๐ŸžSara Badran Profile picture
#bugbounty hunter / penetration tester , gamer ๐ŸŽฎ eWAPTX / eWAPT / eJPT ๐Ÿ’ป
Aug 23, 2022 โ€ข 11 tweets โ€ข 10 min read
2FA Bypass Techniques thread ๐Ÿ”ฅ๐Ÿž๐Ÿ”“
-------------------------

๐Ÿ“Œ2FA Code Leakage in Response:

You can intercept otp using burpsuite and inspect http response and check if the 2FA code leaked

#hackerone #BugBounty #bugbountytips #BugBountyTip Image 2. JS File Analysis:
----------------

๐Ÿ“ŒAnalyze all the JS Files that are referred in the response to see if any JS file contains information that can help bypass 2FA code.

#hackerone #BugBounty #bugbountytips
#hackeronereport #Bugbountywriteupspublished #BugBountyTip Image
Aug 14, 2022 โ€ข 5 tweets โ€ข 6 min read
Platforms to practice hacking ๐Ÿ”ฅโค๐Ÿž โ†’ Tryhackme
โ†’ Hackthebox
โ†’ Pentester Lab
โ†’ tcm-security
โ†’ Vulnhub
โ†’ Offensive Security
โ†’ Vulnmachines
โ†’ Portswigger Web Security Academy
โ†’be practical
1/3
#bugbountytips #Ethicalhacking #cybersecuritytips #bugbountytip #infosec โ†’ Hacker101
โ†’ PicoCTF
โ†’ HackMyVm
โ†’ Try2hack
โ†’ Cybrary
โ†’ RangeForce
โ†’ Letsdefend
โ†’ vhackinglabs
โ†’ Hacksec42
โ†’ BugBountyHunt3r
โ†’ CyberSecLabsUK
โ†’ certifiedsecure
โ†’ CTFTime
โ†’ 247CTF
2/3
#bugbountytips #Ethicalhacking #cybersecuritytips #bugbountytip