drak3hft7 @drak3hft7 Twitter profile

Pinned Tweet

drak3hft7

@drak3hft7

28 days

did you say ‘stored xss’? all accepted.😄😇 #bugbounty @yeswehack

13

6

211

Last Seen Profiles

@PinkyKrispy

@Sam013131816963

@bintalriya92832

@bokeplokalmalam

@Ainaraahdez17_

@eModerate

@facebook

@meowjj3

@LisaKnapp373299

@natphatz

@f_sheikhalizade

@aznudemen

@kularkvark

@BrentKittelson

@nevahhim

@KMamiho

@abhineet_baghel

@salvaquishpe

@Agent_Beer

@Leo__Hunter__

@lifewithjaidaa

@ToldbyJo

@bokeplokalmalam

@OneWwx

@liquorexpressbc

@mairuara1

@suphachai210

@naacndy_

@lolipopkkk0

@DarylFransoo

@yhodaif

@MooDreaM

@Muntathir_T

@orgulochristian

@Capablenino_FS

@bokeplokalmalam

drak3hft7

@drak3hft7

8 months

My tips: where it is not feasible to execute XSS. shop? Try using this payload: <h1>!!</h1><br/><h2><p style=\"color:red;\">there is a new discount code of 80%. Take advantage of it now!</p><form action=\" https://url/\"><button type=\"submit\">Click Here</button></h2> #bugbounty

5

69

321

drak3hft7

@drak3hft7

7 months

Today I found a subdomain takeover in azure. I must say that the guide created by @_godiego__ is fantastic. Link: #BugBounty #bugbountytip

11

60

306

drak3hft7

@drak3hft7

3 months

Afternoon reading while the baby sleeps 😴 😄. Don't stop learning. ✌🏼 #offensivesecurity #CyberSec #bugbounty #graphql

2

19

234

drak3hft7

@drak3hft7

1 month

did you say ‘stored xss’? 😄😀😃 @yeswehack #bugbounty

12

3

168

drak3hft7

@drak3hft7

10 months

Many people have asked me how I found the latest sql injection. With this payload: 0'XOR(if(now()=sysdate(),sleep(10),0)) XOR'Z :-) #bugbounty #bugbountytips #CyberSecurity #infosec #cybersec

3

46

153

drak3hft7

@drak3hft7

7 months

Yay, I was awarded a $5,000 bounty on @Hacker0x01 ! #TogetherWeHitHarder Come on :-D #bugbounty

HackerOne profile - drak3hft7

- https://linktr.ee/drak3hft7

hackerone.com

10

1

135

drak3hft7

@drak3hft7

8 months

Today during a test, I bypassed an F5 waf with this payload for xss. <svg%0aonload=confirm/*test*/``// #bugbounty #bypass #CyberSecurity

1

19

126

drak3hft7

@drak3hft7

5 months

Live hacking event @c14dd49h @yeswehack #paris #bugbounty

7

2

122

drak3hft7

@drak3hft7

3 years

Bypass that gave me a nice help today :-) #XSS #BugBounty #bugbountytips "><details/open/ontoggle=alert(document.domain)> #CyberSecurity

1

26

111

drak3hft7

@drak3hft7

2 years

Payload that has given me some satisfaction in these periods. XSS Bypass waf `<dETAILS%0aopen%0aonToGgle%0a%3d%0aa%3dprompt,a()%20x>` #BugBounty #bugbountytip #cybersecurity

2

39

109

drak3hft7

@drak3hft7

14 days

Collaboration always has its advantages. @Al7eX91 #bugbounty @Hacker0x01

3

5

114

drak3hft7

@drak3hft7

11 months

Yesterday I found an RCE on the @yeswehack platform. 1. after the recon of all subdomains, many skip an essential step: the port scan. 2. with naabu I found an uncommon port with an active web server, Vulnerable to a CVE of 2017. Reverse shell obtained. #bugbountytips #bugbounty

5

9

95

drak3hft7

@drak3hft7

1 month

Yay, I was awarded a $2,000 bounty on @Hacker0x01 ! #TogetherWeHitHarder

HackerOne profile - drak3hft7

- https://linktr.ee/drak3hft7

hackerone.com

5

3

94

drak3hft7

@drak3hft7

2 months

Some swag from @SynackRedTeam #bugbounty #cybersec

0

1

89

drak3hft7

@drak3hft7

1 year

First bug in #xiaomi ✌🏼 #bugbounty @Hacker0x01

5

1

86

drak3hft7

@drak3hft7

9 months

I have updated my repo, adding bloodhound-python. #CyberSecurity #redteam #ActiveDirectory

GitHub - drak3hft7/Cheat-Sheet---Active-Directory: This cheat sheet contains common enumeration and...

