mXgarweg
Security researcher | bug bounty hunter
- #Schienenersatzverkehr nächste Woche vielleicht sogar schneller als mit der verspäteten Bahn nach #Dortmund fahren.🤣 #Wuppertal
- Completed "Build a Stylized To-Do List" CSS challenge on #freeCodeCamp. Learned that in CSS, anchor elements must be placed in a specific order for the design to work as desired: a:link, a:visited, a:hover, a:active
- I just completed Server-side Template Injection room on TryHackMe! Exploit various templating engines that lead to SSTI vulnerability. tryhackme.com/room/servers...
- I just completed the Web Security Academy lab: Password reset broken logic Token for password reset was not checked when new password was submitted. @WebSecAcademy portswigger.net/web-security...
- Reposted by mXgarweg[Not loaded yet]
- I just completed Hardening Basics Part 1 room on TryHackMe! Learn how to harden an Ubuntu Server! Covers a wide range of topics (Part 1) tryhackme.com/room/hardeni... #tryhackme
- Reposted by mXgarweg[Not loaded yet]
- Just solved : Web - Serveur/HTTP - Contournement de filtrage IP challenge on Root-Me :þ www.root-me.org?page=validat... @rootme_org #hacking #challenge #WebServeur
- Just solved : Web - Serveur/HTTP - User-agent challenge on Root-Me :þ www.root-me.org?page=validat... @rootme_org #hacking #challenge #WebServeur
- Just solved : Web - Serveur/Mot de passe faible challenge on Root-Me :þ www.root-me.org?page=validat... @rootme_org #hacking #challenge #WebServeur
- Just solved : Web - Serveur/HTML - Code source challenge on Root-Me :þ www.root-me.org?page=validat... @rootme_org #hacking #challenge #WebServeur
- In the end, it took just some Javascript deobfuscation to resolve this Web - Client/Javascript - Native code challenge on Root-Me :þ www.root-me.org?page=validat... @rootme_org #hacking #challenge #WebClient
- Just solved : Web - Client/Javascript - Obfuscation 2 challenge on Root-Me :þ www.root-me.org?page=validat... @rootme_org #hacking #challenge #WebClient
- Reposted by mXgarweg[Not loaded yet]
- Just solved : Web - Client/Javascript - Obfuscation 1 challenge on Root-Me :þ www.root-me.org?page=validat... @rootme_org #hacking #challenge #WebClient
- Just solved : Web - Client/Javascript - Authentification 2 challenge on Root-Me :þ www.root-me.org?page=validat... @rootme_org #hacking #challenge #WebClient
- Just solved : Web - Client/Javascript - Source challenge on Root-Me :þ www.root-me.org?page=validat... @rootme_org #hacking #challenge #WebClient
- Just solved : Web - Client/Javascript - Authentification challenge on Root-Me :þ www.root-me.org?page=validat... @rootme_org #hacking #challenge #WebClient
- Reposted by mXgarweg[Not loaded yet]
- "AI slop is the growing flood of low-effort, AI-generated content that sounds good but doesn't actually contain anything useful or productive."
- I just completed Input Manipulation & Prompt Injection room on TryHackMe! Understand the basics of LLM Prompt Injection attacks. tryhackme.com/room/inputma... #tryhackme
- Reposted by mXgarweg[Not loaded yet]
- I just completed tmux room on TryHackMe. Learn to use tmux, one of the most powerful multi-tasking tools on linux! tryhackme.com/room/rptmux?... #tryhackme
- I just completed Regular Expressions room on TryHackMe. Learn and practise using regular expressions. tryhackme.com/room/catrege... #tryhackme
- I just completed #XSS - Merry XSSMas room on TryHackMe. Learn about types of XSS vulnerabilities and how to prevent them. tryhackme.com/room/xss-aoc... #tryhackme
- I just completed module Bug Bounty Hunting Process in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox
- I just completed Intro to Cold System Forensics room on TryHackMe. A look into the concepts of cold system forensics and how DFIR teams examine offline systems. tryhackme.com/room/introto... #tryhackme
- I just completed Exploitation with #cURL - Hoperation Eggsploit room on TryHackMe. tryhackme.com/room/webhack... #tryhackme
- I just completed Corridor room on TryHackMe. Can you escape the Corridor? #IDOR tryhackme.com/room/corrido... #tryhackme
- I just completed #MITRE room on TryHackMe. Explore the various resources that MITRE has made available to the #cybersecurity community. tryhackme.com/room/mitre?u... #tryhackme
- Reposted by mXgarwegENOUGH IS ENOUGH
- Reposted by mXgarweg[Not loaded yet]
- I just completed Geolocating Images room on TryHackMe. Room to understand how to geolocate images tryhackme.com/room/geoloca... #tryhackme
- I just completed @pentesterlab.com 's Recon Badge!!!
