K4e

@Wakedxy1 It's very frustrating, it really makes me angry

I love it when you escalate a vulnerability, the program marks it as "out of scope," and then a few weeks later you discover they quietly patched it anyway 🤡

I’ve officially launched my startup. To kick things off, I'm offering a free 72-hour full blackbox pentest for startup/org digital assets. If you're interested, say "hello," and I'll reach out.

@4osp3l You have a beast of a machine then

@YKatone Yes

@4osp3l local ?

@YKatone No VPS!

@4osp3l Congrat bro 🔥

🚶‍♂️

@4osp3l 😂😂😂So funny!

@Nccbella Duplicate! Informative! N/A!

Write ✍️ a sad story, using only 3 words 😢

🤞🏾 #bugbounty @yeswehack

@Wakedxy1 @Bugcrowd But it's so complicated, I bypassed a 401 and accessed an admin page, yet it's still asking me about the impact.

Imagine arguing with a triager on @Bugcrowd for a VDP where I'm not paid and won't earn any points. I found a way to bypass a 401 restriction and get access to a dev JWT. I now need to prove the impact of the vulnerability... It's getting harder to be an ethical hacker.

@4osp3l congrats bro

@4osp3l well done big 🔥🔥🔥

DAY 72/365

@4osp3l @yeswehack goat Gospel 🔥🔥 congrate

Thanks @yeswehack 🔥

@4osp3l @yeswehack Well done bro 🔥

Thanks @yeswehack 🔥

Under Review : 1 Need more info : 1 Duplicate : 1 RTFS : 3 OOS : 1 #bugbounty @yeswehack

@4osp3l @yeswehack Congratulations bro 🔥

Accepted 🔥! Thanks @yeswehack

Apparently, the reset token leak via referrer is a MitM attack, so I'm being asked for more information about this report. It's so frustrating. #bugbounty

@_SaxX_ 🤣🤣j’aime trop voir ça

Joli fail de cet hôtel ! L'IA par ci, l'IA par là 👍🏽

@drak3hft7 Congrates bro

I’ve added a new entry to my CVE list , CVE number 1️⃣ 3️⃣ . CVE-2026-4315 The issue is a Cross-Site Request Forgery (CSRF) in the Fireware OS Web UI that can allow a remote attacker to trigger a denial-of-service (DoS) condition by luring an authenticated administrator into visiting a malicious page. Impact: High (CVSS 7.1) Advisory: watchguard.com/wgrd-psirt/adv… The issue was identified through @Hacker0x01 . #bugbounty #cybersecurity #securityresearch #cve

@w4rcrypt @yeswehack Hey man, YWH is the platform where I started exploit hunting, so I can tell you it's the best out of habit, but no, there are programs that pay in a day after you submit your report 😅. And above all, the triage workflow means you really don't feel the wait because it's detailed

@YKatone @yeswehack Hey bro, can you share you experience on yeswehack platform like what’s average response time, triage experience and programs ?

Another 🤞🏾 #bugbounty @yeswehack