Jayesh Madnani

@damian_89_ @ITSecurityguard @Th3G3nt3lman @GodfatherOrwa Awesome. This is going to be really valuable specifically on those large scopes :P

An there it is - "Domain Intelligence": argosdns.io/domains (for public access) Feel free to explore. Trial users can explore preset limited data, growth plans+ can search their own stuff! @Jayesh25 @ITSecurityguard @Th3G3nt3lman @GodfatherOrwa

@damian_89_ @Th3G3nt3lman @GodfatherOrwa That would be super nice.. would make it so much easier to shortlist interesting stuff 🙌🏻

Someone interested in this type of data within argosdns.io? Thinking of allowing regular users to access it. @Jayesh25 @Th3G3nt3lman @GodfatherOrwa

Why can the ArgosDNS.io database look smaller in some cases? Because bigger subdomain counts can just mean more wildcard noise. This article explains why: argosdns.io/blog/wildcard-…

I’d say each has its own strengths but personally I’ve already replaced SecurityTrails with ArgosDNS. In my testing I’ve seen better quality results probably because the data seems to refresh more frequently and the product seems to be very focused on this niche. Another big factor for me was the price point it’s realistic enough that I can actually run it every few days via the API. With SecurityTrails that gets pretty expensive very quickly. That said, the free version is a good starting point if you want to compare the results and data freshness yourself before deciding. Most people will probably end up seeing similar differences once they try both :)

@Jayesh25 @damian_89_ Would you recommend it over securitytrail?

I've had firsthand access to ArgosDNS and can say it’s produced quite a few solid results that I didn’t even have in my own database. Unlike many tools, the data actually feels meaningful rather than just raw volume. I've known @damian_89_ a while and have been chasing him for ages for his recon secret sauce 😄 From what I’ve seen so far, ArgosDNS is doing a lot of smart permutations, picking up real-world naming patterns, scanning cloud certs, and doing a ton of crawling behind the scenes to get this data. It’s also nice that the dataset is already deduped so you’re not dealing with garbage. Feel free to give it a shot at argosdns.io

@Omkumar_13 Not quite what I meant but during live hacking events programs have a higher bounty scale than usual and of course these are high-paying programs that one would usually shy away from unless they were specifically in an LHE and learned about their true potential.

@jayesh25 So they pay around $7.5k-$10k for XSS kinda bugs at LHE whereas its only around $500-$800 normally??

Here’s a quick insight into how a single opportunity can dramatically change your earning potential in bug bounties. Ever wondered what kind of difference a Live Hacking Event (LHE) can make? Picture this: You report 10 XSS vulnerabilities on a newly launched public program and walk away with around $5k in total bounties. Now compare that to someone invited to a Live Hacking Event reporting those same 10 XSS bugs - they could easily walk away with $75k–$100k. Same bugs. Completely different outcome. That’s the power of getting invited to an LHE. It unlocks new scope, direct access to top programs, face-to-face interactions with HackerOne triage and security teams, networking with elite hackers, and opportunities you won’t get anywhere else. HackerOne has outlined the eligibility criteria for invites here: hackerone.com/blog/earning-h… My advice? Focus your efforts on aligning with these criteria. One invite can really shift your entire growth curve, skills, learning, recognition, and bounties. PS: Drop a comment if you feel you should’ve been invited to an LHE but haven’t yet. I’d love to hear your experience and it may help surface visibility for @Hacker0x01.

PS – Shoutout to @H4cktus for the Idea to give this a try :)

Scored a $5,000 bounty today. I’ve only started messing around with AI in my workflow THIS week. Normally I’d spend hours trying to escalate certain bugs - the kind that takes a lot of digging and escalation and I'd usually end up moving away from it considering the ROI. But this time I let AI handle some of the painful parts of the manual escalation process and it actually helped me efficiently escalate the bug. Ended up turning what would’ve been a tiny payout into a $5000 bounty. Now I’ve basically got Burp Suite on one screen, AI on the other, and it feels like cheating (in a good way). This might actually change how I hunt moving forward with respect to escalating stuff to avoid manual work whereever possible. 🚀

@H4cktus @cursor_ai @CaidoIO Wild stuff. Can confirm 🫡😛

Also, @cursor_ai can also connect to @CaidoIO’s proxy on localhost via its embedded browser when a proxy is needed, just saying 👀. Here it used the proxy to solve a traversal sequence that had been stripped by a superfluous URL-decode from PortSwigger Labs. #BugBounty #bugbountytip

@thedevire @H4cktus @itz_mg_ @_naaash_ @Hacker0x01 🫡

@jayesh25 @H4cktus @itz_mg_ @_naaash_ @Hacker0x01 DAMN! Legendry 🔥🔥

@0trusts @H4cktus @itz_mg_ @_naaash_ @Hacker0x01 Thank you!

@jayesh25 @H4cktus @itz_mg_ @_naaash_ @Hacker0x01 U are Kings bro, keep it up

@_naaash_ @H4cktus @itz_mg_ @Hacker0x01 🫡🫡

@jayesh25 @H4cktus @itz_mg_ @Hacker0x01 yearly shoutout ritual 🔥📢

@H4cktus @itz_mg_ @_naaash_ @Hacker0x01 🫡🫡

@jayesh25 @itz_mg_ @_naaash_ @Hacker0x01 🫡🔥

@tabaahi_ @H4cktus @itz_mg_ @_naaash_ @Hacker0x01 Thanks Mohsin!

@jayesh25 @H4cktus @itz_mg_ @_naaash_ @Hacker0x01 🔥🔥🔥🔥🔥

@bugoverfl0w @H4cktus @itz_mg_ @_naaash_ @Hacker0x01 Thank you bro!

@jayesh25 @H4cktus @itz_mg_ @_naaash_ @Hacker0x01 Congrats bro 🔥🔥🔥

@hetmehtaa @H4cktus @itz_mg_ @_naaash_ @Hacker0x01 Thanks mate!

@jayesh25 @H4cktus @itz_mg_ @_naaash_ @Hacker0x01 Killing it

@H4cktus @itz_mg_ @_naaash_ @Hacker0x01 🔥🫡

Yay, @jayesh25,@itz_mg_ ,@_naaash_ and I were awarded a $35,000 bounty on @Hacker0x01 ! #TogetherWeHitHarder