0x00 Welcome to ToxSec

ToxSec is a site about hacking, bug bounty hunting, and security research. The focus of ToxSec is practical. Expect walkthroughs of common vulnerabilities and deep dives into web pentesting and interesting security subjects. These writeups should show how a bug works and how to report it in a way that gets rewarded.

ToxSec comes out of a background in government service and private-sector security. I’ve worked for both the NSA and Amazon. Everything published here is grounded in real testing, tools, and methodology. Lets break stuff!

Find me:

linkedin

tryhackme

bsky

toxsec