Sabitlenmiş Tweet
Nice day and nice Bug= Nice bounty :)))😎🤘💸
Yay, I was awarded a $3,000 bounty on @Hacker0x01 #TogetherWeHitHarder
English
A.fahimi
429 posts
Building and selling AI trained on researchers’ reports while closing researcher accounts without clear explanations?
That’s not how you treat the community that built your platform.
Transparency, consent, and respect for researchers are not optional. @Hacker0x01
HackerOne@Hacker0x01
Point-in-time pentests can’t keep up, while fully autonomous testing creates noise. The solution? HackerOne Agentic PTaaS pairs specially trained AI agents with elite human validation to deliver results based on real-world exploitability, not theory. This 50-second video shows you how it works.
English
@NeverGiveUP8333 It was entirely a solo journey, and all the work was done independently.
English
I’ve just published a write-up 👇
One endpoint, one bug, full root access.
A real-world LFI → RCE case study with a $2,500 bounty.
👇
@Af4himi/how-a-simple-lfi-turned-into-full-root-rce-b8da5c71b4b3" target="_blank" rel="nofollow noopener">medium.com/@Af4himi/how-a…
#bugbountytips #bugbounty #bugbountytip
A.fahimi@af4himi
reading Js >> found an endpoint file inclusion >> LFI >> RCE :D Write-up will be published after fix on: blog.voorivex.team #BugBounty
English
@af4himi would u publish something for SQLI recon or something like that?
English
you just need to find the right entry point 🔥
Still hunting, still learning — the journey continues.
Deep recon always pays off🤓
#Bugbounty
English
reading Js >> found an endpoint file inclusion >> LFI >> RCE :D
Write-up will be published after fix on:
blog.voorivex.team
#BugBounty
English
بچه هایی که باگ بانتیکارمیکنید سوال میکنید برای نقد کردن بانتیامون چیکارکنیم امیر @Amir0x01 کارش خیلی درسته آیدی تلگرامشم میزارم کمکی خواستید براتون اوکی میکنه t.me/Offensive
فارسی
@NahamSec @Hacker0x01 The community built Hackerone, not the other way around. banning out hackers by nationality isn’t just business—it’s racism. Hackers don’t stop, platforms do. :))
English
Really disappointed to see @Hacker0x01 do this. I also had a similar interaction with h1 about a month ago where they questioned my nationality and place of residence after 10+ on the platform.
YS@YShahinzadeh
I’ve been hunting on H1 for almost 3 years, ranked #18 in 2025, have always tried to contribute positively to the hacker community. I’ve earned around $500k in bounties and was on the road to $1M. Yet I don’t even have HSM, and I feel I haven’t been recognized as I should 1/4
English
@GodfatherOrwa @Hacker0x01 I honestly don’t know why they did this.
At least they should explain why my account was banned. 🤷♂️
English
English
HackerOne is banning accounts without any clear reason. My account, with 2 years of work and $5000 left in bounties, was banned for nothing. It’s obvious they just want to take hackers’ rights. Shame on HackerOne."
These actions by HackerOne are purely business-driven
@Hacker0x01
YS@YShahinzadeh
I’ve been hunting on H1 for almost 3 years, ranked #18 in 2025, have always tried to contribute positively to the hacker community. I’ve earned around $500k in bounties and was on the road to $1M. Yet I don’t even have HSM, and I feel I haven’t been recognized as I should 1/4
English
A.fahimi retweetledi
Yesterday it was me and @GodfatherOrwa.
Today, HackerOne banned @YShahinzadeh — one of the most talented hackers on the platform.
Tomorrow it could be any of us… unless you’re a big content creator with a huge following.
HackerOne grew because of hackers.
We deserve to be treated with respect, not sidelined.
The community that built the platform deserves better.
English
Q2 summary on @Hacker0x01
1- ranked 80 in global leaderboard
2- ranked 52 in highest critical reputation
3- $41k ( Most of IDOR & XSS & Auth)
4- 31 submission ( 4 critical , 7 high, 10 medium, 4 low , 3 duplicates) some of still PPR
English
I took a little break from bug bounty.
But I’m back now — and made $13,850 in just one month.
Guess the bugs missed me 🐞💰
Huge thanks to @Bugcrowd and @yeswehack for the support and awesome platforms 🙌
#Bugbounty
#ItTakesACrowd
English
English
English
@IranIndiaCo من اشتباهی که کرده بودم این بوده که الگوی قفل گوشیم با الگوی ولت safepal ام یکی بوده دوتا ولت داشتم اون یکی که رمزش فرق میکرده رو نتونسته برداره
فارسی
@af4himi دزدی شخصی با دزدی حرفه ای نشونه های
خاص خودشون رو دارن.
از رفتارش میشه بفهمی اشنا بوده یا نه. مثلا اشنا سرعت و دسترسی به این جاهایی که داره انتقال پیدا میکنه داره؟
دزدی حرفه ای اگر باشه سر نخ به جاهای عجیبی میره تو شبکه خود دزدا پخش میشه.
اونها بین خودشون حساب کتاب دارن سهم..
فارسی
@af4himi آشنایی که رمز گوشی داره و بهش گفتی که کیف پول داری و رمز کیف پولم داره که واردش بشه و عکس بگیره از سیدهاش فک نکنم فقط آشنا باشه 😂
فارسی