This media is not supported in your browser
VIEW IN TELEGRAM
โค๏ธ
I was thinking about you ๐ง
@rafa_sec
@rafasec_chat -> join chat
@rafa_course -> join course channel
I was thinking about you ๐ง
@rafa_sec
@rafasec_chat -> join chat
@rafa_course -> join course channel
โค4๐ฅ3
Something is comming! ๐ Can you guess what we're preparing? Share your predictions in the group! @rafasec_chat ๐คซ
@rafa_sec
@rafasec_chat -> join chat
@rafa_course -> join course channel
@rafa_sec
@rafasec_chat -> join chat
@rafa_course -> join course channel
๐1๐1
Rafa Sec
Something is comming! ๐ Can you guess what we're preparing? Share your predictions in the group! @rafasec_chat ๐คซ @rafa_sec @rafasec_chat -> join chat @rafa_course -> join course channel
We said it beforeโฆ and now itโs LIVE!
Weโve launched our own CTF website!
๐ง Solve real hacking challenges
โ๏ธ Sharpen your skills
๐ต๏ธโโ๏ธ Learn and level up your game
Try it now: http://rafasecctf.rf.gd/
Join the movement:
๐ @rafa_sec โ Main Channel
๐ฅ @rafasec_chat โ Chat Group
๐ @rafa_course โ Course Channel
Let the hacking begin!
If you want to help me in ui/css contact me: @Rafa_support
Weโve launched our own CTF website!
๐ง Solve real hacking challenges
โ๏ธ Sharpen your skills
๐ต๏ธโโ๏ธ Learn and level up your game
Try it now: http://rafasecctf.rf.gd/
Join the movement:
๐ @rafa_sec โ Main Channel
๐ฅ @rafasec_chat โ Chat Group
๐ @rafa_course โ Course Channel
Let the hacking begin!
If you want to help me in ui/css contact me: @Rafa_support
๐ฅ3๐2
Rafa Sec
We said it beforeโฆ and now itโs LIVE! Weโve launched our own CTF website! ๐ง Solve real hacking challenges โ๏ธ Sharpen your skills ๐ต๏ธโโ๏ธ Learn and level up your game Try it now: http://rafasecctf.rf.gd/ Join the movement: ๐ @rafa_sec โ Main Channel ๐ฅ @rafasec_chatโฆ
RafaCTF โ Web CTF Lab (Free & Online)
Hey hackers!
Iโve launched RafaCTF, a custom Capture The Flag (CTF) lab where you can practice real-world web vulnerabilities across 4 difficulty levels โ from Easy to Insane!
Whatโs Inside?
๐ก๏ธ 7 Vulnerability Categories:
1. โ๏ธ XSS (Cross-Site Scripting)
2. โฑ๏ธ Rate Limit Bypass
3. ๐ Brute Force
4. โ๏ธ Content Injection
5. ๐งฉ HTML Injection
6. โ๏ธ JavaScript Injection
7. ๐ต๏ธ XSSI (Cross-Site Script Inclusion)
Features:
โ 4 difficulty levels per challenge
โ Hidden flag in each level
โ Beginner-friendly & self-hosted
โ Learn while hacking โ hands-on!
Flag Path Format:
/flags/<vuln_name>/level1.txt (โฆup to level4.txt)
Try it. Hack it. Learn it.
Website: http://rafasecctf.rf.gd/
Need help or want to share your progress?
๐ฌ Chat: @rafasec_chat
๐ข Channel: @rafa_sec
๐ Course Updates: @rafa_course
Created by: Rafu | 2025
Hey hackers!
Iโve launched RafaCTF, a custom Capture The Flag (CTF) lab where you can practice real-world web vulnerabilities across 4 difficulty levels โ from Easy to Insane!
Whatโs Inside?
๐ก๏ธ 7 Vulnerability Categories:
1. โ๏ธ XSS (Cross-Site Scripting)
2. โฑ๏ธ Rate Limit Bypass
3. ๐ Brute Force
4. โ๏ธ Content Injection
5. ๐งฉ HTML Injection
6. โ๏ธ JavaScript Injection
7. ๐ต๏ธ XSSI (Cross-Site Script Inclusion)
Features:
โ 4 difficulty levels per challenge
โ Hidden flag in each level
โ Beginner-friendly & self-hosted
โ Learn while hacking โ hands-on!
Flag Path Format:
Try it. Hack it. Learn it.
Website: http://rafasecctf.rf.gd/
Need help or want to share your progress?