This cheat sheet contains common enumeration and attack methods for Windows Active Directory with the use of powershell. - drak3hft7/Cheat-Sheet---Active-Directory

github.com

1

20

88

drak3hft7

@drak3hft7

9 months

Add to your personal wordlist: database.sql :-) #BugBounty #CyberSec

1

84

drak3hft7

@drak3hft7

9 months

Thanks @yeswehack They are fantastic. Now I feel invincible 😄😎✌🏼🤭🤗 #bugbounty

3

0

80

drak3hft7

@drak3hft7

4 months

Payload xss I used today to bypass the protection on website: '1')"AutoFocus/ContentEditable/OnFocusIn=(confirm)(1)// #BugBounty #bugbountytips

0

9

79

drak3hft7

@drak3hft7

8 months

I earned $3,000 for my submission on @bugcrowd #ItTakesACrowd 😁

5

1

68

drak3hft7

@drak3hft7

7 months

Thanks @yeswehack 😁🥰

0

69

drak3hft7

@drak3hft7

10 months

Just got a reward for a critical vulnerability submitted on @yeswehack -- SQL Injection (CWE-89). #YesWeRHackers

2

0

67

drak3hft7

@drak3hft7

2 months

Time to relax with the family. #sea #italy 🏄🏻‍♂️🏊🏼‍♂️ T-shirt top @yeswehack 😄

2

0

62

drak3hft7

@drak3hft7

10 months

Hi @Hacker0x01 , Thank you for this swag. 1500 points ✌🏼 #bugbounty #cybersec

0

1

62

drak3hft7

@drak3hft7

1 year

After several months of assessments and interviews I’ve just accomplished one of my all time goal, becoming a Synack Red Team member. Thanks @SynackRedTeam #cybersecurity #bugbounty #securityresearch #synack #redteam

6

3

60

drak3hft7

@drak3hft7

2 years

small goal, but very satisfied. 500 reputation points @Hacker0x01 #hackerone #BugBounty

3

1

60

drak3hft7

@drak3hft7

1 month

Happy to have reached and exceeded 5000 points thanks to two critical vulnerabilities accepted today. 16th in the global ranking. @yeswehack #bugbounty 🤙🏻😊😎

1

0

61

drak3hft7

@drak3hft7

2 months

I finished sixth in @yeswehack Q2 2024. I had a goal of getting back into the top five to upgrade my poster in my hacking room, but by a few points it fell short. 😄😁😎 too strong there in front. #BugBounty

3

1

60

drak3hft7

@drak3hft7

7 months

Yay, I was awarded a $500 bounty on @Hacker0x01 ! #TogetherWeHitHarder always check whether a public document is confidential or not :-) If yes, definitely look to see if others have been erroneously made public. #BugBounty

HackerOne profile - drak3hft7

- https://linktr.ee/drak3hft7

hackerone.com

2

3

59

drak3hft7

@drak3hft7

5 months

Yay, I was awarded a $ $$$ bounty on @Hacker0x01 ! #TogetherWeHitHarder

HackerOne profile - drak3hft7

- https://linktr.ee/drak3hft7

hackerone.com

0

58

drak3hft7

@drak3hft7

1 year

The last find before the holidays. #BugBounty @Hacker0x01 #hackerone , i love information disclosure 🤭

2

1

57

drak3hft7

@drak3hft7

2 years

Finally. Thanks @Hacker0x01 for swags :-) #hackerone #BugBounty

1

0

55

drak3hft7

@drak3hft7

3 months

Just got a reward for a high vulnerability submitted on @yeswehack -- Insecure Storage of Sensitive Information (CWE-922). #YesWeRHackers

3

1

55

drak3hft7

@drak3hft7

1 year

First 4-number bounty in #synack for me. @SynackRedTeam #cybersecurity :-) remember to try every single feature (old and new). #bugbounty

