user avatar
The XSS Rat - Proud XSS N00b :-)
@theXSSrat
Bug bounty profiles: bugcrowd.com/h/TheXSSRat app.intigriti.com/profile/theama… thexssrat.podia.com/achievements
Your network
linktr.ee/thexssrat
Joined February 2020
1,214
Following
165.2K
Followers
  • Pinned
    user avatar
    The XSS Rat - Proud XSS N00b :-)
    @theXSSrat
    Dec 14, 2025
    I have built: - A security testing repo: github.com/The-XSS-Rat/Se… - An API hacking tool: github.com/The-XSS-Rat/ha… - A blog: blog.hackxpert.com (Yeah I know cert expired, will look into that today) - 150 exploits + 6 lifelike labs: labs.hackxpert.com - A student base of
    SecurityTesting/Checklists/HuntingCheckList.md at master · The-XSS-Rat/SecurityTesting
    From github.com
    42K
  • user avatar
    The XSS Rat - Proud XSS N00b :-)
    @theXSSrat
    Mar 31, 2023
    Here is a list of 100 tools that an ethical hacker should know about: Nmap Metasploit Framework Wireshark John the Ripper Aircrack-ng Hydra Burp Suite SQLMap Nessus Nikto Cain and Abel THC Hydra THC SSL DoS Maltego Netcat OpenVAS Social Engineering Toolkit (SET)
    182K
  • user avatar
    The XSS Rat - Proud XSS N00b :-)
    @theXSSrat
    Apr 19, 2023
    100 tools every self respecting web app hacker should know Burp Suite OWASP ZAP Metasploit Framework sqlmap Nmap Dirbuster WPScan Arachni BeEF Hydra XSSer Sqlninja Cain and Abel Netcat THC Hydra Nikto Skipfish Vega sqlsus John the Ripper THC-SSL-DOS Sublist3r Wfuzz Shodan
    103K
  • user avatar
    The XSS Rat - Proud XSS N00b :-)
    @theXSSrat
    Mar 25, 2023
    Bug bounties in 2023 - extended roadmap 1.1. Common web vulnerabilities Injection attacks 1.1. SQL Injection 1.2. NoSQL Injection 1.3. Command Injection 1.4. LDAP Injection 1.5. XML Injection 1.6. XPath Injection 1.7. Server-Side Template Injection (SSTI) 1.8. Code Injection
    121K
  • user avatar
    The XSS Rat - Proud XSS N00b :-)
    @theXSSrat
    Oct 19, 2023
    100 web vulnerabilities, categorized into various types: Injection Vulnerabilities: 1. SQL Injection (SQLi) 2. Cross-Site Scripting (XSS) 3. Cross-Site Request Forgery (CSRF) 4. Remote Code Execution (RCE) 5. Command Injection 6. XML Injection 7. LDAP Injection 8. XPath
    87K
  • user avatar
    The XSS Rat - Proud XSS N00b :-)
    @theXSSrat
    Sep 8, 2023
    100 tools every self respecting web app hacker should know Acunetix Web Vulnerability Scanner Aircrack-ng Amass Arachni Assetfinder bbqsql BeEF BruteForcer Brutus Burp Suite Cain and Abel Cewl CMSmap crackMapexec Dalfox DAVScan Dirbuster Dirb Dnsmasq Dnsx Evil-WinRM
    87K
  • user avatar
    The XSS Rat - Proud XSS N00b :-)
    @theXSSrat
    Dec 10, 2021
    I will be sending our new ethical hacking guide for free to a random amount of people in the comments who have also retweeted this tweet. You do NOT want to miss this highly acclaimed course that is more complete than this industry has seen so far. 24 hour deadline
  • user avatar
    The XSS Rat - Proud XSS N00b :-)
    @theXSSrat
    Sep 20, 2022
    If this message gets 150 likes, I will make my own bug bounty guide free for 24 hours :x Oehhhhh I know, big number but the cheese giveth and the cheese taketh away
  • user avatar
    The XSS Rat - Proud XSS N00b :-)
    @theXSSrat
    Oct 12, 2022
    If I get 80 000 followers this weekend, I will release 80 free full house bundles containing all my courses. Make me :)
  • user avatar
    The XSS Rat - Proud XSS N00b :-)
    @theXSSrat
    Mar 28, 2023
    Cross-site scripting (XSS) SQL injection (SQLi) Cross-site request forgery (CSRF) Server-side request forgery (SSRF) Remote code execution (RCE) File inclusion Authentication bypass Information disclosure XML injection Clickjacking Open redirect Directory traversal Session
    81K
  • user avatar
    The XSS Rat - Proud XSS N00b :-)
    @theXSSrat
    Oct 12, 2023
    If this tweet gets 250 likes, I will release the videos of my 2024 XSS guide for free youtube <3 Show me that love baby!
    83K
  • user avatar
    The XSS Rat - Proud XSS N00b :-)
    @theXSSrat
    Dec 29, 2021
    GIVEAWAY TIMEEEE You can win our ethical hacking! This highly sought after course attempts to cover everything from OSCP to mobile to api hacking and much much more. The focus being on the OSCP-like modules and web hacking. Leave a comment, like and RT - 24 hours
  • user avatar
    The XSS Rat - Proud XSS N00b :-)
    @theXSSrat
    May 31, 2023
    30 tips for ethical hackers: Use Reconnaissance Tools: Tools like Nmap, Nikto, or Shodan can help with network and host enumeration. DNS Enumeration: Use tools like DNSRecon, DNSenum, and Fierce to perform DNS enumeration. Subdomain Enumeration: Use tools like Amass,
    66K
  • user avatar
    The XSS Rat - Proud XSS N00b :-)
    @theXSSrat
    Jan 5, 2022
    I am giving away a free course from @thecybermentor <3 RT and comment anything You have 24 hours