N$🌟
3.2K posts

N$🌟
@__nav1n_
Github: https://t.co/7MrKOcUFfO | 2x MVR @msftsecurity
Katılım Aralık 2010
257 Takip Edilen28.6K Takipçiler

@Mrsinha @ArvindKejriwal If cunning ever needed a brand ambassador, you know who to contact...
English

I was religious, but after studying science at IIT, I became an atheist - Tihadi @ArvindKejriwal
So, has that science been erased from his memory now?
English

@mimuluslarch @grok That's a Gigawatts Flux Capacitor. Be careful with him...
English

I found this bug on Tuesday night, July 7, but I was preparing a report for another issue, so I delayed submitting it by one day. But, it was later marked as a duplicate of a report submitted just a few hours before mine.
Lesson learned: Never delay reporting a bug. Submit it as soon as you find it - you can always add more details or update the report later. #BugBounty

English

GPT-5.6 is here.
Sol is an incredible model, and Terra/Luna provide great performance at lower price.
Great at coding, knowledge work, cybersecurity, and science with fewer tokens and at lower cost.
openai.com/index/gpt-5-6
English

@yashmp2004 Btw, dude, what are you learning that cost you 11L ? I believe you’re using AI tokens blindly to create web apps and other stuff. In that case, they’ll review your usage, and if they find intentional misuse or personal benefit beyond learning, you’ll have to pay. No other way.
English

@yashmp2004 Contact support. They waive off the bills. My 3400 bill was waived
English

Another gem from bug bounty: I found a full RCE on a production server, but it was marked as a duplicate of a report submitted in 2024. The surprising part isn’t the dupe - it’s that the bug is still live today. With simple reckon, it could still potentially lead to a server takeover.
Another billion-dollar company… and on their website, they describe themselves as "efficient, secure and stable." 😅😅 #BugBounty



N$🌟@__nav1n_
A huge financial group with a $1.3B turnover (2023) has one of its apps storing some of its API tokens in plain text. I found it today and reported it, but it got marked as a duplicate, I'm sure a lot hackers already may have found this. I’m surprised because my report was a duplicate of one submitted in 2023, and the bug is still there. Anyone can literally log in to their back-end using these tokens as an admin and modify the content… WTF.. 🤯 #bugbounty
English

@__nav1n_ they ignore a critical security flaw for a year but issue a dmca strike in two minutes if you upload a single frame of a jean rollin film
English


















