ro Profile picture
ro
All things security @getEthosLife & Write security zines @ https://t.co/cq0AazCnJb. Link to my Learn365 : https://t.co/gS0ar15Tq5…
Dec 26, 2022 5 tweets 3 min read
You can use ChatGPT for offensive security !!!

Learn in this thread.

#infosec #bugbountytips Okay, lets ask our intelligent ChatGPT directly !!
Can you help ?
Sep 21, 2022 11 tweets 4 min read
#learn365 - Day 3⃣2⃣

10 XSS payloads that don't need parentheses 😄

#xss #bugbountytips 1. alert`1`

Use backquotes.
Sep 5, 2022 6 tweets 4 min read
#Learn365 - Day 1⃣ 7⃣

Since we are talking about Polyglots, today I have SQLi Polyglot for you.
A context insensitive sqli payload polyglot, a thread. 🧵👇

#infosec #appsec #bugbountytips #security Image When it comes to SQLi, the SQli polygot is the payload that runs in context of ' (single quote) and " (double quote).

E.g
SLEEP(1) /*' or SLEEP(1) or'" or SLEEP(1) or "*/

Will execute in both the contexts.
How ?

Let's see next.
Sep 4, 2022 10 tweets 4 min read
#Learn365 - Day 1⃣ 6⃣

Can write single Exploit payload which can exploit both HTML and JS injection in this ?

Yes we can, they are POLYGLOT payloads.
A context sensitive injection payloads, a thread. 🧵👇

#infosec #appsec #bugbountytips #security Image Polyglot payloads capable of executing in multiple contexts.

A simple Example:
Input is flowing through HTML and JavaScript contenxt both and HTML is executed first then JS.

If you design the payload with JS context, HTML parse would fail, and XSS wont execute.
Aug 25, 2022 11 tweets 6 min read
#Learn365 - Day 6⃣

Can you identify and exploit the #security bug? 🤔

In today's thread lets learn about exploit writing 🧵👇

#infosec #appsec #bugbountytips #security This is SQLi. easy to guess. Which field is vulnerable : username.

But the tricky part is how to exploit it.
If you disect the code, you would notice that SQL statement should always return one single word. Otherwise comparison will anyway fail in PHP code.

What next ?
Aug 24, 2022 7 tweets 3 min read
#Learn365 - Day 5⃣

CORS Headers. 🤔

What are they ? And how they bypass SOP ?

Learn about them in this thread 🧵👇

#infosec #bugbountytips #CORS #http In last thread, we talked about SOP, while SOP blocks the response, CORS is use to bypass SOP the most sensible way.

CORS is Cross Origin Resource Sharing.

It allows sharing response across different origins possible. Can we call it Bypassing SOP ?

Yes.
Aug 24, 2022 7 tweets 2 min read
Aug 23, 2022 9 tweets 4 min read
#Learn365 - Day 4⃣

SOP 🫧, Same Origin Policy.
A browser security framework that every #hacker should know.

Know what is it in this thread 🧵👇

#infosec #security #appsec #cybersecurity #SOP #http Image SOP is browser security model, and I find lot of folks out there, who still dont understand it in and out.
Let me cover it here, in few threads.

Let's Start.
Jul 30, 2022 12 tweets 3 min read
📄 I have reviewed nearly 250+ resume for security engineering role in my company, recently !!

🚀Below are few suggestions for a good RESUME from hiring perspective.

🧵👇

#infosec #security #InfoSecJobs #resume Header

Summary

Work Exp

A Section for Books, Patents, Blogs, OSS, Certs Etc

Your Skill relevant to job you are applying.

Awards & Recognition

Educational Qualifications (Last thing I care for)

Who are you out of work.
Oct 10, 2021 7 tweets 3 min read
🚨🚨 Another 10K giveaway

50 Like - Burp Suite Ext Dev - 10 Coupons
100 Likes - SOP Zine - 10 Coupons
150 Likes - Web Auth Zines- 10 Coupons
200 Likes - Bundle - 3 Coupons

Thanks to @FeedHive_io for post conditions functionality.
#Security #Learn365 #bugbountytips #bugbounty Woah we hit 50 Likes, here is the link for Burp Suite Plugin Development Guide : securityzines.gumroad.com/l/burp-plugin-…

Only 10 Grab Fast.
May 10, 2021 5 tweets 4 min read
#BurpHacksForBounties - Day 1/30

Turbo intruder: Power of Python with @Burp_Suite Intruder.

I use it to tailor my pen-testing for a specific target and targetted #bugbounty

#infosec #appsec #bugbountytips #bugbountytip #security
How to - 🧵🙃👇 1/n
Using: CE so that everyone can explore.
Intruder in CE is limited in multithreading, Turbo-Intruder can overcome that.
- Install through Extender
- Send req to the plugin.