bee @bee_sec_san Twitter profile

Last Seen Profiles

@PatrickRothfuss

@raafi_arabic

@hqpd_joens

@Anilku93

@KaylaReporting

@_nite7

@HANAtruly

@jandakembangstw

@BabyChitaToken

@SHumaZaydi

@bloomingbyun

@WilliamsNelsonC

@hoasenfood

@Apexerkarma

@yesty_sabor

@Dash_Community

@yesty_sabor

@MarFFitzgerald

@Timpmalonenyc

@donut_uncle

@Varun8217

@KasihLudah

@LeandroGarciaM5

@tobyhaarer6

@Crutnix

@katiekougar1

@nosferatuyum

@slimerxt

@galery_basah10

@LeandroGarciaM5

@TheThroneHoops

@ZRawwest

@KennKourt

@LeandroGarciaM5

@0o_3c

@galery_basah10

bee

@bee_sec_san

3 years

I found a zero day exploit in @apple that they are refusing to reward me for! So I am telling all of twitter!! You can break their encryption algorithm (RSA) if you have the private key, this is such an obvious exploit why won't Apple reward me?

45

56

601

bee

@bee_sec_san

3 years

Fun fact: When I started in infosec I didn't even know how to use Nmap 🥲 we all start somewhere!

21

40

515

bee

@bee_sec_san

3 years

🤐 Hacking tip 💡 Defenders are so used to hackers using VPNs that if you use your real IP address they'll never believe it, and you'll be perfectly safe 😎

20

46

483

bee

@bee_sec_san

3 years

🔥🤑🤑 Neat bug bounty I just got. You can hack Google and use their API to make their search engine search for things: curl {QUERY HERE} Nice little £20,160 bounty! Thank you 😻😻 All public APIs are vulns ⚡⚡⚡ Follow for more #bugbounty tips!

40

63

463

bee

@bee_sec_san

3 years

(1/4) Introducing, ⚡ FastScan ⚡ You think sub 1-second port scanning is good? FastScan can complete a scan in 🚨 0.02 seconds 🚨 How can it do this? A thread 🧵

14

81

403

bee

@bee_sec_san

3 years

🥳🔥 Great news!!! Name-That-Hash is now in Kali! Just apt install it and you'll be good to go 🎉

5

68

299

bee

@bee_sec_san

3 years

@CoinersTakingLs > Metamask > Contains BTC Fake

2

0

237

bee

@bee_sec_san

3 years

🤑 Found a neat RCE Medium bug on Windows 11 🔥 If the computer is unlocked, you can plug in a bluetooth keyboard and execute any commands you want remotely💻🤯 Nice little $500 from Microsoft for this 🔥 Follow for more tips on bug bounties ❤ #bugbounty #hacking #infosec

17

28

241

bee

@bee_sec_san

2 years

Your Github and Discord will bring you more opportunities than any resume ever will.

6

35

229

bee

@bee_sec_san

3 years

Bug bounty tip to easily get $1.2 million 🤑 Use <script>alert("XSS")</script> to test for XSS Google Pays $1.2 million for this Follow for more #bugbounty #cybersecurity tips and become #rich without #cryptocurrency #bitcoin 🤑 🤑 🤑 🤑🤑 🤑 🤑 🤑

18

31

215

bee

@bee_sec_san

3 years

Scan all of Google's GitHub repos for Bug Bounties. Finds: * API Keys * Credit Card Numbers * Secret Webhooks and more 🔥 Using PyWhat

2

55

188

bee

@bee_sec_san

3 years

Let's run a little giveaway! 3x 1-month TryHackMe vouchers. To win, you must: * Follow me (so I can DM you) 😄 * Retweet this 🐦 * Reply with your favourite TryHackMe room! (I'll use this in a blog post, you'll get credit too ❤) Winners will be selected on 20/01 at ~5pm UK! 💘

137

118

174

bee

@bee_sec_san

3 years

‼️ HTML isn’t a language, here’s why 😤❌ There is no country where people speak HTML😡😡😡😡

14

11

173

bee

@bee_sec_san

3 years

#bugbounty tip to get free stuff (blackhats dont read)🤑🤑🤑 1. Go to purchase something 2. inspect element and change to £1 3. buy it, product now costs £1 Thanks @Hacker0x01 for the P1 Crit Follow for more #bugbounty #cybersecurity tips #cryptocurrency #bitcoin #hacking 🤑

29

24

163

bee

@bee_sec_san

20 days

CSS Injection using mathjax on GitHub READMEs for profiles Code:

