🐞Sara Badran Profile picture
Bug hunter / penetration tester , eWAPTX / eWAPT / eJPT πŸ’»
Aug 23, 2022 β€’ 11 tweets β€’ 10 min read
2FA Bypass Techniques thread πŸ”₯πŸžπŸ”“
-------------------------

πŸ“Œ2FA Code Leakage in Response:

You can intercept otp using burpsuite and inspect http response and check if the 2FA code leaked

#hackerone #BugBounty #bugbountytips #BugBountyTip Image 2. JS File Analysis:
----------------

πŸ“ŒAnalyze all the JS Files that are referred in the response to see if any JS file contains information that can help bypass 2FA code.

#hackerone #BugBounty #bugbountytips
#hackeronereport #Bugbountywriteupspublished #BugBountyTip Image
Aug 14, 2022 β€’ 5 tweets β€’ 6 min read
Platforms to practice hacking πŸ”₯❀🐞 β†’ Tryhackme
β†’ Hackthebox
β†’ Pentester Lab
β†’ tcm-security
β†’ Vulnhub
β†’ Offensive Security
β†’ Vulnmachines
β†’ Portswigger Web Security Academy
β†’be practical
1/3
#bugbountytips #Ethicalhacking #cybersecuritytips #bugbountytip #infosec β†’ Hacker101
β†’ PicoCTF
β†’ HackMyVm
β†’ Try2hack
β†’ Cybrary
β†’ RangeForce
β†’ Letsdefend
β†’ vhackinglabs
β†’ Hacksec42
β†’ BugBountyHunt3r
β†’ CyberSecLabsUK
β†’ certifiedsecure
β†’ CTFTime
β†’ 247CTF
2/3
#bugbountytips #Ethicalhacking #cybersecuritytips #bugbountytip