Osama h0$#@

558 posts

Osama h0$#@

@HackeroneO33301

not found

whoami Katılım Ocak 2026

209 Takip Edilen10 Takipçiler

Osama h0$#@ retweetledi

oxflask@oxflask·10h

x.com/i/article/2043…

ZXX

193

16.3K

Osama h0$#@@HackeroneO33301·14h

@Videoohat صديق السوء

العربية

رَهَفْ@Videoohat·1d

أعطوني عنوان مناسب لهالصورة ؟!

العربية

17.7K

Osama h0$#@@HackeroneO33301·14h

@sidi_jeddou_dev @rez0__ @WorstWursts It has very good results

English

151

Sidi jeddou@sidi_jeddou_dev·14h

@rez0__ @WorstWursts Context?? I checked his profile and it’s all about “I and worst….” 😅

English

599

Joseph Thacker@rez0__·15h

I and @WorstWursts successfully articulated impact to Amazon*** Fixed that for you

.@696e746c6f6c

I and @WorstWursts beat Amazon. After months without a payout, the Amazon team has today readjusted our report's severity to critical. This is insane, lets fucking goo!

English

7.6K

Osama h0$#@@HackeroneO33301·16h

@arabmemesss اخوانا المصرييين نوابغ بكل شيء

العربية

138

Arab Memes@arabmemesss·1d

هذه السيدة من غزة أصيبت في الحرب بتشوهات كبيرة ظنت بعدها أن حياتها قد انتهت !! فجاء هذا الدكتور المصري…See More

العربية

281

2.2K

32.2K

4.4M

Osama h0$#@@HackeroneO33301·16h

@Hajjaj0x محفظه بينانس ومن المحفظه بيع عبر p2p ولابتخسر شي ويمكن تكسب فارق الصرف ةمن المشترييين كثير

العربية

204

Hajjaj 🇵🇸@Hajjaj0x·20h

أخواتي الهكرز أسهل طريقة سحب فلوس من هاكر ون بدون ما يشفطوا نص الفلوس ؟

العربية

9.2K

Osama h0$#@@HackeroneO33301·1d

@0xwer8 رد الاصلاح يتاخر طبعا

العربية

Tarek Abdulal@0xwer8·1d

مش ممكن والله، هل هو طبيعي ولا لا؟ ثغرة critical تمر 5 ايام مع انها Assessed بدون اي رد ويردو على ثغره Mid بدل هاي الثغرة 🤨 **اثنينهم نفس ال Program على فكرة**

العربية

2.2K

Osama h0$#@ retweetledi

Bug bounty wizard@bugbountywizard·2d

SQL Injection in GraphQL/WebSocket Escalated to PII Document Leak by DarkyOS @DarkyOS/sql-injection-in-graphql-websocket-escalated-to-pii-document-leak-09ba7ad2800a" target="_blank" rel="nofollow noopener">medium.com/@DarkyOS/sql-i… #bugbounty #bugbountytips #bugbountytip

English

710

Osama h0$#@ retweetledi

termireum@termireum·2d

How I Got Into Starbucks' Internal Network using a non resolvable hostnames credit: @damian_89_ argosdns.io/blog/how-i-got…

English

199

11.6K

Osama h0$#@ retweetledi

sin99xx@sin99xx·3d

This time HIGH severity triaged, 5th bug in 9 days in Public Program Back to back Same day triage 🚀

English

166

3.6K

Osama h0$#@ retweetledi

sudi@sudhanshur705·3d

Last year I found a MXSS (dream) bug in a Mail app,it involved bypassing 2 consecutive sanitizers recursive Dompurify calls plus CKEditor.Hope you will like it sudistark.github.io/2026/04/07/mxs… All thanks to @kevin_mizu for putting such great content around mxss and those bypasses🙇‍♀️

English

281

11.4K

Osama h0$#@ retweetledi

termireum@termireum·3d

How I Earned $76,000 From a Single Program on Bugcrowd anonhunter.medium.com/how-i-earned-7…

English

107

3.7K

Osama h0$#@ retweetledi

p4@peeefour·2d

he started in 2025 and pwned every feature of a public programs MAIN APP. im proud of my boy but this just goes to show, anything is possible with the right mindset. keep up the great work twin. 🕷️🙏🏾

sin99xx@sin99xx

Last one, now I'm gonna spend time on learning more coz I guess I found everything from last research.

English

Osama h0$#@ retweetledi

termireum@termireum·4d

RCE via Insecure JS Sandbox Bypass @win3zz/rce-via-insecure-js-sandbox-bypass-a26ad6364112" target="_blank" rel="nofollow noopener">medium.com/@win3zz/rce-vi…

English

240

16.3K

Osama h0$#@ retweetledi

mrx_w_@MrxXb12·4d

I just published a full write-up about how I discovered a blind SQL injection in a private bug bounty program. @mrx_w_/how-i-discovered-a-blind-sql-injection-in-a-private-program-7eebd77ad286" target="_blank" rel="nofollow noopener">medium.com/@mrx_w_/how-i-… #BugBounty #BugBountyTips #Bugcrowd #CyberSecurity

English

225

8.6K

Osama h0$#@@HackeroneO33301·4d

@grayrwn عبيط جدا جميني

العربية

383

riri@grayrwn·5d

بحس gemini اذكى من chat gpt

362

230

5.3K

512.9K

Osama h0$#@ retweetledi

Casper0x@_casper0x·2 Mar

Simple XSS payload for AngularJS testing. Older AngularJS versions are still vulnerable to expression injection. {{$on.constructor('alert(document.domain)')()}} #BugBounty #XSS #bugbountytips #hackerone

English

161

6.6K

Osama h0$#@ retweetledi

Casper0x@_casper0x·6d

Finding the right SQLi payload isn’t always easy @lu3ky13 Built this with AI (obsidianlabs.cloud) For POC: ';IF(LEN(USER_NAME())>=5)WAITFOR DELAY '0:0:20'-- #BugBounty #SQLi #bugbountytips #hackerone #SQL

Casper0x@_casper0x

Finding the right SQLi payload isn’t always easy. If you can’t craft custom logic, use Time-Based techniques to prove control. Built this with AI (obsidianlabs.cloud) for a POC: ';IF(LEN(USER_NAME())>=5)WAITFOR DELAY '0:0:20'-- #BugBounty #SQLi #bugbountytips #hackerone

English

221

14.5K

Osama h0$#@ retweetledi

Sayed Abdelhafiz@dPhoeniixx·6d

four bugs to the same program, 1-click rce (lowerd to high), 3 access token leaks (some lowered to medium). what is impressive, no single response from the program for about 5 months, h1 mediation didn't reply, what is going on? h1 is dead?! @Hacker0x01 what?!

English

184

8.3K

Osama h0$#@ retweetledi

Muhammad Saqib Arif 🇵🇰@saqibarif98·5 Nis

$1,500 Recon Secrets: Dorks to Dollars @tinopreter/1-500-recon-secrets-dorks-to-dollars-0e7eca022708" target="_blank" rel="nofollow noopener">medium.com/@tinopreter/1-…

English

142

7.2K

Osama h0$#@ retweetledi

pyn3rd@pyn3rd·3 Nis

#CVE-2026-22738: Spring AI SimpleVectorStore Hit by SpEL Injection — Remote Code Execution Risk in AI Pipelines

English

Keşfet

@Videoohat @sidi_jeddou_dev @rez0__ @WorstWursts @arabmemesss @Hajjaj0x @0xwer8 @damian_89_