Anton (therceman)
@therceman.bsky.social
Bug Bounty Hunter
www.therceman.dev
www.therceman.dev
Hello everyone 👋
Almost 800 followers, wow 😀
Almost 800 followers, wow 😀
May 24, 2025 at 5:01 PM
Hello everyone 👋
Almost 800 followers, wow 😀
Almost 800 followers, wow 😀
Merry Christmas 🎄
December 24, 2024 at 8:40 PM
Merry Christmas 🎄
Reposted by Anton (therceman)
Bug Bounty Tip
SSRF: PDF iframe Injection
Cheers!
SSRF: PDF iframe Injection
Cheers!
December 5, 2024 at 2:24 PM
Bug Bounty Tip
SSRF: PDF iframe Injection
Cheers!
SSRF: PDF iframe Injection
Cheers!
Bug Bounty Tip
SSRF: PDF iframe Injection
Cheers!
SSRF: PDF iframe Injection
Cheers!
December 5, 2024 at 2:24 PM
Bug Bounty Tip
SSRF: PDF iframe Injection
Cheers!
SSRF: PDF iframe Injection
Cheers!
Reposted by Anton (therceman)
Bug Bounty Tip
Parameter Manipulation:
Email Link Hijacking
Cheers!
Parameter Manipulation:
Email Link Hijacking
Cheers!
December 3, 2024 at 2:06 PM
Bug Bounty Tip
Parameter Manipulation:
Email Link Hijacking
Cheers!
Parameter Manipulation:
Email Link Hijacking
Cheers!
Bug Bounty Tip
Parameter Manipulation:
Email Link Hijacking
Cheers!
Parameter Manipulation:
Email Link Hijacking
Cheers!
December 3, 2024 at 2:06 PM
Bug Bounty Tip
Parameter Manipulation:
Email Link Hijacking
Cheers!
Parameter Manipulation:
Email Link Hijacking
Cheers!
Help Jobert Abma to claim his account. Report fake one with the proof to this X post x.com/jobertabma/s...
November 30, 2024 at 6:07 PM
Help Jobert Abma to claim his account. Report fake one with the proof to this X post x.com/jobertabma/s...
Reposted by Anton (therceman)
Bug Bounty Tip
XSS Filter Bypass: mXSS
Cheers!
XSS Filter Bypass: mXSS
Cheers!
November 28, 2024 at 11:22 AM
Bug Bounty Tip
XSS Filter Bypass: mXSS
Cheers!
XSS Filter Bypass: mXSS
Cheers!
Bug Bounty Tip
XSS Filter Bypass: mXSS
Cheers!
XSS Filter Bypass: mXSS
Cheers!
November 28, 2024 at 11:22 AM
Bug Bounty Tip
XSS Filter Bypass: mXSS
Cheers!
XSS Filter Bypass: mXSS
Cheers!
Reposted by Anton (therceman)
My latest blog post is live! nastystereo.com/security/cro...
Read how to send a cross-site POST without including a Content-Type header (without CORS). It even works with navigator.sendBeacon
Read how to send a cross-site POST without including a Content-Type header (without CORS). It even works with navigator.sendBeacon
November 27, 2024 at 9:10 AM
My latest blog post is live! nastystereo.com/security/cro...
Read how to send a cross-site POST without including a Content-Type header (without CORS). It even works with navigator.sendBeacon
Read how to send a cross-site POST without including a Content-Type header (without CORS). It even works with navigator.sendBeacon
Reposted by Anton (therceman)
You can now download preview edition of my bug bounty book with 3 tips & tricks
book.therceman.dev
Cheers!
book.therceman.dev
Cheers!
November 25, 2024 at 3:12 PM
You can now download preview edition of my bug bounty book with 3 tips & tricks
book.therceman.dev
Cheers!
book.therceman.dev
Cheers!
You can now download preview edition of my bug bounty book with 3 tips & tricks
book.therceman.dev
Cheers!
book.therceman.dev
Cheers!
November 25, 2024 at 3:12 PM
You can now download preview edition of my bug bounty book with 3 tips & tricks
book.therceman.dev
Cheers!
book.therceman.dev
Cheers!
Bug Bounty Tip
XSS WAF Bypass by multi-char HTML entities
fj translates to fj
>⃒ translates to > + [?]
<⃒ translates to < + [?]
[?] - Unicode symbol
XSS WAF Bypass by multi-char HTML entities
fj translates to fj
>⃒ translates to > + [?]
