TheCzar

okay i Iowk edited this one for engagement bait the fiIe was in KB not TB im sorry 💔

@roohaa_n literally just posted a question tweet about this , imo this is a bypass of the fix which should be accepted and paid full bounty imo

question : if you find a vulnerability bypass of a marked resolved report , would it get duped or accepted ,knowing the initial vulnerability was reported by someone else ? #bugbounty #yeswehack @yeswehack

they duped me ! lol 😆

Be like this guy and never share data thats not really needed just pulled of a crazy idor allowing extraction of +1m records with customers details vendors info and more ... lets see how it goes #bugbounty

HTTP Status Codes Cheatsheet: 1xx : Hold on 2xx: Here you go 3xx : Go away 4xx : You f*cked up 5xx : We f*cked up

I miss those Twitter days when people used to drop BOOM P1 bounty tips 😭

@4osp3l these kind of payouts distribution in a program is just to attract skilled researchers to hack on them ,the lowballs and downgrades are gonna be crazy imo

Okay! let's stick to this program. The ones i enjoy hacking on, got disabled.

@adilburaksen sorry to hear that G ,a loss for them tho cheers

@7heCzar hahah thanks for those kind wishes.. but ywh ban my account…

They’re preparing to publish my report and asked how I want to be credited… Paid €500 so far on a €30K bounty. Still waiting on the rest.

@notherekekw congrats man ,may i ask if u had anything to do with that ,or did you actually add a follow up comment or something?

lets gooooo

@luq0xss maybe a high paying program where one bounty gets you more than that 🤔?keep up man

Eu não consigo passar de $4000 em bounties por mês, simplesmente minha cabeça desliga após esse valor e eu não consigo reportar mais nada…

@yeswehack hello yeswehack your platform is amazing but this issue is a lil annoying

i do understand the burden programs go through with ai slop reports ,but the solution was and will never be stopping rewarding legit and skilled researchers, if a program has no monetary reward I dont understand why anyone would submit work to them for free

I want to be rich. But not Lamborghini or Rolex rich, I want to be rich enough to go to the gym at 3pm and nobody can tell me no. To tap the family in front of me at the supermarket and say, "It's on me," Rich enough that my future wife never has to worry about getting a job. Rich enough to show my children the world, not pictures of it. Rich enough to take my friends to dinner and say, "| got this", Rich enough that God uses me to help the people who are in need. That's my version of rich.

@6d6f6d6fm @gabbytech01 i believe not

@7heCzar @gabbytech01 Does this work with hackerone? When h1 triager closes the report as info?

This SQL bug still pains me till today ...I was looking at potential £9000 that could change my life for good, but we move regardless

@gabbytech01 however keep your expectations as low as possible 😆

@gabbytech01 if u already have an accepted report on the program add a comment asking for permission on reporting an oos asset if they say okay screenshort it and add it to your new report and explain to triage the case before going to the bug details. it worked for me with a program im on rn

@Youssef12142311 amazing read and style buddy , keep up

ًWrite-up is now available you can read it here @youssefmohamedsaadhelal1214/from-zero-auth-to-admin-access-c303c0dbe4f8" target="_blank" rel="nofollow noopener">medium.com/@youssefmohame… Follow Me to Stay updated with more Findings

@krishnsec notes taking in bug bounty is a must

I found a high severity bug on Intigriti about a week ago, but couldn’t report it due to submission restrictions. now restriction is gone and I completely forgot what was the bug :(