Mohamed Fodil

Despite my long experience in iOS reverse engineering i prefer not targeting VDP/BBP iOS Apps that may result in getting my exploits burned for nothing 🤷‍♂️ Instead, I’m good with reporting iOS related stuff directly to Apple 🙃 #BugBounty #bugbountytips #CyberSecurity

@zhero___ Rabi yahafdak kho :)

@_public_void man khafch 3lik

having a dopamine shot at the beginning of the week is not necessarily good, we can be fooled by a false sense of work accomplished which can heavily impact our productivity 'm kidding, give me that; the week starts well -wal hamduliLlah-

@zhero___ InchaAllah kho :)

@_public_void saha kho, la39oba lik

@ctf1189788 @Venom_19_py This is applicable for all programs

@_public_void @Venom_19_py What program is this ?

Lesson Learned: To avoid Self-Dulplicate, when you discover the same vulnerability across different domains/endpoints, report just one and wait for it to be Resolved, then do the same for the others. #bugbountytips #BugBounty #CyberSecurity

@zhero___ @Hacker0x01 You’re welcome bro :)

@_public_void @Hacker0x01 thanks:)

Yay, I was awarded a $2000 bounty on @Hacker0x01; art of argumentation is a skill that should not be neglected when discussing with sec teams, I can't count the number of times a few lines have allowed me to earn several thousand extra dollars;

@Venom_19_py TBH, I had a good experience with this program, I don’t think they do something like that.

@_public_void wait until they fix it and leave it as 'unresolved' for centuries 💀

@zhero___ @Hacker0x01 Allah yssalmak khouya Rachid 😊

@_public_void @Hacker0x01 saha khouya!

Yay, I was awarded a $8200 bounty on @Hacker0x01 partial results of a focus on a same program +200$ from a kind hunter who wanted to invite me to his report as an appreciation for my research simplistic but very effective: to avoid competition, be the first to blaze the trail;

@XavOppa @Hacker0x01 @Bugcrowd Thanks mate :)

@avinfajar6 @Hacker0x01 @Bugcrowd Thanks bro 😊

@NOMAD0___ @Hacker0x01 @Bugcrowd Thanks bro 😊

@_public_void @Hacker0x01 @Bugcrowd Congrats 👏

@zhero___ Congratulations bro 🎉🎉

`re you sure you're okay? - d o p a m i n e, more d o p a m i n e

@M7moud_mk99 @Hacker0x01 Congratulations bro 👏👏🎉🎉

It was a huge bonus Alhamdulillah. Yep, I was awarded a $X,XXX bounty on @Hacker0x01! hackerone.com/m7moudx22 #TogetherWeHitHarder #bugbounty

@M7moud_mk99 @Hacker0x01 Good job bro 👌

I'm in the mood to hit some programs, and pleased to secure them :) nice time == good hit💰💵@Hacker0x01 #togetherwehitharder #bugbounty

@Venom_19_py @Bugcrowd You’re welcome bro! keep up the good work 👌

@_public_void @Bugcrowd Thank you brother ❤️

Just scored a bounty on @Bugcrowd, l just love Logic flaws ❤️. Always try to break the logic of the application and force it to do things it's not supposed to do. Manipulating items, key components, parameters can reveal a lot of logic flaws. #ItTakesACrowd #bugbounty

@abumaryamrahmat You’re welcome bro 😊

@_public_void Thanks bro :)

Biidznillah, I was awarded a $500 bounty on HackerOne IDOR to delete other user files -> Delete /api/v1/files/file_id:123 ❌Response shows HTTP/2 500 Internal Server Error ✅ But the file was successfully deleted Always look at the impact not the response #bugbountytips