<⃒ translates to < + [?]
[?] - Unicode symbol
November 24, 2024 at 7:57 PM
Bug Bounty Tip
XSS WAF Bypass by multi-char HTML entities
fj translates to fj
>⃒ translates to > + [?]
<⃒ translates to < + [?]
[?] - Unicode symbol
XSS WAF Bypass by multi-char HTML entities
fj translates to fj
>⃒ translates to > + [?]
<⃒ translates to < + [?]
[?] - Unicode symbol
Reposted by Anton (therceman)
The "bug bounty hunters and content creators" starter pack is now up to 60 users! Follow this to get instantly connected to the bug bounty community & let me know if I've missed you off!
go.bsky.app/GD7hKPX
go.bsky.app/GD7hKPX
Bug bounty hunters & content creators
Join the conversation
go.bsky.app
November 23, 2024 at 4:21 PM
The "bug bounty hunters and content creators" starter pack is now up to 60 users! Follow this to get instantly connected to the bug bounty community & let me know if I've missed you off!
go.bsky.app/GD7hKPX
go.bsky.app/GD7hKPX
My bug bounty book is now available on Lemon Squeezy, offering more payment options for your convenience.
Cheers!
Cheers!
November 22, 2024 at 11:33 AM
My bug bounty book is now available on Lemon Squeezy, offering more payment options for your convenience.
Cheers!
Cheers!
Reposted by Anton (therceman)
In case you missed it...the DEF CON video of my talk 'Splitting the Email Atom' is finally here! 🚀 Watch me demonstrate how to turn an email address into RCE on Joomla, bypass Zero Trust defences, and exploit parser discrepancies for misrouted emails. Don’t miss it:
youtu.be/JERBqoTllaE?...
youtu.be/JERBqoTllaE?...
DEF CON 32 - Splitting the email atom exploiting parsers to bypass access controls - Gareth Heyes
YouTube video by DEFCONConference
youtu.be
November 22, 2024 at 7:27 AM
In case you missed it...the DEF CON video of my talk 'Splitting the Email Atom' is finally here! 🚀 Watch me demonstrate how to turn an email address into RCE on Joomla, bypass Zero Trust defences, and exploit parser discrepancies for misrouted emails. Don’t miss it:
youtu.be/JERBqoTllaE?...
youtu.be/JERBqoTllaE?...
Bug Bounty Tip
You can hide your XSS payload inside SVG or Math element to bypass the XSS Sanitizer or WAF filter
Cheers!
You can hide your XSS payload inside SVG or Math element to bypass the XSS Sanitizer or WAF filter
Cheers!
November 21, 2024 at 8:07 PM
Bug Bounty Tip
You can hide your XSS payload inside SVG or Math element to bypass the XSS Sanitizer or WAF filter
Cheers!
You can hide your XSS payload inside SVG or Math element to bypass the XSS Sanitizer or WAF filter
Cheers!
Reposted by Anton (therceman)
Any bug bounty people around? I'm creating a starter pack of people to follow but it's pretty brief currently! Let me know if you'd like to be added: go.bsky.app/GD7hKPX
November 21, 2024 at 3:23 PM
Any bug bounty people around? I'm creating a starter pack of people to follow but it's pretty brief currently! Let me know if you'd like to be added: go.bsky.app/GD7hKPX
Book: Bug Bounty Tips and Tricks Vol.1
Edition: Pre-Sale
Tricks: 18 Tips and Tricks
Price: $13.37 (33% OFF)
🔗 book.therceman.dev
Edition: Pre-Sale
Tricks: 18 Tips and Tricks
Price: $13.37 (33% OFF)
🔗 book.therceman.dev
November 21, 2024 at 4:54 PM
Book: Bug Bounty Tips and Tricks Vol.1
Edition: Pre-Sale
Tricks: 18 Tips and Tricks
Price: $13.37 (33% OFF)
🔗 book.therceman.dev
Edition: Pre-Sale
Tricks: 18 Tips and Tricks
Price: $13.37 (33% OFF)
🔗 book.therceman.dev
Reposted by Anton (therceman)
Bug Bounty book in progress…
November 17, 2024 at 6:56 PM
Bug Bounty book in progress…
How many bug bounty hunters and penetration testers are here? 😀
November 7, 2024 at 1:34 PM
How many bug bounty hunters and penetration testers are here? 😀