweets 4 min read
1/
Vuln: SSTI

Severity: Severity of the issue depends on from the engine that has been used

Server-side template injection occurs when user input is unsafely embedded into a server-side template, allowing users to inject template directives.

#bugbountytips #securitytips #SSTI 2/
 Constructing a server-side template injection attack

Detect → Identify → Exploit

- Detect if SST is vulnerable to attack
• Identify the engine that the server uses. There are a huge number of templating languages, characters.
• Develop exploit on received data