4

11

164

bee

@bee_sec_san

3 years

£5500 😱 Last week bug bounty finds 💸 Here is how I did it 👇 I posted a bunch of tweets claiming to "help" newbies in this field 😉 They came to me with bugs and wanted help, I stole their work and profited from them 🤑 Follow for more tips #bugbounty #hacking

15

13

146

bee

@bee_sec_san

3 years

The @shodanhq room on @RealTryHackMe is back in action 🎇 Featuring monitor, dorking && the extension as well as some much needed love

2

21

141

bee

@bee_sec_san

3 years

I am currently the #2 trending @github developer globally 🥳

6

5

141

bee

@bee_sec_san

3 years

2 years of @duolingo everyday :)

8

5

126

bee

@bee_sec_san

3 years

I have my first job interview today 🤞 Wish me luck! 🤓

17

0

110

bee

@bee_sec_san

3 years

@hacksplained Glad to see it's working

5

106

bee

@bee_sec_san

3 years

WOAH! 🤯 I am the #1 trending developer globally on @github this **week**!!! 🥳🥳🥳 Thank you all for supporting my projects💖

7

105

bee

@bee_sec_san

3 years

Love it when a prominent infosec influencer steals your open source work (and the work of others), creates their own tool and promotes it as "brand new and unique". This violates the GPLv3 license, but more importantly, who steals someone else's work????

10

4

100

bee

@bee_sec_san

3 years

Ciphey - automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes⚡ Just released 5.11.1, adding support for Python3.9 and fixing many bugs 🔥 Wait until you see the revamp of the hash cracking module 😉

7

27

102

bee

@bee_sec_san

3 years

I GOT THE JOB! 🥳🥳🥳🥳🥳At my DREAM company!!!!! 🥳🥳🎉🎉🎉 Thank you so much to everyone that's supported me ( @z_zojja @NoxCyber @RealTryHackMe ) Special thanks to @erhannah for mentoring me through the grad process, I hope I can repay you 1 day

bee

@bee_sec_san

3 years

I think we kept on getting deeper and deeper into system design and eventually this one question was just knowledge I didn't have. I gave _a_ solution, it wasn't great at all but it would have worked 🤷‍♂️ Hope I get it :((

2

0

11

19

2

91

bee

@bee_sec_san

3 years

AHHHhh!!! I just submitted my first tool to @kalilinux and @ParrotSec !!!! <3 <3 So nervous!

9

3

92

bee

@bee_sec_san

3 years

🆕 New tool release! PyWhat helps you identify important things in a file, think of it as a smarter version of "strings" Run it against a .pcap and find all IP addresses or CTF flags. Run it against malware and find crypto-addresses and domains!

6

33

89

bee

@bee_sec_san

3 years

Super sneak peak 👀 Name-That-Hash's Kali package! Coming soon to a Kali near you 😎

2

11

88

bee

@bee_sec_san

3 years

🔥 Introducing Name That Hash - Modern Hash Identification system with popularity ratings, Hashcat, John, and descriptions. The little secret project I've been working on for weeks with @q8fawazo @Jayy_2004 @OrielOrielOriel and more!

8

31

86

bee

@bee_sec_san

3 years

If you have <= 500 followers, reply. I want to become friends with less Twitter popular people :)) _Especially if you produce content! 💝_

54

2

87

bee

@bee_sec_san

3 years

@offsectraining Ciphey doing work yet again 😎 Always great to see things it can crack in the real world 🔥 for source to use it in Discord

1

8

83

bee

@bee_sec_san

3 years

🔥 Reduce hash cracking by hours. Search-That-Hash searches Hash Lookup APIs before automatically cracking in HashCat. 😻😼

2

26

84

bee

@bee_sec_san

2 years

99% of people lost their crypto/NFTs via a phishing attack. They are fooled into clicking a link or signing a transaction. Let me show you an easy, step-by-step guide to work out if it's a phishing attack in under 5 minutes. This thread will save you 💰💰💰

4

26

81

bee

@bee_sec_san

2 years

Every crypto wallet sucks for general use. The user experience of crypto is the biggest thing stopping it from going mainstream, let's look at what the perfect wallet may look like.

4

14

79

bee

@bee_sec_san

3 years

In the UK, over 600k people have signed a petition to make it a requirement to provide identification when signing up to social media. Let me tell you why this hurts marginalised people and is a very bad idea. #trackatroll

5

29

79

bee

@bee_sec_san

3 years

@hacksplained for those asking

GitHub - bee-san/pyWhat: 🐸 Identify anything. pyWhat easily lets you identify emails, IP address...

🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️ - bee-san/pyWhat

github.com

1

13

81

bee

@bee_sec_san

3 years

Hey, looking for a bug bounty hunter. Willing to pay £500. I have a spider in my kitchen and I am placing a bounty on this bug. DM for offers #bugbounty #hacking #bugbountytips

11

4

78

bee

@bee_sec_san

3 years

@kyliebytes hi I am an open source maintainer with ~15k+ GitHub stars and ~300k downloads someone sent me £3 and I cried because it was the first time anyone had ever said thanks for my OSS work pls support open source work and thank them 💓💓 It means so much :-)

1

6

79

bee

@bee_sec_san

2 years

the vibes of the soundbath in @crypto_coven

1

3

74

bee

@bee_sec_san

3 years

2 years of @RealTryHackMe ! Happy hackiversary to my love and I 💘 PS: I'm older than @darkstar7471 's account AND the @RealTryHackMe account 😂👴

7

2

75

bee

@bee_sec_san

3 years

Fun fact: 2 years ago I was so lost I didn't even know how to hack Blue. I had never heard of Nmap so I had to read a writeup to figure out what to do! We all start somewhere, don't feel bad about it 🤗

7

10

73

bee

@bee_sec_san

3 years

@shodanhq @stokfredrik And if you brought this Shodan membership, you can learn how to use it in my free tutorial 👁💋👁

0

7

73

bee

@bee_sec_san

3 years

Someone else's success is not your failure

3

12

70

bee

@bee_sec_san

2 years

super excited for the unofficial @crypto_coven brunch in london this week 👀

9

0

68

bee

@bee_sec_san

2 years

Buying a hardware wallet or using a smart contract wallet costs money, and not everyone has that! Here's how to make Metamask super secure without spending a single penny.

4

24

66

bee

@bee_sec_san

3 years

💡 How To Host Your Full-Stack App For FREE 👇🏻 Front-end: → Netlify → Vercel → Github pages → Cloudflare Pages Back-end: →Heroku →Vercel →Netlify Functions →Cloudflare Workers Database: →Mongo Atlas →Firebase →Cloudflare Workers Key:Value →DynamoDB (AWS)

0

14

66

bee

@bee_sec_san

3 years

Nice, I am trending as a GitHub Developer again :0 Thanks everyone <3

3

1

60

bee

@bee_sec_san

3 years

How to become an famous infosec tool developer in 2 easy steps, you won't believe step 2! 1. Develop a port scanner with absolutely no unique selling point 2. Claim it's faster than everything else without proving it Now you're infosec famous! 🥳

6

4

63

bee

@bee_sec_san

3 years

@InsiderPhD @RealTryHackMe I wrote a blog post on a free guided path for TryHackMe too, so if someone's reading this and isn't sure what to do first this will help! :)

TryHackMe | Cyber Security Training

TryHackMe is a free online platform for learning cyber security, using hands-on exercises and labs, all through your browser!

tryhackme.com

4

17

59

bee

@bee_sec_san

4 years

Very happy with how my @RealTryHackMe day 16 challenge went down. A lot of people found it quite hard and had to learn Python to solve it. Some experienced coders did it in a few minutes. Exactly as I planned! :)

7

1

56

bee

@bee_sec_san

3 years

To think! This time tomorrow I could have a job if all goes well 😳‼️‼️‼️‼️

9

0

57

bee

@bee_sec_san

3 years

(4/4) It has 100% accuracy on everything I've tested it on (test set == web servers only that serve both HTTPS and HTTP) Here's the source code if you want to see how it works in detail. Good luck understanding it! I used my full 3-year CompSci degree to write this code.

8

3

56

bee

@bee_sec_san

2 years

The plural of regex is regrets

3

14

57

bee

@bee_sec_san

3 years

@IKEAUKSupport @justarandomfry @heyimdaf This is a hate crime please reconsider

1

0

53

bee

@bee_sec_san

4 years

“What’s been your favourite part of 2020?” - Katie, aged 7 asked.

Cai Wilshaw

@Caiwilsh

4 years

One of these is not like the others

73

966

8K

0

33

51

bee

@bee_sec_san

2 years

In Response to My First Impressions of Web3 by @moxie I thought it was a fair article, it was missing a lot of things so I added some rebuttals here and there and even included the things I hate.

4

8

55

bee

@bee_sec_san

3 years

Loved the @developer_dao London meetup yesterday!! :)

1

0

51

bee

@bee_sec_san

3 years

The @RealTryHackMe free path blog post has been updated again! * New networking section! * Owasp top 10, AOC1, AOC2 make an appearance * Things moved around ⚙⚙⚙⚙🥳🥳🥳

TryHackMe | Cyber Security Training

TryHackMe is a free online platform for learning cyber security, using hands-on exercises and labs, all through your browser!

tryhackme.com

1

9

51

bee

@bee_sec_san

2 years

A hardware wallet is not the ultimate security tool for all of your crypto needs, stop being fooled by it. You can and will be hacked if you don't read this. Here are the reasons why hardware wallets are not the silver bullet for security:

6

9

50

bee

@bee_sec_san

2 years

I am 3 followers away from 5k... Does Zen follow zen @ZenAcademy_ still work?

