Spix0r
@spix0r.bsky.social
Cyber Security Enthusiast | Github: https://github.com/Spix0r
Pinned
Spix0r
@spix0r.bsky.social
· Dec 24
To hack a thing, first learn to build it.
It’s been a while since my last update, but I’m thrilled to share some exciting news about my project called Fback
1/5
#bugbounty #bugbountytips #bugbountytools #recon #hacking #CyberSecurity
1/5
#bugbounty #bugbountytips #bugbountytools #recon #hacking #CyberSecurity
July 8, 2025 at 6:45 AM
It’s been a while since my last update, but I’m thrilled to share some exciting news about my project called Fback
1/5
#bugbounty #bugbountytips #bugbountytools #recon #hacking #CyberSecurity
1/5
#bugbounty #bugbountytips #bugbountytools #recon #hacking #CyberSecurity
Subdomain Enumeration - Finding subdomains that are hidden in the cloud.
We need to conduct a certificate search on the IP ranges of cloud providers such as Amazon, Digital Ocean, Google, and Microsoft. 1/3
We need to conduct a certificate search on the IP ranges of cloud providers such as Amazon, Digital Ocean, Google, and Microsoft. 1/3
February 12, 2025 at 4:21 PM
Subdomain Enumeration - Finding subdomains that are hidden in the cloud.
We need to conduct a certificate search on the IP ranges of cloud providers such as Amazon, Digital Ocean, Google, and Microsoft. 1/3
We need to conduct a certificate search on the IP ranges of cloud providers such as Amazon, Digital Ocean, Google, and Microsoft. 1/3
Root Detection & SSL Bypass Script
github.com/0xCD4/SSL-by...
github.com/0xCD4/SSL-by...
GitHub - 0xCD4/SSL-bypass: SSL bypass check
SSL bypass check. Contribute to 0xCD4/SSL-bypass development by creating an account on GitHub.
github.com
February 9, 2025 at 8:49 AM
Root Detection & SSL Bypass Script
github.com/0xCD4/SSL-by...
github.com/0xCD4/SSL-by...
Reposted by Spix0r
I’ve updated the bug bounty & content creators starter pack with classic research group @hackerschoice.bsky.social! Let me know if you’re not on this list and would like to be added.
go.bsky.app/GD7hKPX
go.bsky.app/GD7hKPX
February 3, 2025 at 6:36 PM
I’ve updated the bug bounty & content creators starter pack with classic research group @hackerschoice.bsky.social! Let me know if you’re not on this list and would like to be added.
go.bsky.app/GD7hKPX
go.bsky.app/GD7hKPX
I’ve added a new feature to Robofinder, and now you can extract old parameters from archived robots.txt files. This is very useful for your recon process because you may find hidden or deprecated parameters that other tools might miss.
Github: github.com/Spix0r/robof...
Github: github.com/Spix0r/robof...
January 30, 2025 at 6:45 PM
I’ve added a new feature to Robofinder, and now you can extract old parameters from archived robots.txt files. This is very useful for your recon process because you may find hidden or deprecated parameters that other tools might miss.
Github: github.com/Spix0r/robof...
Github: github.com/Spix0r/robof...
Reposted by Spix0r
During #x3ctf, I discovered an unintended solution that turned out to be a pretty cool generic technique. It allows you to detect the result of a selector during CSS Injection, bypassing any CSP restricting external requests!
Check out the writeup below:
jorianwoltjer.com/blog/p/ctf/x...
Check out the writeup below:
jorianwoltjer.com/blog/p/ctf/x...
Post: x3CTF - blogdog (+ new CSS Injection XS-Leak!) | Jorian Woltjer
A "hard web xssbot" challenge about a fun browser quirk with the is= attribute to perform CSS Injection. Bypass the strict CSP with an unintended new technique to XS-Leak a selector's result by detect...
jorianwoltjer.com
January 26, 2025 at 9:14 PM
During #x3ctf, I discovered an unintended solution that turned out to be a pretty cool generic technique. It allows you to detect the result of a selector during CSS Injection, bypassing any CSP restricting external requests!
Check out the writeup below:
jorianwoltjer.com/blog/p/ctf/x...
Check out the writeup below:
jorianwoltjer.com/blog/p/ctf/x...
Robots.txt File And #Reconnaissance
What is a robots.txt file?
The robots.txt file is designed to restrict web crawlers from accessing certain parts of a website. However, it often inadvertently reveals sensitive directories that the site owner prefers to keep unindexed.
1/3
What is a robots.txt file?
The robots.txt file is designed to restrict web crawlers from accessing certain parts of a website. However, it often inadvertently reveals sensitive directories that the site owner prefers to keep unindexed.
1/3
December 30, 2024 at 5:37 PM
Robots.txt File And #Reconnaissance
What is a robots.txt file?
The robots.txt file is designed to restrict web crawlers from accessing certain parts of a website. However, it often inadvertently reveals sensitive directories that the site owner prefers to keep unindexed.
