@cryptcreed profile picture
Cryptcreed @cryptcreed

Cyber Security Enthusiast. Love to discover new things. Certified Ethical Hacker v10.

Joined March 2019
  • Tweets 73
  • Following 366
  • Followers 21
1 Photos and videos
Cryptcreed retweeted
Luke Stephens (hakluke)
@hakluke
17 Sep 2020
"A majority of the bugs were only possible due to automated asset discovery, but still required some manual inspection and exploitation." This is an important point, automation is only part of the puzzle! Great blog @infosec_au blog.assetnote.io/2020/09/15…

Hacking on Bug Bounties for Four Years

assetnote.io
2
60
202
Cryptcreed retweeted
shubs
@infosec_au
17 Sep 2020
I wrote a post on @assetnote's blog about hacking in bug bounties for the last four years. This should give you a good idea on what I've been reporting and how I find bugs and incorporate them back into our platform. blog.assetnote.io/2020/09/15…

Hacking on Bug Bounties for Four Years

assetnote.io
12
310
764
Cryptcreed retweeted
Guido van Rossum
@gvanrossum
16 Sep 2020
Python 4 FAQ. 1. The version after 3.9 is 3.10; in fact it already exists (in github master). 2. If there ever is a version 4, the transition from 3 to 4 will be more like that from 1 to 2 rather than 2 to 3.
141
691
4,011
Cryptcreed retweeted
Patrik Grobshäuser@ITSecurityguard
16 Sep 2020
I just uploaded some of the most common file types for my Patrik's Bug Bounty Tools mind map here: SVG: blog.it-securityguard.com/pb… PDF: blog.it-securityguard.com/pb… XMIND: blog.it-securityguard.com/pb… PNG: blog.it-securityguard.com/pb… enjoy! 🥰🥳👑 #bugbountytips #BugBounty
10
276
729
Cryptcreed retweeted
Sanyam Chawla@infosecsanyam
13 Sep 2020
RT @sectest9: RT @aufzayed: CAPTCHA BYPASS TECHNIQUES #bugbounty #bugbountytip #bugbountytips #cybersecurity #infosec medium.com/@honeyakshat999/c…

CAPTCHA BYPASS TECHNIQUES !

Q.what is captcha????  according to Wikipedia- A CAPTCHA is a type of challenge-response test used in computing to determine whether or…

honeyakshat999.medium.com
8
8
Cryptcreed retweeted
Safaras@iam_j0ker
5 Sep 2020
hey hackers, started a write up series on find your first bug medium.com/@iamj0ker/find-yo… #bugbounty #bugbountytips #bugbountytip #100DaysOfCode @InsiderPhD @stokfredrik @theXSSrat @Alra3ees

4
139
329
Cryptcreed retweeted
Luke Stephens (hakluke)
@hakluke
3 Sep 2020
Easily generate a custom wordlist from any domain: echo "bugcrowd.com" | subfinder -silent | hakrawler -plain -usewayback -scope yolo | sed $'s/[:./?=:]/\\\n/g' | anew
9
135
385
Cryptcreed retweeted
Luke Stephens (hakluke)
@hakluke
31 Aug 2020
Try this when testing webapps: 1. Set up burp in browser1 2. Do a password reset request in browser1 3. Open the password reset email in browser2 and copy the token 4. Search your Burp history for the token, if it is there, you've got yourself a nice easy account takeover!
15
348
1,031
Cryptcreed retweeted
Abhishek Karle@AbhishekKarle3
29 Aug 2020
#bugbounty #bugbountytip #Android The Easiest way to find deeplink patterns search on google - targetscheme:// deeplink OR On github - "targetscheme://" deeplink
2
18
54
Cryptcreed retweeted
XSS Payloads@XssPayloads
24 Aug 2020
alert() with no parenthesis, back ticks, brackets, quotes, braces, etc. by @stealthybugs a=8,b=confirm,c=window,c.onerror=b;throw-a
10
107
428
Video Tuts on Debugging Automation Basics for Vuln. Researchers bit.ly/2QtczEV *Debug Events *Breakpoints *Registers, Memory Thread & Module Manipulation *Hook API *Writing Your First Fuzzer #vulnerability #bugbountytips #bugbounty #fuzzing #ReverseEngineering #malware

Python winappdbg Reversing Video Tutorial Series

youtube.com
44
82
Cryptcreed retweeted
m4ll0k@m4ll0k
16 Aug 2020
Trick for bypass the rate-limit.. (it worked for me in many companies) #bugbountytips #bugbountytip #bugbounty
7
323
946
Cryptcreed retweeted
Vegeta@_justYnot
15 Aug 2020
Hey! I just published this writeup on medium. Please do read it and let me know how was it. link.medium.com/Xgi2One4X8 Big thanks to @pdiscoveryio for such amazing tools. Thanks to @ADITYASHENDE17 for great tips #bugbountytips #bugbounty #cybersecurity

How recon helped me to find an interesting bug…

Hello infosec community! I’m back again to share an interesting finding with you. Little bit about me, my name is Vedant and I’m a bug…

vedanttekale20.medium.com
6
66
184
Cryptcreed retweeted
nobody_cares@www_latish
15 Aug 2020
Sharing my OSCP notes. I hope it will help you guys! hackanythingfor.blogspot.com…

5
94
244
Cryptcreed retweeted
Ammar Amer@cry__pto
15 Aug 2020
-1-Pentest-Cheat-Sheets: github.com/Kitsun3Sec/Pentes… -2-Web Application Cheatsheet (Vulnhub): github.com/Ignitetechnologie… -3- A cheatsheet with commands that can be used to perform kerberos attacks : gist.github.com/TarlogicSecu… #OSINT #bugbountytip #pentest #redteam #hacking

GitHub - Kitsun3Sec/Pentest-Cheat-Sheets: A collection of snippets of codes and commands to make...

A collection of snippets of codes and commands to make your life easier! - Kitsun3Sec/Pentest-Cheat-Sheets

github.com
1
117
276
Cryptcreed retweeted
sudi@sudhanshur705
8 Aug 2020
I just published Reflected XSS in Facebook’s mirror websites Hope you will like it. Feedbacks are appreciated link.medium.com/CqgFgAajM8

Reflected XSS in Facebook’s mirror websites

Heyyy Everyoneee,

link.medium.com
25
173
489
Cryptcreed retweeted
Michele Romano@Mik317_
5 Aug 2020
If you hate analyzing JS files with strange variable names and minified versions, you should give a look at jsnice.org/

1
35
114
Cryptcreed retweeted
Harsh Bothra@harshbothra_
5 Aug 2020
Here's the playlist for all my recent Recon talks at a single place: youtube.com/playlist?list=PL… Slides: speakerdeck.com/harshbothra Will keep on adding more to the same place. :) #bugbounty #infosec #websecurity #bugbountytips #recon

Security Talks by Harsh

You can find every talk on application security or bug bounty delivered by me over various platforms here in this playlist.

youtube.com
3
84
170
Cryptcreed retweeted
OnSecurity@WeAreOnSecurity
5 Aug 2020
A common question asked is how do I best prepare for OSCP? This list of OSCP-Like boxes from @TJ_Null writeups from @rana__khalil are great resources to use heading into the PWK lab! Machine List: docs.google.com/spreadsheets… Rana's Writeups: medium.com/@ranakhalil101 #OSCP #PWK
1
65
168
Cryptcreed retweeted
karthik sunny@karthiksunny007
5 Aug 2020
link.medium.com/Dulig8BYG8 Always try to fetch hidden web directories In subdomains of the target #bugbountytips #bugbounty #cybersecurity

1
88
190
Load more