//
sign in
Profile
by @danabra.mov
Profile
by @dansshadow.bsky.social
Profile
by @jimpick.com
AviHandle
by @danabra.mov
AviHandle
by @dansshadow.bsky.social
AviHandle
by @katherine.computer
EventsList
by @katherine.computer
ProfileHeader
by @dansshadow.bsky.social
ProfileHeader
by @danabra.mov
ProfileMedia
by @danabra.mov
ProfilePlays
by @danabra.mov
ProfilePosts
by @danabra.mov
ProfilePosts
by @dansshadow.bsky.social
ProfileReplies
by @danabra.mov
Record
by @atsui.org
Skircle
by @danabra.mov
StreamPlacePlaylist
by @katherine.computer
+ new component
Profile
Loading...
⚠️ AI Security Engineer M.S. Cybersecurity, CISSP. Amazon, NSA, Defense Contractor, USMC. 🫟 www.toxsec.com
ToxSec
Loading...
HTTP Request Smuggling (CL:TE) How header mismatch between Content-Length and Transfer-Encoding lets attackers slip hidden requests past your edge and into the backend. Full breakdown of mechanics, recon tips, and real bug bounty angles. www.toxsec.com/p/http-reque... #Cybersecurity
#Anthropic just release #Fable 5. ⚠️ The #Mythos class model made safe. Cybersecurity guardrails and impressive benchmarks. Can’t wait to see how it handles!
Monitor header actions. Smuggling, cache tampering, and CORS misconfigurations can be detected through slight header variations (Content-Length, Transfer-Encoding, Vary). Record raw requests, not only responses. #CyberSecurity #BugBounty
BGP Hijack of YouTube (2008) – Pakistan Telecom accidentally advertised a bogus route and knocked YouTube offline worldwide for two hours—showing how fragile the internet’s core routing really is. #Hackers
funny how bug bounties turn into archaeology… digging through layers of old code nobody’s touched in years.
Consistency builds hunters. the bounties are just the proof. #infosec #motivation