Kyaiden

331 posts

Kyaiden

@kaisec42

ethical hacker

Nairobi, Kenya Katılım Şubat 2026

180 Takip Edilen3 Takipçiler

Kyaiden@kaisec42·9h

@infosec_au I thought I was suffering from luck of motivation, I don't feel like hacking and reporting anymore, a lot of panic attacks on the often and feeling like I should really quit now.

English

187

shubs@infosec_au·17h

shubs.io/the-down-fall-…

ZXX

100

477

29K

Kyaiden@kaisec42·2d

@ZeroK_____ We still have a year or two to enjoy and earn from BB

English

0K@ZeroK_____·2d

I never realized how much of this space revolves around marketing companies and AI agents until I learned more about them. Some companies and most “AI agent” guys are just doing pure marketing nonsense, nothing more and nothing less. Meanwhile, blackhats keep showing us what real work looks like by hacking a new project almost every day. So ignore all this nonsense, focus on securing people’s money, improving your skills, and earning good rewards for yourself.

English

1.5K

Kyaiden@kaisec42·2d

@ZeroK_____ Great time to level up and get bugs since the stupid marketing is scaring people off from the actual work, high quality learning materials, AI is always there to help you understand things more than a million ways, and less competition because everyone is quiting.

English

Kyaiden@kaisec42·5d

@wadgamaraldeen Will definitely check the write ups

English

Mustafa Adam Gamaraldin Abdalla 🇸🇩♥️@wadgamaraldeen·5d

Password Reset = Authentication. If the reset flow is weak, the entire security model collapses. Writeup 👇 wadgamaraldeen.medium.com/critical-zero-… Methodology 👇 github.com/wadgamaraldeen… #BugBounty #CyberSecurity #AccountTakeover #AppSec

English

776

Mustafa Adam Gamaraldin Abdalla 🇸🇩♥️@wadgamaraldeen·5d

بفضل الله سبحانه وتعالى ❤️ أنهيت منتصف الربع الثاني من 2026 بتحقيق المركز الثالث على مستوى السودان في منصة @Hacker0x01. خلال الأشهر الماضية ركزت بشكل أساسي على كسر Authentication Design Flows واكتشاف ثغرات الـ Account Takeover.

Mustafa Adam Gamaraldin Abdalla 🇸🇩♥️ tweet media

العربية

149

3.6K

Kyaiden@kaisec42·5d

@medusa_0xf Been saying this for ages. 🤗

English

164

Medusa@medusa_0xf·5d

AI only helps hackers who already know HOW TO HACK and they been good at it since years and constantly learning. If you think you can cheat using AI in hacking without having the actual underlying understanding then good luck 🫩

English

130

5.2K

Kyaiden@kaisec42·6d

@siya11012 and

siya@siya11012·11 May

Can you answer..?

English

111

5.9K

Kyaiden@kaisec42·6d

@siya11012 What if you see two roads

English

238

siya@siya11012·12 May

If you're right-brained, you'll see a cat. If you're left-brained, you'll see an octopus. What do you see?

English

339

8.3K

7.6M

Kyaiden@kaisec42·6d

@0x_rcss @MosheTov Avoid by all means necessary 😂🤣

English

Raphael Silva@0x_rcss·6d

@kaisec42 @MosheTov Oof yeah, not surprised lol

English

Moshe Siman Tov Bustan@MosheTov·11 May

This went twice as well as the GitLab bounty!

English

2.4K

Kyaiden@kaisec42·6d

@0x_rcss @MosheTov I have seen this a couple of times now.🤣😂

English

Raphael Silva@0x_rcss·6d

@kaisec42 @MosheTov Maybe 😂 It's in my profile. Is that amount normal for them? I did notice their average was really low lol

English

Kyaiden@kaisec42·6d

@0x_rcss @MosheTov I have seen someone complain of the same thing, wait a minute lemme get the tweet, personally am never trying OPPO, a lot of negative reviews.😂🤣

English

Kyaiden@kaisec42·6d

@MosheTov @0x_rcss This is really a great idea.🤣😂

English

Moshe Siman Tov Bustan@MosheTov·6d

@0x_rcss @kaisec42 HackerOne should give an option to automatically bet those amounts on a roulette😅

English

Kyaiden@kaisec42·6d

@the_IDORminator @m4ngofloat_ I guess this answers it 😂🤣

English

the_IDORminator@the_IDORminator·11 May

@m4ngofloat_ @kaisec42 Get it?

