Atharv

submitted a valid auth bypass yesterday anyone could cancel bookings without authorization, trigger marked it as duplicate to a completely different report just because the API path first two word looked similar @Bugcrowd please ask your triagers not to work while they are on ..

@0xAbady @Bugcrowd @bugbountywizard @BugcrowdSupport then while making report in url use that api as target not that webiste domain

@0xatharv @Bugcrowd @bugbountywizard @BugcrowdSupport Yesterday I got NA’d for critical and high vulnerabilities, and their claim was that it was out of scope just because it was “.co.uk” instead of “.com,” even though both are using the same API and database....

@Bugcrowd @bugbountywizard @BugcrowdSupport even my another different submission they marked as duplicate to this same report i was like 🫨 for sure that trigger was on different mood @BugcrowdSupport look into this matter

seriously .? @Bugcrowd using ai to trigger reports .?

@Behi_Sec insane

A few months ago, I found a Prompt Injection vulnerability on Google Tasks. It was simple, yet tricky. Google rewarded me with a $15,000 bounty for it. Here's the full story:

back to testing today did subdomain enumeration on target used @profundisio tool also it's literally amazing tool got new and many subdomain related to my target tomorrow goal to use that website and user and to see all functions and to see how it works have a nice day ❤️

another bug submitted today on public program let's hope it does not get duplicate 🥲

@CodeByNZ Js

programming language you learned once but never touched again ?

@0xObsidian_X @yeswehack congratulations bro

Just got paid my first bounty, severity got downgraded tho @yeswehack #bugbounty

🧠💣 381 FILES. 200+ GB. ELITE ONLY. I just unlocked a vault that would make even top bug bounty hunters drop everything: 🔥 OSCP 🔥 OSEP 🔥 OSWE 🔥 THM / HTB 🔥 EC-Council 🔥 Cisco CyberOps 🔥 Linux Priv Esc 🔥 PEN-300 Full Video Series 🔥 BloodHound, AD, SSH, API, SQL, 🔥 PEN-300 / HTB / THM 🔥 EC-Council / CyberOps / Linux PrivEsc 🔥 BloodHound / AD / API / SSH / SQL 💾 FULL videos, PDFs, labs, @GREEN_ARMOR zips Too hot to share publicly. I’ll pick ONLY 1000 people to send this to — we can get banned for this 🔥 👉 Repost + Like + Comment “ME” I’ll DM you if you’re chosen. This is NOT your regular course pack. This is what the underground studies to dominate certs & bounty boards. RT if you’d risk your SSD space. 💾🧠💀 #OSCP #BugBounty #RedTeam #EthicalHacking #CyberSecurity #InfoSec

another report got accepted it's a vdp

@4osp3l @fattselimi @badcrack3r and i want to with you

@cami_bertolani @metabugbounty congo bro

My first Bounty @metabugbounty 🥹❤️ #meta #BugBounty #BugBountyArgentina

@tabaahi_ nice

I just published mokhansec.medium.com/when-export-cs…

missed posting here since my college reposnes after the little vacation but still I am hunting on my primary target it's shopping website

I'm hosting one final giveaway for my "Bug Bounty Essentials" with over 20 hours of content and 100+ labs. All you have to do is drop a 🧑🏽‍💻 under this tweet to enter! Winner will be announced on December 31. Or purchase it directly on @hackinghub_io for 30% off 👉🏼 hhub.io/eoybbex