Orion joshi

Ended 2025 ranked Top 3 worldwide on @Hacker0x01

Teamed up with @OrionJoshi on @Hacker0x01’s platform and we landed with a bounty 🎯 Grateful for the collaboration and the win. #TogetherWeHitHarderYay hackerone.com/0xtheM7

@GxbNt0x01 @Hacker0x01 🔥🔥🔥

Yay, I was awarded a bounty on @Hacker0x01! hackerone.com/gxbnt #TogetherWeHitHarder

Achieved Level 10 in the @Hacker0x01 Milestone Program.

Closed Q3 ranked #1 in Nepal and #25 worldwide on @Hacker0x01

Our team, THREATNIX, secured 28th place with 1416 points at the BlackHat MEA Quals CTF 2025! Huge shoutout to my amazing teammates @AyushXth and @OrionJoshi great work, team!

@jobertabma @NahamSec @stokfredrik @Hacker0x01 orion1x1

Hey hackers! We're running a beta for Hai for Hackers, our AI security agent. If you're interested, please reply with your HackerOne username (we will probably limit to ~100 hackers for now). After it's been enabled, you can start using it by clicking the Hai button in the top right corner of the app. It’s free to use (with a limited daily budget for now). It is like any other AI you’ve interacted with, with the added benefit that it has access to a whole bunch of HackerOne data, like reports and programs. We’re shipping improvements to Hai almost every day. Here are some neat use cases: - “take all the learnings from STÖK, jhaddix, and nahamsec's recon strategy and build one for me!” - “write a python script for a typical recon process” - “i need an XSS payload that doesn’t use single or double quotes” - “my XXE payload doesn't call back to my server, what could go wrong?” - “write a response for report #133337” The beta also comes with Hai Plays for you, which allows you to build your own security agents in HackerOne. You can create them at hackerone.com/settings/hai_p…. Some of the cool use cases we’ve seen so far are: - write reports with minimal input from you (efficiency++!) - convert reports into blogposts with a single prompt - AI mentor to give feedback about your communication and increase the likelihood of a reward In the background we’ve been working on agentic behavior, which we expect will soon come to Hai for Hackers as well. These AI agents can act like your hacking buddy and hack alongside you. We’ll keep you in the loop on our progress.

Server-Side Request Forgery (SSRF) is often underestimated, but it can lead to severe consequences—including Remote Code Execution (RCE). Read here: @0xUN7H1NK4BLE/how-ssrf-leads-to-rce-in-a-net-application-ee1b13812245" target="_blank" rel="nofollow noopener">medium.com/@0xUN7H1NK4BLE… #CyberSecurity #SSRF #RCE #EthicalHacking #hackingtips

TeamNepal🇳🇵 going at the full speed for the @Hacker0x01 #AmbassadorWorldCup #bugbounty

🇳🇵🇳🇵🇳🇵

Hacked @Apple for the third time.

@0xUN7H1NK4BLE Congratulation

finally CPTS done!!

Bounty from @Hacker0x01.

2nd Hall of Fame from @Apple . You can find me here: support.apple.com/en-us/HT201536

Hey bud @OrionJoshi

hackerone.com/alchemy_insigh… 👀

Another Triaged on @Hacker0x01 .

2nd Bounty from @brave on @Hacker0x01 .

Got @Apple Hall of Fame after reporting multiple security issues. now waiting for the bounty

@NishanShil72327 @Hacker0x01 Sensitive data exposed

Some more findings on @Hacker0x01. More to come. #bugbounty

@bug_vs_me @Hacker0x01 Thank you one of the inspiring people to me

@OrionJoshi @Hacker0x01 Great 💯