16

2

47

bee

@bee_sec_san

3 years

Me, a security professional: "You need to use a password manager!" Also me: *Using the same password for everything*

7

3

47

bee

@bee_sec_san

3 years

@theXSSrat Too easy 😉 Ciphey does it again <3 :)

2

9

49

bee

@bee_sec_san

3 years

eek! @RealTryHackMe added the staff role to the site 🎉✨

1

2

47

bee

@bee_sec_san

4 years

Some quick reminders: 💚 You don't have to be a web developer to be a programmer 💙 You don't need a fancy portfolio to be a great developer 💛 You don't need a blog to be a programmer 💜 Stop comparing yourself to others You are awesome, never forget that :) <3

2

5

47

bee

@bee_sec_san

3 years

Ever wondered how I know so much? I take a lot of free online courses. This thread collects my favourites so you don't have to take the boring ones :) 👇

3

15

47

bee

@bee_sec_san

3 years

I got muted on a Discord server for saying "I support gay rights" nice Better than that time Large InfoSec Youtuber's Discord mod tagged me and called me mentally ill for being LGBTQ+ lol

7

1

46

bee

@bee_sec_san

3 years

From being one of the first 5k @RealTryHackMe members to supporting over 300k 🔥 My journey has been wild 😄 Happy 300k THM fam <3 Now let's get the subreddit to 10k 😉

2

1

45

bee

@bee_sec_san

3 years

It's official! 🌌 I am now a backend engineer @monzo 🥳 Here's a picture I took at @PrideInLondon when @MakingMonzo invited me in 2018! 🌈 Back then I was just a community forum member 🥲

14

0

44

bee

@bee_sec_san

2 years

Ok the @crypto_coven descriptions are really pretty but has anyone else seen their alt-text descriptions 🥰🥰

1

4

45

bee

@bee_sec_san

3 years

Just spent 2 days working on a bug, the solution was this. I'm a software engineer btw

4

44

bee

@bee_sec_san

2 years

I wrote a blog post on my first 6 months at @monzo ! Do check it out :)

My first 6 months at Monzo as a Backend Engineer

monzo.com

1

6

43

bee

@bee_sec_san

3 years

New PyWHat release! Some noticeable improvements: * Way more identifiers * JSON output * Better filtration * A lot of love <3

Release JSON output, better regex, better filtering! · bee-san/pyWhat

What’s Changed Add Placekey universal identifier regex (#82) @chrisbergeron Update pyproject.toml (#101) @piatrashkakanstantinass Add short-names to tags #69 (#96) @RackReaver Add ability to retur...

github.com

2

5

42

bee

@bee_sec_san

3 years

Top Youtube Channels for programmers. ~Freecodecamp ~ Nick White ~ TheNewBoston ~ Kevin Powell ~ Sentdex ~ Kalle Hallden ~ @PatrickAlphaC ~ Fireship ~ Michael Reeves What's your favourite?

1

5

40

bee

@bee_sec_san

3 years

3 years ago I started blogging because I thought "I could teach better than my professors" Now professors are teaching things I've made. It's only a matter of time before I go back to "I will summarise a lecture about something I've made" and go full circle 😂😂😂😂

bee

@bee_sec_san

3 years

Super super cool to see Ciphey being taught in a SANs class!!! 🤯🤯🤯🤯

3

30

4

3

43

bee

@bee_sec_san

2 years

A lot of people think I brought witches to sell them to make profit In fact, I brought witches to roleplay in the Discord server with no intention of selling or hoping their price would go up 💀

Insider Tech Business

@insidertechbiz

2 years

🧙‍♀️ The “crypto coven” — a collection of witch avatars minted as NFTs — has quickly become a magical and extremely lucrative project, already generating over $20 million in sales. Here’s how five friends created @crypto_coven . 👇

735

512

1K

3

1

41

bee

@bee_sec_san

2 years

Meow! I have @coven_cats mint list spots to give away!! 🐈‍⬛ Reply with: 1. If your pet had a job, what job would it be? 🤔 2. Your Ethereum address!