- I just completed Next.js: CVE-2025-29927 room on TryHackMe. Explore an authorisation bypass vulnerability in Next.js. tryhackme.com/room/nextjsc... #tryhackme
- Reposted by mXgarweg[Not loaded yet]
- I just completed Introduction to Flask room on TryHackMe. How it works and how can you exploit it? tryhackme.com/room/flask?u... #tryhackme
- Reposted by mXgarweg[Not loaded yet]
- I just completed #React2Shell: CVE-2025-55182 room on TryHackMe. Explore the CVE-2025-55182 vulnerability in React server components. tryhackme.com/room/react2s... #tryhackme
- I just completed IDOR - Santa’s Little IDOR room on TryHackMe. Learn about #IDOR while helping pentest the TrypresentMe website. tryhackme.com/room/idor-ao... #tryhackme
- I just completed #WAF: Introduction room on TryHackMe. Learn about Web Application Firewalls and what differentiates them from other types of firewalls. #DefenceInDepth tryhackme.com/room/wafintr...
- I just completed Data Integrity & Model Poisoning room on TryHackMe. Understand how supply chain and model poisoning attacks can corrupt the underlying LLM. tryhackme.com/room/modelpo... #tryhackme
- I just completed Splunk Basics - Did you SIEM? room on TryHackMe. Learn how to ingest and parse custom log data using Splunk. tryhackme.com/room/splunkf... #tryhackme
- I just completed OWASP Top 10 2025: Insecure Data Handling room on TryHackMe. Learn about A04, A05, and A08 as they related to insecure data handling. tryhackme.com/room/oscomma... #tryhackme
- I just completed Phishing - Merry Clickmas room on TryHackMe. Learn how to use the Social-Engineer Toolkit to send phishing emails. tryhackme.com/room/phishin... #tryhackme
- My 2025 Duolingo stats are in! How did you do? #Duolingo365
- I just completed Linux CLI - Shells Bells room on TryHackMe. Explore the Linux command-line interface and use it to unveil Christmas mysteries. tryhackme.com/room/linuxcl... #tryhackme
- I just completed OWASP Top 10 2025: IAAA Failures room on TryHackMe. Learn about A01, A07, and A09 in how they related to failures in the applied IAAA model. tryhackme.com/room/owaspto... #tryhackme
- Reposted by mXgarweg[Not loaded yet]
- I just completed BankGPT room on TryHackMe. A customer service assistant used by a banking system. How? See write-up in the screenshot. tryhackme.com/room/bankgpt... via @tryhackme #LLMsecurity #LLMprompthacking #ctf
- I just completed Neighbour #ctf room on TryHackMe. Check out our new cloud service, Authentication Anywhere. Can you find other user's secrets? tryhackme.com/room/neighbo... #tryhackme #IDOR
- Reposted by mXgarweg
[Not loaded yet] - Interview as a Payload. #IaaP
- Reposted by mXgarweg[Not loaded yet]
- I just completed module Introduction to Web Applications in HTB Academy! academy.hackthebox.com/achievement/... #hackthebox
- Some evening study time. #rateMySetup #100DaysOfCode
- "Basic Insecure direct object references (IDOR) in cookie"? #Pwned! It was a blast on #YesWeHack! Think you can take it on? 🌟 dojo-yeswehack.com/challenge/pl... #ChallengeAccepted
- I just completed Auditing and Monitoring room on TryHackMe. Learn about auditing, monitoring, logging, and SIEM. tryhackme.com/room/auditin... #tryhackme
