Syed Mushfik Hasan Tahsin

Hello, If you are just getting started into bug bounties and can't find enough resources, this thread might help you to find a way 👇

@hetmehtaa Just a custom activity, nothing else

wtf is this on Github?

Alhamdulillah, Done & Dusted! I have successfully completed all of the three @apisecu Certifications - API Security Certified Professional (ASCP), APISEC Certified Practitioner (ACP) & Certified API Security Analyst (CASA) ⚡

Thank you @Hacker0x01 🙌

Let's welcome Mohammad Abdullah (@m_abdul1ah) as our Guest Speaker for HackerOne BUG HUNT 2026 🛠️ 🎤 Talk: "Security at the Edge: A High-Level Perspective on IoT and Hardware Security" ------------------------

Let's Welcome Syed Faraz Abrar (@farazsth98) as our Guest Speaker for HackerOne BUG HUNT 2026 👑 🎤 Talk: "From Zero to 0-day - Linux Kernel Edition"

Sometimes I feel bad for Carlos.

We’re thrilled to announce our club partners for the @Hacker0x01 BUG HUNT 2026 🇧🇩🔥 Together, we’re building the next generation of ethical hackers. Stronger, Smarter, and United. ⚔️🔐 #HackerOne #BBCBD #BugHunt2026 #TheHuntIsOn

Just getting started with bug bounty? Learn 4 vulnerability types in 400 seconds! 🤠 A thread! 🧵 👇

The Ultimate XSS Cheat Sheet! This XSS cheat-sheet lists vectors (filterable by event, tag, or browser) that can bypass WAFs and filters! Each entry even includes a proof-of-concept. Bookmark this 👉 portswigger.net/web-security/c…

🚨 Registration Open – @Hacker0x01 Bug Hunt 2026 (Qualifiers Round) 🇧🇩 The wait is over! Registration for the HackerOne Bug Hunt 2026 – Qualifiers Round is now live and will remain open till 25th October. 🔗 Register here: bughunt.info/register #HackerOne #BugHunt2026

Exploiting an IMPOSSIBLE Cache Deception with CSPT

the jump scare of the morning award goes to @J0R1AN (it even adapts to different native calculators using UA-based OS detection :))

@BuildHackSecure James Cuddle

Guess that hacker 🤣

WAFs still blocking your payloads? Try our newest pointer capture tricks. Our XSS cheat sheet just got an upgrade thanks to @hunter0x8. #ongotpointercapture" target="_blank" rel="nofollow noopener">portswigger.net/web-security/c…

About a month ago, I discovered a vulnerability in @grok An API endpoint provides direct, unrestricted access to an image model, enabling the at-scale generation of explicit, nude, and harmful content at no cost. As a PoC, I've made it a service: asdex.me

@hunter0x8 @akamai_research @ryancbarnett @Akamai Great work on the newly added event handlers in the cheatsheet : )

Love seeing @akamai_research @ryancbarnett (Sr. Threat Research Manager @Akamai) active on the legendary XSS Cheat Sheet repo! 🚀💻 #infosec #xss

🔓 The hunt just leveled up. @Hacker0x01 is now the official Title Sponsor of Bug Hunt 2026! Welcome to HackerOne Bug Hunt 2026. Are you ready to make history? 🕵️‍♂️💻 #bbcbd #TheHuntIsOn #hackerone #bughunt2026 #titlesponsor

The Hunt is On! 🔍✨ Introducing BUG HUNT 2026. Sharper, bolder, and ready for the chase. This year, we’re raising the stakes. Are you? 🕷️🕸️ #bbcbd #TheHuntIsOn #BugHunt2026

🏆 Feast your eyes on the epic CTF prizes from @AlteredSecurity @JustHackingHQ @arcanuminfosec @MaltekInfosec @Hak5 @PacktPublishing @PentesterLab @TheSecOpsGroup @hackthebox_eu! From gear to training to goodies, our winners are in for a serious treat! 🔥