3

0

54

drak3hft7

@drak3hft7

8 months

First time in global top 25 :-) Thanks @yeswehack :-) #BugBounty

8

0

54

drak3hft7

@drak3hft7

4 months

nice catch last tonight 🧙‍♂️ @SynackRedTeam #BugBounty

0

1

54

drak3hft7

@drak3hft7

10 days

Just got a reward for a critical vulnerability submitted on @yeswehack -- Insecure Direct Object Reference (IDOR) (CWE-639). #YesWeRHackers Come on!!!!

drak3hft7 hunter profile - YesWeHack

drak3hft7 hunter profile

yeswehack.com

3

0

54

drak3hft7

@drak3hft7

7 months

Yay, I was awarded a $ $$$ bounty on @Hacker0x01 ! #TogetherWeHitHarder

HackerOne profile - drak3hft7

- https://linktr.ee/drak3hft7

hackerone.com

1

52

drak3hft7

@drak3hft7

1 year

A good hunting weekend. Let's hope for the best. @yeswehack :-) #BugBounty

1

2

52

drak3hft7

@drak3hft7

1 month

night of rewards. Over the past few weeks I have focused a lot on a @Hacker0x01 program with premium features and licences. I got to parts that were not easy to get to without investing money, but I opened a lot of reports. Try investing #bugbounty #bugbountytips

1

2

52

drak3hft7

@drak3hft7

1 month

New entry 😄 thanks @yeswehack #bugbounty

3

0

52

drak3hft7

@drak3hft7

5 months

Yay, I was awarded a $500 bounty on @Hacker0x01 ! #TogetherWeHitHarder

HackerOne profile - drak3hft7

- https://linktr.ee/drak3hft7

hackerone.com

1

0

52

drak3hft7

@drak3hft7

3 months

It was a very tough month, but really fun. I did a lot of hacking with some friends as well. I usually don't look at any rankings, however this time, a look is ok. @Issam_Rabhi congrats, very impressive. #YesWeRHackers @yeswehack #bugbounty

7

0

51

drak3hft7

@drak3hft7

2 years

Thanks @PentesterLab for this fantastic swag. #pentesterlab

1

2

49

drak3hft7

@drak3hft7

11 months

I love Race Condition :-) @SynackRedTeam #synack #cybersecurity

2

0

48

drak3hft7

@drak3hft7

8 months

An exceptional year of bug bounty that led me to be 8th in the world in @yeswehack in 2023 and 26th ever. I have reported so many vulnerabilities to so many companies, from low to critical impacts. #YesWeRHackers #BugBounty

2

0

49

drak3hft7

@drak3hft7

2 months

🫡 😁 #bugbounty @SynackRedTeam

4

1

49

drak3hft7

@drak3hft7

5 months

I earned $1,500 for my submission on @bugcrowd #ItTakesACrowd #bugbounty

3

0

49

drak3hft7

@drak3hft7

8 months

Just got a reward for a critical vulnerability submitted on @yeswehack -- Use of Hard-coded Password (CWE-259). #YesWeRHackers - First Critical of 2024 :-) #BugBounty

2

1

45

drak3hft7

@drak3hft7

8 months

Yay, I was awarded a $$$ bounty on @Hacker0x01 ! #TogetherWeHitHarder

HackerOne profile - drak3hft7

- https://linktr.ee/drak3hft7

hackerone.com

1

0

46

drak3hft7

@drak3hft7

5 months

always check for vulnerabilities already fixed by the company. There are often regressions. #bugbountytips #synack @SynackRedTeam

1

2

45

drak3hft7

@drak3hft7

10 days

Just got a reward for a vulnerability submitted on @yeswehack -- Cross-site Scripting (XSS) - Stored (CWE-79). #YesWeRHackers

drak3hft7 hunter profile - YesWeHack

drak3hft7 hunter profile

yeswehack.com

2

0

46

drak3hft7

@drak3hft7

6 months

Just got a reward for a critical vulnerability submitted on @yeswehack -- Insecure Direct Object Reference (IDOR) (CWE-639). #YesWeRHackers Good Morning :-)

