Samet Sahin

I'm excited 🎉 to introduce JSSCM! A browser extension that detects expired domains for Stored XSS. So you can find XSS and earn money while casually browsing. I've earned $5K+ in bounties with this extension. Check it out #BugBounty #OpenSource

@albinowax i noticed the same problem when i was doing bounties. so i drafted something called BBSS, bug bounty scoring system. but then i realized the real problem is not CVSS but the programs' tight budgets, which is a common problem in non-revenue-generating areas like cybersecurity 🤷‍♂️

CVSS' Attack Complexity metric is the bane of bug bounty hunters: "you tried really hard to find that bug, so we'll pay you less".

today i got this cute little mug from the @Hacker0x01 london meet up 😅 it was nice to catch up with folks

I'm excited 🎉 to introduce collectvars! A browser extension that finds all JS variables and detects dangerous ones. So you can find secrets and earn money while casually browsing. Check it out github.com/sametsahinnet/… #BugBounty

GitHub repo: github.com/sametsahinnet/…

I'm excited 🎉 to introduce JSSCM! A browser extension that detects expired domains for Stored XSS. So you can find XSS and earn money while casually browsing. I've earned $5K+ in bounties with this extension. Check it out #BugBounty #OpenSource

@ITSecurityguard Looks good. You might want to display EPSS score. I always check it to see if there is a known exploit. Just in case huntdb do not find all known exploits automatically.

Made a simple dashboard to help track/search CVEs and security vulnerabilities in near real-time. No fancy stuff - just a clean interface to see what's burning in the security world right now. (it's Ivanti🙈) huntdb.com/cve/CVE-2025-0…) huntdb.com Feedback welcome!

1 Bug, $50K+ in bounties: how Zendesk left a backdoor in hundreds of companies #bugbountytips gist.github.com/hackermondev/6…

In August, watchTowr Labs hijacked parts of the global .mobi TLD - and went on to discover the mayhem that we could cause. Enjoy.... labs.watchtowr.com/we-spent-20-to…

Here how it works

New blog post on hacking EPP servers: How we could've taken over the .ai, .bj, .bw, .ci, .gl, .ke, .kn, .lb, .ly, .mr, .ms, .mz, .ng, .pyc, .rw, .so, .ss, .td, and .zm TLDs. hackcompute.com/hacking-epp-se… Work from @rhyselsmore, @bbuerhaus, @infosec_au, and myself.

Google 2022 Bug Bounty year in review: security.googleblog.com/2023/02/vulner… Highest single bounty was over $600k!

We’re at #CSAW2022!

It's dangerously easily to ignore good research due to glancing at the title and thinking you already know something. I nearly missed this entirely

I'm attempting to kick off some research on a topic unrelated to request smuggling & cache poisoning, and wow it's a struggle. Specialism is dangerous stuff.

Emojis can be used to deliver malicious payloads (i.e. to hack systems). Clever. î.fr/defcon/DEF%20C…

Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling by @albinowax portswigger.net/research/brows…

There is an ugly side to collaboration in bug bounties, which is often never spoken about publicly. It's my least favourite part of bug bounties. Keen to hear peoples thoughts. shubs.io/the-ugly-side-…

Open redirect vulnerability and how to use it "correctly" in bug bounty 🙃 link.medium.com/ftOSGKkZtqb