If Allah willed it, will be back soon!

New Write-up on InfoSec Write-ups publication : "XSS WAF & Character limitation bypass like a boss" https://ift.tt/33RlNQS

My company did some cool research using machine learning to predict vulnerabilities by looking at the words in a URL. More information on the blog:

http://offensiveai.com/machine-learning-predict-vulnerabilities-by-examining-the-words-in-a-url/

#bugbountytip #BugBounty #bugbountytips #xss #ai #MachineLearning #infosec #appsec #redteam #pentest

[15/30] #bashtricks - sync dirs with rsync
Did you know that you can sync dirs between your local machine and your VPS with rsync?

a lot of hunters use a VPS as bb machine, so this can be useful to get all files from any VPS dir to your local or vice versa

#BugBounty #infosec

@hakluke @Bugcrowd This https://hackerone.com/reports/195045 haha

Facing filters during open redirect vulnerability exploitation ?
Try this "Host/Split" payload to abuse of the Unicode normalization:

#BugBounty #BugBountyTip #Infosec
(credit to Jonathan Birch)