Karan Sharma

@FroztNova127 Where is writeup

Day 1 - Bug Bounty - Focusing on hunting BAC, found 3 bug and submitted Submitted: 3 Triaged / Pending: 0 Accepted: 0 Total bounty: 0$

Google VRP Writeups — Real Exploits, Real Bounties 🐛🔥 Curated list of Google VRP (Vulnerability Reward Program) writeups: • Real-world bugs → XSS, SSRF, RCE, IDOR, Privilege Escalation • High bounty cases → $100k+, $50k, $20k reports • Google Cloud, YouTube, Gmail, Chrome attack surfaces • Both blog + video writeups from top researchers If you're serious about bug bounty, this is where real learning happens — not theory. 🔗 github.com/xdavidhu/aweso… #BugBounty #GoogleVRP #Pentesting #CyberSecurity #Infosec #AppSec

GitHub repos with reports/writeups for bug bounty hunters: 1. HackerOne Reports github.com/reddelexc/hack… 2. Google VRP Writeups github.com/xdavidhu/aweso… 3. Facebook Bug Bounty Writeups github.com/jaiswalakshans… 4. Awesome Bugbounty Writeups github.com/devanshbatham/… 5. Daily Bugbounty Writeups github.com/securitycipher… #BugBounty #BugBountyTips #Infosec #EthicalHacking #CyberSecurity

I was tired of manually finding leads… so I built my own tool 🤝 This Python tool scrapes Google Maps and gives you business leads in minutes 🚀 → Keyword + Location → Auto scraping → Export data 100% free & open-source 👇 github.com/KaranSRMA/goog… Would love feedback 🙌

reddit.com/u/devscure/s/5… Security Testing Program – Gym Web App 🚀 Looking for beginner/intermediate testers to practice on a real app. Focus: Auth, API security (IDOR), XSS Rules apply • No automation • Limited slots DM me if interested #bugbounty #infosec #websecurity

Why You’re Not Finding Bugs (And How Hackers Actually ) @uday637/why-youre-not-finding-bugs-and-how-hackers-actually-do-with-idor-8b456bacfaf6?source=rss------bug_bounty-5" target="_blank" rel="nofollow noopener">medium.com/@uday637/why-y… #bugbounty #bugbountytips #bugbountytip

When I started bug hunting, I went from $0 to $3K/month in just 6 months. No secrets, no shortcuts, just a refined process. Here is the exact framework I followed: 🧵

@Mishi_2210 2*2-1=3 3*3-1=8 4*4-1=15 5*5-1=24 6*6-1=35 7*7-1=48

Answer without Ai Let's try and win $1000

@_stainless0_ 😩😁🤔🤣😂🧐

No cheating.

@nitesh_singh5 I am interested Here is my portfolio: karan-black.vercel.app

Role - Junior Frontend Developer Salary - 9-30 LPA Location - Remote - HTML5, CSS3, JavaScript (ES6+) - Basic experience with at least one frontend framework Let us know if you are Interested 👇

@nitesh_singh5 Interested

Role - Software Development Engineer - Intern Stipend - ₹ 20k/month Experience - Freshers Let us know if you are Interested 👇

@princeofweb3 The fig ra cdrg fast.

No cheating guys Go !

@SecurityTrybe @X hi

Hi @X I'm looking to Connect with people who are interested in: 🔒 Cybersecurity 🕵️‍♂️ Ethical Hacking 🔐 Network Security 🛡️ Penetration Testing 📊 Security Analytics 👨‍💻 Cyber Forensics 📚 Cybersecurity Research 🚨 Risk Management 🧑‍💻 Secure Coding 🪲Bug Bounty Drop a hi and let’s connect

I’m a beginner in bug hunting. Tried many programs but found nothing 😫. I think I picked the wrong targets. Could you suggest one beginner-friendly program to safely practice and learn? Not looking for bounties, just a place to build skills. Thanks a lot! 🙏 #BugHunting

@FroztNova127 @yeswehack Congrats on finding the bug and getting the bounty! 🎉💰 Honestly, you really motivate me, seeing your success makes me believe that one day I’ll also find my first valid bug. 💪🔥

My first valid bug and bounty from @yeswehack LFG!!!! 😭😭🔥🔥

💡 XSS Trick: Split payload across fields. Example: FName=<img src=x LName=onerror=alert(1)> When the app renders FName + LName, your pieces join and fire. Good to try on the signup/profile forms.

Bug Bounty Tip: If you have a UUID-based IDOR and can't find a valid UUID of other users, do this: Search the endpoints that hold UUIDs on GitHub! You will usually find that other users have left their UUIDs in their sample codes/scripts.

I’m a beginner in bug bounty. Completed @PortSwigger labs (mostly with solutions) and now hunting real sites. People say ‘just hunt and learn’ but I feel stuck since I can’t even find the bugs I learned in labs. Any advice to overcome this stage? 🙏 #bugbounty

Bug hunters, how do you usually test for IDOR? I know the basics (checking params, object IDs, user IDs etc.), but curious what patterns or workflows you use in real hunts. #BugBounty #WebSecurity #InfoSec