1/3
What is a robots.txt file?
The robots.txt file is designed to restrict web crawlers from accessing certain parts of a website. However, it often inadvertently reveals sensitive directories that the site owner prefers to keep unindexed.
1/3
Writeup-Miner is live again on T.me/Daily_Writeups
Join to be among the first to access the latest cybersecurity write-ups!
Source Code: github.com/Spix0r/write...
Join to be among the first to access the latest cybersecurity write-ups!
Source Code: github.com/Spix0r/write...
December 26, 2024 at 12:28 PM
Writeup-Miner is live again on T.me/Daily_Writeups
Join to be among the first to access the latest cybersecurity write-ups!
Source Code: github.com/Spix0r/write...
Join to be among the first to access the latest cybersecurity write-ups!
Source Code: github.com/Spix0r/write...
Reposted by Spix0r
Find out about new JavaScript security vulnerabilites in npm packages on the Node.js Security newsletter: www.nodejs-security.com/newsletter/n...
December 25, 2024 at 4:00 PM
Find out about new JavaScript security vulnerabilites in npm packages on the Node.js Security newsletter: www.nodejs-security.com/newsletter/n...
To hack a thing, first learn to build it.
December 24, 2024 at 3:12 PM
To hack a thing, first learn to build it.
Reposted by Spix0r
Hey BlueSky!
I case you missed it:
I've created cspbypass.com
A site where you can search for known CSP bypass gadgets to gain XSS.
It already contains a bunch of useful gadgets with contributions from your favourite hackers.
If you have some CSP bypasses to share, feel free to contribute!
I case you missed it:
I've created cspbypass.com
A site where you can search for known CSP bypass gadgets to gain XSS.
It already contains a bunch of useful gadgets with contributions from your favourite hackers.
If you have some CSP bypasses to share, feel free to contribute!
November 14, 2024 at 2:57 PM
Hey BlueSky!
I case you missed it:
I've created cspbypass.com
A site where you can search for known CSP bypass gadgets to gain XSS.
It already contains a bunch of useful gadgets with contributions from your favourite hackers.
If you have some CSP bypasses to share, feel free to contribute!
I case you missed it:
I've created cspbypass.com
A site where you can search for known CSP bypass gadgets to gain XSS.
It already contains a bunch of useful gadgets with contributions from your favourite hackers.
If you have some CSP bypasses to share, feel free to contribute!
Reposted by Spix0r
I'm building two web security tools at the moment:
Shazzer - A shared online fuzzer
shazzer.co.uk
Hackvertor - Web security conversion tool
hackvertor.co.uk
Shazzer - A shared online fuzzer
shazzer.co.uk
Hackvertor - Web security conversion tool
hackvertor.co.uk
December 20, 2024 at 9:12 AM
I'm building two web security tools at the moment:
Shazzer - A shared online fuzzer
shazzer.co.uk
Hackvertor - Web security conversion tool
hackvertor.co.uk
Shazzer - A shared online fuzzer
shazzer.co.uk
Hackvertor - Web security conversion tool
hackvertor.co.uk
I've created a repo for top Nuclei templates from the security community. Contribute your templates or find powerful ones for CVE scans, fuzzing, and more! Let's build the largest Nuclei template library together! github.com/Spix0r/Nucle...
GitHub - Spix0r/Nuclei-Community-Templates: A collaborative hub for Nuclei templates. Contribute, share, and explore powerful vulnerability detection tools!
A collaborative hub for Nuclei templates. Contribute, share, and explore powerful vulnerability detection tools! - Spix0r/Nuclei-Community-Templates
github.com
December 21, 2024 at 2:47 PM
I've created a repo for top Nuclei templates from the security community. Contribute your templates or find powerful ones for CVE scans, fuzzing, and more! Let's build the largest Nuclei template library together! github.com/Spix0r/Nucle...
Reposted by Spix0r
Can you drop every useful resources about hacking Wordpress websites? 👇🏻
December 17, 2024 at 3:59 PM
Can you drop every useful resources about hacking Wordpress websites? 👇🏻
Reposted by Spix0r
If you write Python scripts, make yourself a favor and use the Rich library to beautify their output 🐍 🧑💻
GitHub - Textualize/rich: Rich is a Python library for rich text and beautiful formatting in the terminal.
Rich is a Python library for rich text and beautiful formatting in the terminal. - Textualize/rich
github.com
November 21, 2024 at 12:20 PM
If you write Python scripts, make yourself a favor and use the Rich library to beautify their output 🐍 🧑💻
Cloudrecon - This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeger[.]gay provider.
github.com/Spix0r/cloud...
github.com/Spix0r/cloud...
GitHub - Spix0r/cloudrecon: This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeger.gay provider.
This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeger.gay provider. - Spix0r/cloudrecon
github.com
December 15, 2024 at 10:31 AM
Cloudrecon - This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeger[.]gay provider.
github.com/Spix0r/cloud...
github.com/Spix0r/cloud...
