Ares47

@guyywww @Hacker0x01 Was it on a hidden asset?

Yay, I was awarded a $500 bounty on @Hacker0x01! hackerone.com/mayolahacks #TogetherWeHitHarder

Add `/faketoken` to your wordlist While fuzzing API endpoints, found a dev-only debug route "faketoken" left exposed in production. It returns a valid JWT for any registered user, just by supplying their mobile number (no auth, no OTP) - 0 Click ATO. #Bugbountytips

I think I’ve created or maybe found a cool and effective way to test for BAC and its classes i.e IDOR/BFLA/…. 1. Burpsuite for User A 2. Caido for User B… this method makes it easy for me to sort/filter requests ( I’ve quickly found and reported 2 IDORs with this technique ).

@cqawam Starting out myself too found my first duplicate on bugcrowd got some private invites, hope for the better.

TL;DR - I discussed how I got started in cyber security and my initial struggles as well as my motivation to become a bug bounty hunter and my goal to ultimately become an offensive security researcher. cqawam.github.io/posts/Becoming…

@immanuelibile Connect

Honestly I need more cyber friends If you you're into cybersecurity let's connect 🤝

@ReebootToInit5 Mind blowing bro what's your hunting methodology how do you approach a target 🎯 can you permit me to send you DMs too thx bro.

I made 100k in bounties just last Sunday I found out why i was not able to do it earlier, what was wrong then i realised i was not sleeping enough So last Sunday i slept all day and night and made 100k in bounties 🙌🏻

- Just hire me.

@DuckyWantDucky Awesome bro I sent you a DM pls reply

Day 203/365 of the Until get 10.0 Critical report 📤 Reports Submitted:- 0 🟠 triaged - 3 🟦 program review - 0 🟤 Duplicate - 0 🟣 New - 2 ⚪️ Info - 0 💰 Paid - $3487 💻 Worked- 7 HOUR #BugBounty

@krishnsec Really inspiring how do you hunt, what's your methodology how do you approach wild card target and main apps?

I’ve decided to cap myself at 5 Critical reports/day and around 2 findings on average . Health comes first, so I’ll be cutting back on hacking time starting today. Time to touch some grass 🍀

Give these a try!

Task Manager: "Where did the RAM go?" Chrome: "What RAM?"

@ransomsec @PinkDraconian Sent you DM pls reply would help

@PinkDraconian hahaha enjoy the fame 🤣

I just found out that some AI-generated "hacking" blogs are using my name, claiming that I'm making statements I've never made. This is weird... undercodetesting.com/ethical-hacker…

RIP to one of the greats! Taken WAY too soon. 💔💔💔😭😭😭

@WinD3920 @Bugcrowd Thx for the reply, i sent you some other DMs.

@AresForty7 @Bugcrowd I just saw your message and have already replied. Feel free to reach out anytime. I'm always happy to connect and share experiences with fellow hunters 😊

Just hit a small milestone on @Bugcrowd I crossed 2,000 reputation points. Looking forward to finding more bugs and continuing the journey 🚀 #BugBounty #Bugcrowd #Cybersecurity #EthicalHacking

@MrMSA16 Really inspiring bro can you permit me to send you DMs, would like to talk to you

I'm 18, and over the last 3 months I made around $90k in bug bounties, about 1.5 hours a day I'm not posting this to flex, I'm posting it because of everything behind those numbers that nobody really talks about👇

@Eyax0 @cantinasecurity Hi am interested to learn from you what's your hunting methodology? permit me to DM you

My first $2000 bounty on @cantinasecurity was paid the same day 🖤

@hackerspider1 Permit me to send you DMs would like to learn from you what's your hunting methodology?

Started bug bounty in February. I started bugbounty to learn new things, stay sharp, buying a new house, and keep improving. Most of these findings came from weekends, late nights, and a lot of curiosity. A few months later: $50,000+ earned in bug bounties while working a full-time job. Combined with @HarshDRanjan1, we’ve crossed $100,000+. Proof that a few focused hours each weekend can compound into something much bigger. Still hunting. #BugBounty #HackerOne #CyberSecurity #EthicalHacking

Bug Bounty Complete Course! Learn Bug Bounty to identify and report System vulnerabilities before cybercriminals exploit them.  A Udemy Complete Course. Download Link: drive.google.com/drive/folders/… For more valuable resources and Insights Follow @ZabihullahAtal DM me for Collaboration.

@MrxXb12 @Bugcrowd I sent you Dm bro, would really appreciate your feedback.

I just published a full write-up about how I discovered a Critical PII leak using google dorking and fuzzing in a private bug bounty program in bugcrowd . @mrx_w_/how-i-discovered-23-000-leaked-records-through-google-dorking-7894df815109" target="_blank" rel="nofollow noopener">medium.com/@mrx_w_/how-i-… #BugBounty #BugBountyTips #Bugcrowd #CyberSecurity @Bugcrowd