drak3hft7 hunter profile - YesWeHack

drak3hft7 hunter profile

yeswehack.com

5

1

45

drak3hft7

@drak3hft7

5 months

Live Hacking event in Paris ✌🏼 @yeswehack #bugbounty

2

0

44

drak3hft7

@drak3hft7

2 months

Yay, I was awarded a $ $$$ bounty on @Hacker0x01 ! #TogetherWeHitHarder

HackerOne profile - drak3hft7

- https://linktr.ee/drak3hft7

hackerone.com

1

0

45

drak3hft7

@drak3hft7

5 months

#NuovaFotoProfilo

2

1

44

drak3hft7

@drak3hft7

1 month

Yay, I was awarded a $ $$$ bounty on @Hacker0x01 ! #TogetherWeHitHarder

HackerOne profile - drak3hft7

- https://linktr.ee/drak3hft7

hackerone.com

1

43

drak3hft7

@drak3hft7

4 months

Thanks @yeswehack for Pulsar and Blackhole 😄💪🏻 Really nice graphics. #bugbounty

1

0

43

drak3hft7

@drak3hft7

2 months

Yay, I was awarded a $ $$$ bounty on @Hacker0x01 ! #TogetherWeHitHarder

HackerOne profile - drak3hft7

- https://linktr.ee/drak3hft7

hackerone.com

0

1

42

drak3hft7

@drak3hft7

5 months

See you in Paris ✌🏼 #LiveHackingEvent #bugbounty @yeswehack

2

0

42

drak3hft7

@drak3hft7

6 months

Just got a reward for a critical vulnerability submitted on @yeswehack -- Command Injection - Generic (CWE-77). #YesWeRHackers

drak3hft7 hunter profile - YesWeHack

drak3hft7 hunter profile

yeswehack.com

3

0

42

drak3hft7

@drak3hft7

8 months

Just got a reward for a vulnerability submitted on @yeswehack -- Code Injection (CWE-94). #YesWeRHackers

drak3hft7 hunter profile - YesWeHack

drak3hft7 hunter profile

yeswehack.com

1

42

drak3hft7

@drak3hft7

2 years

Thanks to @yeswehack for this reward. July/August/September: I worked on a BugBounty private program, where I reported more than 15 vulnerabilities. thanks to this I got this award: #DOZER . "study your target for a long time and hit." #bugbounty #cybersecurity #YesWeRHackers

3

0

40

drak3hft7

@drak3hft7

2 years

This weekend, I completed the API Penetration Testing course at designed by @hAPI_hacker . This course + its book Hacking Apis is the perfect combination for studying, learning and improving on API security testing. #BugBounty #penetrationtest #apisecurity

HomeRedirect

university.apisec.ai

4

7

39

drak3hft7

@drak3hft7

1 year

Digging deep often benefits us researchers. Thanks @SynackRedTeam #bugbounty #securityresearch

0

41

drak3hft7

@drak3hft7

5 months

After a bit of #hacking #bugbounty , it is always time for a family break 😄🏄🔆

2

0

41

drak3hft7

@drak3hft7

7 months

Yay, I was awarded a $ $$$ bounty on @Hacker0x01 ! #TogetherWeHitHarder

HackerOne profile - drak3hft7

- https://linktr.ee/drak3hft7

hackerone.com

1

40

drak3hft7

@drak3hft7

1 year

Yay, I was awarded a $500 bounty on @Hacker0x01 ! #TogetherWeHitHarder

HackerOne profile - drak3hft7

- https://linktr.ee/drak3hft7

hackerone.com

3

1

39

drak3hft7

@drak3hft7

1 month

Wow :-D Thanks @yeswehack #BugBounty

3

0

39

drak3hft7

@drak3hft7

2 years

finally in the top 100 of @yeswehack #BugBounty #YesWeRHackers

2

1

39

drak3hft7

@drak3hft7

7 months

Yay, I was awarded a $200 bounty on @Hacker0x01 ! #TogetherWeHitHarder

HackerOne profile - drak3hft7

- https://linktr.ee/drak3hft7

hackerone.com

2

0

39

drak3hft7

@drak3hft7

1 year

Playstation 🥰 @Hacker0x01 #bugbounty

3

0

37

drak3hft7

@drak3hft7

5 months

#adobecoldfusion #cybersecurity CVE-2024-20767

CVE-2024-20767: Critical Adobe ColdFusion Flaw Exposes Sensitive Files, PoC Published