Reposted by Spix0r
A younger me, as a pentester and bug hunter, had exactly the bias described in this article 🤫
Luckily, I later worked with and for "the other side" and it changed my mind 🤯
I hope young people reading it will avoid taking years to understand the complexities of fixing bugs in a timely manner 🤞
Luckily, I later worked with and for "the other side" and it changed my mind 🤯
I hope young people reading it will avoid taking years to understand the complexities of fixing bugs in a timely manner 🤞
Why Can't You Fix This Bug Faster?
Fixing security vulnerabilities in a timely manner is more complicated than you realize.
maxwelldulin.com
December 14, 2024 at 11:02 PM
A younger me, as a pentester and bug hunter, had exactly the bias described in this article 🤫
Luckily, I later worked with and for "the other side" and it changed my mind 🤯
I hope young people reading it will avoid taking years to understand the complexities of fixing bugs in a timely manner 🤞
Luckily, I later worked with and for "the other side" and it changed my mind 🤯
I hope young people reading it will avoid taking years to understand the complexities of fixing bugs in a timely manner 🤞
Reposted by Spix0r
Hackvertor BApp pro tip: 🛠️
Did you know you can use Hackvertor tags inside custom tags? This also works with globally declared variables!
Example set a global in a request:
<@set_var(true)>1337<@/set_var>
Custom JS tag:
output = convert("<
@get_var
/>")
Now that's power 💪
Did you know you can use Hackvertor tags inside custom tags? This also works with globally declared variables!
Example set a global in a request:
<@set_var(true)>1337<@/set_var>
Custom JS tag:
output = convert("<
@get_var
/>")
Now that's power 💪
December 9, 2024 at 12:27 PM
Hackvertor BApp pro tip: 🛠️
Did you know you can use Hackvertor tags inside custom tags? This also works with globally declared variables!
Example set a global in a request:
<@set_var(true)>1337<@/set_var>
Custom JS tag:
output = convert("<
@get_var
/>")
Now that's power 💪
Did you know you can use Hackvertor tags inside custom tags? This also works with globally declared variables!
Example set a global in a request:
<@set_var(true)>1337<@/set_var>
Custom JS tag:
output = convert("<
@get_var
/>")
Now that's power 💪
Reposted by Spix0r
While everyone waits for the next @bsideslondon.bsky.social, here are my slides from the previous event. This isn't entirely for self-promotion 😆, it's also because of the lack of resources out there for SOSL injection Apex and Java code for Salesforce.
github.com/N1ckDunn/SOS...
github.com/N1ckDunn/SOS...
GitHub - N1ckDunn/SOSLInjection
Contribute to N1ckDunn/SOSLInjection development by creating an account on GitHub.
github.com
December 1, 2024 at 2:34 PM
While everyone waits for the next @bsideslondon.bsky.social, here are my slides from the previous event. This isn't entirely for self-promotion 😆, it's also because of the lack of resources out there for SOSL injection Apex and Java code for Salesforce.
github.com/N1ckDunn/SOS...
github.com/N1ckDunn/SOS...
I've developed a Python tool called Fback that generates wordlists for fuzzing backup files. It takes a JSON-based pattern file and a seed wordlist as input and produces a target-specific wordlist as output. Github: github.com/Spix0r/Fback
#bugbounty #bugbountytools #cybersecurity
#bugbounty #bugbountytools #cybersecurity
GitHub - Spix0r/fback: This is a useful Python script for generating a target specific wordlist for fuzzing backup files.
This is a useful Python script for generating a target specific wordlist for fuzzing backup files. - Spix0r/fback
github.com
December 7, 2024 at 11:18 AM
I've developed a Python tool called Fback that generates wordlists for fuzzing backup files. It takes a JSON-based pattern file and a seed wordlist as input and produces a target-specific wordlist as output. Github: github.com/Spix0r/Fback
#bugbounty #bugbountytools #cybersecurity
#bugbounty #bugbountytools #cybersecurity
Reposted by Spix0r
I've updated the bug bounty starter pack with some more hitters - re-subscribe to get them in your timeline. There's still 65 open places remaining so just let me know if you'd like to be added! bsky.app/starter-pack...
December 6, 2024 at 3:25 PM
I've updated the bug bounty starter pack with some more hitters - re-subscribe to get them in your timeline. There's still 65 open places remaining so just let me know if you'd like to be added! bsky.app/starter-pack...
Reposted by Spix0r
I've just updated Shortscan to support reading a list of URLs to scan from a file (and included a minor bugfix). Feedback welcome! The latest version is v0.9.2 and can be found on Github: github.com/bitquark/sho...
GitHub - bitquark/shortscan: An IIS short filename enumeration tool
An IIS short filename enumeration tool. Contribute to bitquark/shortscan development by creating an account on GitHub.
github.com
November 25, 2024 at 12:55 AM
I've just updated Shortscan to support reading a list of URLs to scan from a file (and included a minor bugfix). Feedback welcome! The latest version is v0.9.2 and can be found on Github: github.com/bitquark/sho...