๐ฌ Chat: @rafasec_chat
๐ข Channel: @rafa_sec
๐ Course Updates: @rafa_course
Created by: Rafu | 2025
๐ฅ10
Rafa Sec
RafaCTF โ Web CTF Lab (Free & Online) Hey hackers! Iโve launched RafaCTF, a custom Capture The Flag (CTF) lab where you can practice real-world web vulnerabilities across 4 difficulty levels โ from Easy to Insane! Whatโs Inside? ๐ก๏ธ 7 Vulnerability Categories:โฆ
Complete 3CTF (Level 3) and get access to the
- Movement, Pivoting, and Persistence course!
Submit a proof screenshot in @Rafa_support to claim your reward!
Good luck! Stay sharp!
โก๐ฏ๐ป
๐ฌ Chat: @rafasec_chat
๐ข Channel: @rafa_sec
๐ Course Updates: @rafa_course
- Movement, Pivoting, and Persistence course!
Submit a proof screenshot in @Rafa_support to claim your reward!
Good luck! Stay sharp!
โก๐ฏ๐ป
๐ฌ Chat: @rafasec_chat
๐ข Channel: @rafa_sec
๐ Course Updates: @rafa_course
๐2
We made it again! ๐ฅ Another 11K birr! ๐ธ
This all happened because of 3 things:
1๏ธโฃ God ๐
2๏ธโฃ My mentor Nathan ๐จโ๐ซ @geeztechgroup
3๏ธโฃ My hard work ๐๐ป
#Blessed #GrindPays #BugBountyWin
@rafa_sec
This all happened because of 3 things:
1๏ธโฃ God ๐
2๏ธโฃ My mentor Nathan ๐จโ๐ซ @geeztechgroup
3๏ธโฃ My hard work ๐๐ป
#Blessed #GrindPays #BugBountyWin
@rafa_sec
๐18๐ฅ10
Rafa Sec
We made it again! ๐ฅ Another 11K birr! ๐ธ This all happened because of 3 things: 1๏ธโฃ God ๐ 2๏ธโฃ My mentor Nathan ๐จโ๐ซ @geeztechgroup 3๏ธโฃ My hard work ๐๐ป #Blessed #GrindPays #BugBountyWin @rafa_sec
The first time was so nice, I had to do it twice! ๐
Back at it again โ taxes and tactics!
๐ป๐ธ
@rafa_sec
Back at it again โ taxes and tactics!
๐ป๐ธ
@rafa_sec
๐ฅ9๐2
Did you guys need hacking roadmap with free resource?๐ฃ๏ธ
Anonymous Poll
95%
Yes๐๐ฅ
5%
No๐
๐ฅ6โคโ๐ฅ2
๐งญ Cybersecurity Roadmap By Rafu
๐น 1. ๐ฐ Fundamentals
๐ป Computer Basics (learn this from YouTube)
๐ Networking _resource -> Link
๐ง Linux basics _resource -> Link
๐น 2. ๐ง Core Cyber Skills
โ๏ธ Scripting: Bash, Python
๐ Bash -> Link
๐ Python -> Link
๐ Networking tools: Nmap, Wireshark
- ๐ก Nmap -> Link 1
Link 2
- ๐ Wireshark -> Link
- ๐ Web technologies: HTML, JS, HTTP
Resource -> Link
- ๐ Cryptography
resource -> Link
3. ๐ก Ethical hacking fundamentals: system hacking, website hacking...
๐ Resources:
- ๐งโ๐ป Ethical hacking video -> Link
- ๐ Web hacking -> Link
- ๐ If you want a book -> Link
๐น 4. ๐ฏ Specializations (Choose Your Track)
- Soon
๐ I will share advanced courses on my course channel โ join it. @rafa_course
@rafa_sec
๐น 1. ๐ฐ Fundamentals
๐ป Computer Basics (learn this from YouTube)
๐ Networking _resource -> Link
๐ง Linux basics _resource -> Link
๐น 2. ๐ง Core Cyber Skills
โ๏ธ Scripting: Bash, Python
๐ Bash -> Link
๐ Python -> Link
๐ Networking tools: Nmap, Wireshark
- ๐ก Nmap -> Link 1
Link 2
- ๐ Wireshark -> Link
- ๐ Web technologies: HTML, JS, HTTP
Resource -> Link
- ๐ Cryptography
resource -> Link
3. ๐ก Ethical hacking fundamentals: system hacking, website hacking...
