Bug Bounty Hunter, Top 1% Tryhackme and Cyber Security Researcher
Joined October 2021
- Tweets 612
- Following 823
- Followers 444
- Likes 4,936
28 Photos and videos
Pinned Tweet
13 Nov 2021
I just published Broken Link Hijacking — 404 Google Play Store— xxx$ Bounty link.medium.com/SXAJg6rS9kb
#BugBounty #infosec #Hacking
6
8
34
Proviesec retweeted
Damit die Weltreise nicht langweilig wird :)
linkedin.com/posts/oliver-tr…
2
4
24
Mar 29
Most fuzzing is still guesswork.
I rebuilt my tool PSFuzz to change that:
→ understand target first
→ then fuzz
Less noise. More signal.
GitHub: github.com/Proviesec/PSFuzz
Article: medium.com/bugbountywriteup/…
#bugbounty #cybersecurity #websecurity #ai
3
5
163
Proviesec retweeted
Jan 15
We hacked the AWS JavaScript SDK, a core library powering the entire @AWScloud ecosystem - including the AWS Console itself 🤯
How did we do it? Just two missing characters was all it took.
This is the story of #CodeBreach 🧵👇
158
851
7,426
1,334,573
Jan 14
github.com/Proviesec/google-… new Google Dorks for #azure #antropic #slack #firebase and many more.
#BugBounty #googledorks #CyberSec
1
57
Jan 9
Took some time, but finally updated my Google Dorks repo.
Lots of new dorks added — OpenAI, Kubernetes, cloud, OSINT & more.
👉 github.com/Proviesec/google-…
#BugBounty #CyberSec #Hacking
1
50
Jan 8
2025 was good, but 2026 will be much better! tryhackme.com/recapme-2025/P… #tryhackme #hacking via @tryhackme
1
38
Proviesec retweeted
6 Jan 2025
A quick and easy way to find forgotten hosts that are still exposed to the internet is by checking the SSL/TLS certificate! 🤑
Here's how you can filter by expired SSL certificates in Shodan! 👇
org:"<company>" ssl.cert.expired:true
#bugbountytips
5
54
316
17,903
4 Sep 2024
#BugBounty Tip: Test for IDOR by changing parameter values like user IDs in URLs (/profile?id=123). Accessing different profiles? You’ve found a vulnerability. It’s a simple but effective way to uncover sensitive data exposures! #WebSecurity #BugBountyTips #CyberSecurity
1
3
208
3 Jul 2024
🚀 Celebrating 1000 Days Streak on @tryhackme 🎉 Proud to be in the top 1%! Huge thanks to the TryHackMe community for the constant support and inspiration. Onward and upward! 💻🔒
#Cybersecurity #TryHackMe #1000Days #bugbounty #LifeLongLearning #InfoSec #PenetrationTesting
1
2
145
28 May 2024
I completed the Web Security Academy lab:
SQL injection UNION attack, finding a column containing text :) #cybersecurity
@WebSecAcademy
portswigger.net/web-security…
1
66
18 May 2024
#BugBounty Tip of the Week: Don't forget about API endpoints! Regularly scan for exposed endpoints and try sending unexpected data types in API calls (e.g., pass an object where a string is expected). Always validate and sanitize inputs rigorously. #APIsecurity #cybersecurity
1
5
155
5 May 2024
#BugBounty Tip of the week: Resource: Check out tinyxss.terjanq.me/ for a collection of concise XSS payloads tailored for various contexts. Perfect for testing environments with specific feature allowances Enhance your XSS testing strategy! #CyberSecurity #XSS
1
5
209
Proviesec retweeted
4 May 2024
Was able to escalate this to a 0 click!! Glory to God, I was awarded $20,000 for my report on @Hacker0x01 . Would do a writeup soon. Never give up fellow noobs💪🏾
#BugBounty #hackerone
10 Apr 2024
#bugbounty #hackerone
Program: This is an intended behavior not a big.
Me: Lets disclose this intended behavior to the public👀
Program:
46
27
552
46,718
14 Apr 2024
71
2 Apr 2024
1
62
30 Mar 2024
I love information disclousre :) #CyberSecurity
27 Mar 2024
How an Information Disclosure Vulnerability Led to Critical Data Exposure
hackerone.com/vulnerability-…
@Hacker0x01
68
21 Mar 2024
John The Ripper - I have just completed this room! Check it out: tryhackme.com/room/johntheri… #tryhackme #passwordcracking #john #hash #johntheripper0 via @tryhackme #CyberSecurity
58