Ghost St Badmus
@commando_skiipz
Just a random guy, tweeting in front of the world. Sr. Application Security Engineer (API, Mobile, Web, Cloud, AI/ML) 💼. Creator (http://Vulnbank.org & http://xjwt.io)
I built an intentionally vulnerable banking application for security engineers/interns, developers, & QA analysts to learn, practice secure code reviews, and test their application security knowledge in areas such as SQLi, XSS, CSRF, race conditions, API vulnerabilities, & more.
Where are the hackers/code reviewers? How many vulnerabilities can you spot in this code? Apart from the hints, are there other places you can exploit? Can you chain the vulnerabilities?
It’s really disheartening that this is what some people now do at tech events. If you have any information about this thief or can help recover the stolen device, please reach out. A reward will be given for any useful leads. Thank you.
Yesterday, I was at TSHC 3.0. The Secret Hackers Conference. It was at Sheba Event Center, Mobolaji Johnson, Ikeja. I was there since a little after 9:00am. Just some hours later, I brought out my laptop to design some flyers for some events I had pending. I was trying to work,…
.@_DeejustDee my special idolo🙌🏾❤️
Whatever @commando_skiipz is teaching in this live demo, I don’t even understand it 😂 looks like too much gibberish and codes. I’ll stick to grc
When I finally get bastard money, na things like this I go dey use my money buy.
I need this in my living room.
I took the API Penetration Testing course from @apisecu a well curated and outstanding course by @hAPI_hacker. 👏🏾 As @commando_skiipz would say, “Bro take that apisec pentest course seriously man, it’ll unlock a lot of skills for you” You know what? He wasn’t lying one bit.