๐ Resources:
- ๐งโ๐ป Ethical hacking video -> Link
- ๐ Web hacking -> Link
- ๐ If you want a book -> Link
๐น 4. ๐ฏ Specializations (Choose Your Track)
- Soon
๐ I will share advanced courses on my course channel โ join it. @rafa_course
@rafa_sec
๐ฅ9๐3โค2
Hey everyone ๐
When I started learning bug bounty ๐๐ฐ, I got a cool lab ๐งช that really helped me. Now I want to share it with you โค๏ธ and weโll do it together โ live ๐ฅ!
Join me every Saturday & Sunday ๐ in the Live Cyber Security Group ๐ก๏ธ or on my channel .
Itโs easy, fun, and perfect for beginners ๐.
What do you think?
Share your idea in group: @rafasec_chat
Vote ๐๐
@rafa_sec
When I started learning bug bounty ๐๐ฐ, I got a cool lab ๐งช that really helped me. Now I want to share it with you โค๏ธ and weโll do it together โ live ๐ฅ!
Join me every Saturday & Sunday ๐ in the Live Cyber Security Group ๐ก๏ธ or on my channel .
Itโs easy, fun, and perfect for beginners ๐.
What do you think?
Share your idea in group: @rafasec_chat
Vote ๐๐
@rafa_sec
๐ฅ9
Regarding the live hacking lab session, which channel would you prefer: ๐ค Cyber Security or ๐ RafaSec?
Anonymous Poll
43%
Cyber Security Channel
57%
RafaSec
๐ฅ3
๐ eWPTv2 Course: Become a Web App Pentesting Pro! ๐
Ready to launch your career in web application security? This Intermediate Level course is your fast track to mastering practical pentesting skills! ๐ฏ
Course Highlights:
โข Web App Security Fundamentals ๐ก
โข Information Gathering ๐
โข Authentication & Authorization Testing ๐
โข Injection Attacks ๐
โข File Inclusion Vulnerabilities ๐
โข Server-Side Request Forgery (SSRF) ๐
โข Web Services Security โ๏ธ
โข Practical Exploitation Techniques ๐
โข Hands-On Labs ๐งช
โข Report Writing ๐
Key Benefits:
โข ๐ฅ Hands-On Learning: Real-world scenarios and practical exercises.
โข โ Certification Prep: Ace the eWPTv2 exam with confidence.
โข ๐ Career Advancement: Boost your skills and earning potential.
โข ๐ก Real-World Skills: Protect web apps with cutting-edge techniques.
Join now and start your journey to becoming a Best web application penetration tester! โจโก๏ธ click this for course
๐ฌ Chat: @rafasec_chat
๐ข Channel: @rafa_sec
๐ Course Updates: @rafa_course
Ready to launch your career in web application security? This Intermediate Level course is your fast track to mastering practical pentesting skills! ๐ฏ
Course Highlights:
โข Web App Security Fundamentals ๐ก
โข Information Gathering ๐
โข Authentication & Authorization Testing ๐
โข Injection Attacks ๐
โข File Inclusion Vulnerabilities ๐
โข Server-Side Request Forgery (SSRF) ๐
โข Web Services Security โ๏ธ
โข Practical Exploitation Techniques ๐
โข Hands-On Labs ๐งช
โข Report Writing ๐
Key Benefits:
โข ๐ฅ Hands-On Learning: Real-world scenarios and practical exercises.
โข โ Certification Prep: Ace the eWPTv2 exam with confidence.
โข ๐ Career Advancement: Boost your skills and earning potential.
โข ๐ก Real-World Skills: Protect web apps with cutting-edge techniques.
Join now and start your journey to becoming a Best web application penetration tester! โจโก๏ธ click this for course
๐ฌ Chat: @rafasec_chat
๐ข Channel: @rafa_sec
๐ Course Updates: @rafa_course
๐ฅ3โค1
Hacking TIP Day1:
Tip1:
Tip2:
Happy hacking and bug hunting! ๐๐
๐ฌ Chat: @rafasec_chat
๐ข Channel: @rafa_sec
๐ Course Updates: @rafa_course
Tip1:
Start every recon๐ by mapping the attack surface thoroughly. Use tools like subfinder, httpx, and nmap to discover subdomains, alive hosts, and open ports. A wide recon often reveals hidden or forgotten services that are goldmines for bugs.
Tip2:
Always check for parameter pollution by duplicating query or body parameters (e.g., ?user=admin&user=guest). Some backends may use the first, others the lastโleading to unexpected behavior or even auth bypass.
Happy hacking and bug hunting! ๐๐
๐ฌ Chat: @rafasec_chat
๐ข Channel: @rafa_sec
๐ Course Updates: @rafa_course
โค9