Benasin

1

144

Dung Le@LTiDiii·19 Haz

Happy to reach 15000 reputation checkpoint on @Hacker0x01 Thanks @Hacker0x01 for always be a best platform for Bug Bounty Hunters 🙌 And a big thanks to @flysec_corp . I never could have come this far without you ❤️‍🔥

English

6

2

84

6K

Benasin retweetledi

James Kettle@albinowax·14 May

I'm thrilled to announce "HTTP/1 Must Die! The Desync Endgame", at #BHUSA! This is going to be epic, check out the abstract for a teaser ↓↓↓

English

29

102

616

87.3K

Benasin@Benasin3·13 May

@dia2diab Congratulations team Egypt 🇪🇬

English

103

dia2diab@dia2diab·13 May

And guess what? TEAM EGYPT 🇪🇬 secured the second place which proves we have skilled hackers here in our lovely country ♥️

Ariel Garcia@Arl_rose

The @hacker0x01 ambassador World Cup comes to an end. After 1 year, 42 teams, 766 hackers, and 6 rounds (including two in person), we conclude what to me is a passion project I always envisioned and I'm very happy to make a reality. Thanks to everyone who made it possible.

English

4

0

59

2.5K

Benasin@Benasin3·13 May

@j_zere @Hacker0x01 Congrats man🔥🔥🔥

English

1

113

zere@j_zere·12 May

We are world champions again!!! 🇪🇸🇪🇸

English

7

1

93

3.1K

Benasin retweetledi

slonser@slonser_·5 May

Today I used a technique that’s probably not widely known in the community. In what cases could code like this lead to a vulnerability? ->

English

22

188

1K

273.7K

Benasin@Benasin3·13 Nis

@janlele91 Congrats anh 💪

English

0

1

166

Janlele91 🇻🇳@janlele91·12 Nis

Happy to announce that I successfully passed OSCP+ on my very first try 🤩 credentials.offsec.com/55b06693-6a42-… #OSCP #BugBounty #learning #Pentesting

English

14

0

106

4.1K

Benasin@Benasin3·20 Mar

@ElS1carius But anyway, appreciate you checking out my blog post! :D

English

0

94

Benasin@Benasin3·20 Mar

@ElS1carius After digging deeper, I found the root cause in lua-nginx-module, which Kong is built on. Still, I believe Kong should have investigated further, as I found the issue easily exploitable across multiple companies using their products!

English

0

109

Sicarius@ElS1carius·20 Mar

Let’s not say we’ve reported this behavior to Kong back in 2023 and they replied that it was a « problem within burp » instead of a vuln in their tool 🤷‍♂️ I know few people that got mistreated by this Kong « security » team for this bug and others, cc @TheLaluka @askilow

🚨HTTP Request Smuggling in lua-nginx-module!🚨 This affects major proxies like Kong GW, OpenResty, Apache APISIX and many more👀 Check it out: benasin.space/2025/03/18/Ope… Big thanks to @albinowax for his awesome research and for answering all my questions! #bugbounty #bugbountytips

English

2

8

20

3.8K

Benasin@Benasin3·19 Mar

@thaivd98 @Hacker0x01 My dream☁️

English

0

1

181

Thái Vũ@thaivd98·18 Mar

Finally I crossed 20k reputation on @Hacker0x01 😚 More to come 😛 I wish @Hacker0x01 give me some swags in this milestone 😂 #togetherwehitharder

English

11

2

167

5.7K

Benasin@Benasin3·19 Mar

@LamScun 🐸🪽

QME

63

LamScun@LamScun·19 Mar

This bug has a very large and wide impact. Congrats my friends

🚨HTTP Request Smuggling in lua-nginx-module!🚨 This affects major proxies like Kong GW, OpenResty, Apache APISIX and many more👀 Check it out: benasin.space/2025/03/18/Ope… Big thanks to @albinowax for his awesome research and for answering all my questions! #bugbounty #bugbountytips

English

0

5

514

Benasin@Benasin3·19 Mar

@LTiDiii @LongShrimp0812 🔥🔥🔥

QME

43

Dung Le@LTiDiii·18 Mar

Big hit from awesome works @Benasin3 @LongShrimp0812 🔥🔥🔥

🚨HTTP Request Smuggling in lua-nginx-module!🚨 This affects major proxies like Kong GW, OpenResty, Apache APISIX and many more👀 Check it out: benasin.space/2025/03/18/Ope… Big thanks to @albinowax for his awesome research and for answering all my questions! #bugbounty #bugbountytips

English

2

0

7

453

Benasin@Benasin3·19 Mar

@thaivd98 Hungry for more 😋

English

1

50

Thái Vũ@thaivd98·18 Mar

Great article 💯😍🎉 more to go @Benasin3 🙌🙌 can’t wait for the next chapter

🚨HTTP Request Smuggling in lua-nginx-module!🚨 This affects major proxies like Kong GW, OpenResty, Apache APISIX and many more👀 Check it out: benasin.space/2025/03/18/Ope… Big thanks to @albinowax for his awesome research and for answering all my questions! #bugbounty #bugbountytips

English

0

5

983

Benasin@Benasin3·18 Mar

@albinowax Also stay tuned for our next blog where we will publish cool findings regarding this bug!

English

4

1.1K

Benasin@Benasin3·18 Mar

🚨HTTP Request Smuggling in lua-nginx-module!🚨 This affects major proxies like Kong GW, OpenResty, Apache APISIX and many more👀 Check it out: benasin.space/2025/03/18/Ope… Big thanks to @albinowax for his awesome research and for answering all my questions! #bugbounty #bugbountytips

English

8

68

266

20.7K

Benasin@Benasin3·7 Mar

@flysec_corp @Hacker0x01 🔥🔥🔥

QME

3

144

Flysec Corp@flysec_corp·7 Mar

Our journey AWC2024 has ended in Quarter Finals against🇪🇸 Beyond all, Flysec & 🇻🇳 had amazing hack/chill moments together & w people from diff teams, especially our rivals 🇪🇸- our awesome new friends! Shoutout @Hacker0x01 for the great event in Prague, 🇨🇿! We will rise again🔥💪

English

4

0

48

3.1K

Benasin@Benasin3·4 Mar

@alexbindrei @Hacker0x01 We also miss you guys already amigos 🇪🇸. Good luck to your team on the next round and hope we can meet again soon 🫡

English

3

78

Alexandrio@alexbindrei·4 Mar

Also big thanks to @Hacker0x01 for organising the AWC, the Prague event, and handling the triage workload. We will miss our Vietnamese party friends in the next round 💔 it was so great to get to know you and share some drinks. Hope to meet again. Một, hai, ba, dô 🇻🇳

English