Security researcher ma4ter has revealed details of a dangerous security vulnerability (CVE-2024-20767) in Adobe ColdFusion

securityonline.info

1

4

39

drak3hft7

@drak3hft7

9 months

Good work on @SynackRedTeam 😎✌🏼 #bugbounty #synack #CyberSecurity

0

37

drak3hft7

@drak3hft7

2 years

good monday morning. 3 reports accepted. Bug: DOM-based XSS @yeswehack #BugBounty

3

1

38

drak3hft7

@drak3hft7

20 days

Just got a reward for a vulnerability submitted on @yeswehack -- Cross-site Scripting (XSS) - Stored (CWE-79). #YesWeRHackers

drak3hft7 hunter profile - YesWeHack

drak3hft7 hunter profile

yeswehack.com

1

37

drak3hft7

@drak3hft7

7 months

Thanks @yeswehack 😁🥰

4

0

37

drak3hft7

@drak3hft7

7 years

@DiMarzio Ma non avete mai visto piovere?

0

3

35

drak3hft7

@drak3hft7

1 year

Thanks to @yeswehack for these awards. KING OF THE HILL: This achievement is awarded to hackers staying on the leaderboard’s top 5 for 3 months. SAPIENS: This achievement is awarded to hackers having submitted a valid report each month for 12 months. #bugbounty #YesWeRHackers

6

0

36

drak3hft7

@drak3hft7

7 months

Just got a reward for a vulnerability submitted on @yeswehack -- Improper Access Control - Generic (CWE-284). #YesWeRHackers

0

3

35

drak3hft7

@drak3hft7

1 month

Yay, I was awarded a $ $$$ bounty on @Hacker0x01 ! #TogetherWeHitHarder Blind stored 😃

HackerOne profile - drak3hft7

- https://linktr.ee/drak3hft7

hackerone.com

1

0

36

drak3hft7

@drak3hft7

29 days

Just got a reward for a vulnerability submitted on @yeswehack -- Cross-site Scripting (XSS) - Stored (CWE-79). #YesWeRHackers

drak3hft7 hunter profile - YesWeHack

drak3hft7 hunter profile

yeswehack.com

3

1

36

drak3hft7

@drak3hft7

2 years

Thanks to @yeswehack for this reward. thanks to this I got this award: #SURGEON . This achievement is awarded to hackers winning the Max Reward on a program. #bugbounty #cybersecurity #securityresearch #YesWeRHackers

6

1

34

drak3hft7

@drak3hft7

4 months

Just got a reward for a vulnerability submitted on @yeswehack -- Improper Access Control - Generic (CWE-284). #YesWeRHackers

drak3hft7 hunter profile - YesWeHack

drak3hft7 hunter profile

yeswehack.com

0

1

35

drak3hft7

@drak3hft7

2 years

Just got a reward for a vulnerability submitted on @yeswehack -- Information Disclosure (CWE-200). #YesWeRHackers --- Thanks @GodfatherOrwa , this is an api leak i learned from your videos. :-)

drak3hft7 hunter profile - YesWeHack

drak3hft7 hunter profile

yeswehack.com

1

2

34

drak3hft7

@drak3hft7

1 year

April ends. I had a bit of luck to be there. 🙃🥲 @yeswehack #bugbounty

5

1

35

drak3hft7

@drak3hft7

29 days

Just got a reward for a vulnerability submitted on @yeswehack -- Unrestricted Upload of File with Dangerous Type (CWE-434). #YesWeRHackers

drak3hft7 hunter profile - YesWeHack

drak3hft7 hunter profile

yeswehack.com

1

2

35

drak3hft7

@drak3hft7

1 year

Just got a reward for a vulnerability submitted on @yeswehack -- Cross-site Scripting (XSS) - Reflected (CWE-79). #YesWeRHackers with new CVE-2023-24488 on citrix :-) Payload: %0d%0a%0d%0a<script>alert(document.domain)</script>

drak3hft7 hunter profile - YesWeHack

drak3hft7 hunter profile

yeswehack.com

0

7

35

drak3hft7

@drak3hft7

2 months

Just got a reward for a high vulnerability submitted on @yeswehack -- Insecure Storage of Sensitive Information (CWE-922). #YesWeRHackers

drak3hft7 hunter profile - YesWeHack

drak3hft7 hunter profile