19

5

39

bee

@bee_sec_san

2 years

@Route2FI $CARDANO is consistently around 1 USD

0

40

bee

@bee_sec_san

4 years

Does anyone else buy a Udemy course thinking "Awesome! I can't wait to learn X" and then never complete it ☠☠☠☠

12

0

38

bee

@bee_sec_san

2 years

@VictorH76787760 @Locati0ns @DudespostingWs this guy must have some amazing stories, absolute W of a human 🙏🙏🙏

1

0

35

bee

@bee_sec_san

3 years

Name-That-Hash's website has been updated! Don't fancy downloading a CLI tool to check hashes? Maybe you're on your phone? Use the website! 🤗

3

5

39

bee

@bee_sec_san

3 years

The best thing I've done to learn about web3 so far is joining @developer_dao

3

2

38

bee

@bee_sec_san

2 years

@eastdakota big W for the trans community 🏳️‍⚧️🏳️‍⚧️🏳️‍⚧️

17

0

34

bee

@bee_sec_san

3 years

Some quick reminders: 💚 You don't have to be a web developer to be a programmer 💙 You don't need a fancy portfolio to be a great developer 💛 You don't need a blog to be a programmer 💜 Stop comparing yourself to others You are awesome, never forget that :) <3

1

3

37

bee

@bee_sec_san

3 years

In case you missed it, I was interviewed by XSS Rat! @theXSSrat . Come listen to me talk about artificial intelligence, penetration testing, bug bounties, and quantum supremacy! PS: This was my first ever interview, I was incredibly nervous 😨

How to “bee” an amazing hacker... picking the brain of THM staff and...

About Bee-san:* Twitter: https://twitter.com/bee_sec_san* THM Staff (first 5k member, first community mentor).* My blog has 2.3 million views, I've written 5...

www.youtube.com

0

6

35

bee

@bee_sec_san

3 years

Name-That-Hash is being packaged for Kali 🥳🥳🥳

1

3

37

bee

@bee_sec_san

3 years

For people that don't understand, when you Curl this URL the Google Database returns data to you unauthenticated and even the secret source code of their site. The source code is not meant to be public + unauth access 2 database. This is a P1 crit that made me £20k 🤑

4

35

bee

@bee_sec_san

3 years

This is the tool!

4

8

37

bee

@bee_sec_san

3 years

Sneak peak at my next tool 😉 Guess what it does 👀

11

0

36

bee

@bee_sec_san

3 years

Our next TryHackMe AMA is one of the largest yet 👀 Any guesses? 🤔 (THM community staff don't reply that's cheating)

12

1

35

bee

@bee_sec_san

3 years

MY FIRST OFFER!!! 🥳🥳🥳 Also: HR at company X (different to the offer) thinks I'm above grad level so if I get that job I'll basically be a compsci graduate that's never held a grad role <3 :D 🥳🥳🎉🎉🎉

6

1

33

bee

@bee_sec_san

3 years

I just did my first ever interview (not for a job, as in someone talking to me about infosec / compsci)!!!!!!!!!!

2

1

33

bee

@bee_sec_san

3 years

Self promote below. What are you working on? Let everyone see :) I am interested!

26

6

35

bee

@bee_sec_san

2 years

In the future, all wallets will have a similar function to @meta_angels lending to lend your NFTs out to a hot wallet. Keep your NFTs in a vault, never make transactions with it but lend out your NFTs to a hot wallet to be eligible for allow lists, airdrops etc.

4

5

34

bee

@bee_sec_san

3 years

@jna_sh AWS Systems IoT Kettle Manager is amazing. My team used to manually boil the kettle, but now we have it in a Fargate Kubernetes Cluster it is so much easier. Especially when more than 2 people want to boil water at the same time, we can use network load balancers for it!

2

33

bee

@bee_sec_san

3 years

#infosecbikini

0

4

34

bee

@bee_sec_san

3 years

Just read how Boeing tested in production.

3

9

33

bee

@bee_sec_san

2 years

Your seed phrase is the most important part of your crypto security. But, I bet you haven't thought much about it other than "write it down". Here is the essential information you need to secure your assets properly 🔐

3

14

31

bee

@bee_sec_san

3 years

@SecurityCharlie @caseyjohnellis Alternative: curl the website recursively and run PyWhat on it

GitHub - bee-san/pyWhat: 🐸 Identify anything. pyWhat easily lets you identify emails, IP address...

🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️ - bee-san/pyWhat

github.com

0

13

33

bee

@bee_sec_san

2 years

Avocados should have different toys inside instead of the same wooden ball every time

5

32

bee

@bee_sec_san

3 years

Today was a big day for my #web3 learnings! 1. Completed @_buildspace @solana course 💪 2. Voted in my first @developer_dao proposal 🥳

0

1

31