GIF

English

the_IDORminator@the_IDORminator·8 May

Everyone, the $100 course discount is live! Get out there and slay those bugs. Remember, share for a chance to win one of the free give away codes on May 14th. 🤟

the_IDORminator@the_IDORminator

🚨 As of tomorrow I am permanently reducing my course cost by 50% to $100 so more people have access to it and can get those bounties while they are still hot. And yes, they are still hot. The internet is still full of stupid problems waiting to be found for those looking, at least for now... t.co/HsobzB2lOi I suspect we have about 2 years of decent #bugbounty hunting left before most companies have access to and properly leverage the tools like Mythos that effectively replace "most" hackers. Using the EXACT methods in this course, I found 20+ critical bugs on a target in a matter of hours the other day. Nothing fancy. The internet is just too dang big to fix and patch in a small amount of time, even if AI is finding the bugs. Internal legacy human processes with 500 steps are still bottle-necking remediation. What the bug bounty world becomes next is anyone's guess. My suspicions, hackers will be paid flat rates for hacking and/or patching targets any way they can (be it AI, manually, or both). So, here's to the next evolution of hacking, which is hopefully round-table LHE's where we all work together on targets to harden them as best as possible, instead of working against each other to try to "be the best hacker". Re-post for a chance to win 1 of 5 course coupons for a give away on May 14th. I'll have Grok pick the winners.

English

5.9K

Kyaiden@kaisec42·6d

@sin99xx Struggled with the copy paste methodology style, a lot of beginners struggled with this.

English

117

sin99xx@sin99xx·11 May

finally someone said it clearly

English

17.9K

Kyaiden@kaisec42·6d

@0x_rcss @MosheTov This must be OPPO 🤣😂

English

Raphael Silva@0x_rcss·11 May

@MosheTov I got the best bounty ever a couple weeks ago too :)

English

187

Kyaiden@kaisec42·11 May

@weezerOSINT Just here for the comments. 🤗

English

3.3K

impulsive@weezerOSINT·11 May

So he found a real ffmpeg bug with a fuzzer then let gemini convince him it was a chrome RCE. wrote a fake proof of concept that doesn't even use ffmpeg, just his own code writing past his own buffer going "look RCE!" google asked if it works in a browser. he said "me and gemini have been trying to figure that out." it did not work in a browser. wontfixed.

dawgyg - WoH@thedawgyg

Well since Google sucks fat donkey dick (still annoyed they waited >2 months to reject my RCE payload because i used the --single-thread flag in repro)... This was disclosed yesterday: issuetracker.google.com/u/1/issues/478… It was my 1st attempt to report the vuln that allows for RCE on every Chromium browser since Dec 2018. This one was rejected because I was still learning how to prove Chrome reachability. Ended up filing a new report a week later after figuring out a trick to bypass Chromium's validation on video files and being able to prove reachability.

English

709

89.9K

Kyaiden@kaisec42·10 May

@OriginalSicksec @the_IDORminator valid response🤣😅

Español

SickSec 🇲🇦 🇵🇸@OriginalSicksec·10 May

@the_IDORminator If I remove a nail with a hammer - is the hammer using me or am I using the hammer ? 🤣🤣

English

1.4K

the_IDORminator@the_IDORminator·10 May

Just remember, if AI finds security bugs for you, you are not a hacking -- it is. It is the hacker now, and you are the tool its using to tell it where to look Fighting words 🤣

English

146

7.3K

Kyaiden@kaisec42·10 May

@the_IDORminator just reading the threads, I know there is someone who will see red after reading this tweet. 😅🤣🤣

English

427

Kyaiden@kaisec42·10 May

@kyr19n Lemme watch as you grow to an expert in this field.

English

Kyrian@kyr19n·10 May

Today's Update I chose a program to start with, learnt about new recon tools like Nuclei and co, looked for subdomains then did recon for an hour, also learnt new terminologies used in the bug bounty world, nothing much , we go again tomorrow #hackerone #cybersecurity #bugbounty