Hx01
@Hxzeroone
Followers
5K
Following
3K
Media
86
Statuses
582
Not evil just misunderstood.
Alcatraz Prison,SF
Joined August 2017
LOOK MOM, IβM ON TV!!
Last year, @Hxzeroone challenged himself to earn $100k in bounties by his 18th birthday. We sat down with him to talk about his Bug Bounty Journey, tips for staying motivated, and hitting his next Bugcrowd milestone! π https://t.co/heRdLLWFIf
9
5
149
Hello! Just published a new research with ( @sml555_ , @codecancare) π» Who Needs A Blind XSS? https://t.co/bUpFj1p0Mh
#CyberSecurity #BugBounty
hx01.me
How spreadsheet formulas quietly ran inside internal systems.
5
42
201
I had a great time at @Hacker0x01's H1-4420 in London. Was great working with @TomAnthonySEO, @Hxzeroone, @codecancare and @seanyeoh! This event also produced this tool: https://t.co/MOuK57Hwh1 which led to about $26k worth of bounties at this event.
github.com
Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable SSRF candidates. - assetnote/surf
10
108
492
The first tweet couldnt fit in all the amazing people @Farah_Hawaa @sh_timmy @vortexau @codingo_ @streaak @iangcarroll @rez0__ @mcipekci
0
0
15
Since we are acknowledging the great relationships weβve formed in bug-bounties iβd also like to thank the friends ive formed along the way @infosec_au @codecancare @HusseiN98D @sw33tLie @ITSecurityguard @m0chan98 @0xd0m7 @bsysop @d00xing @sml555_ @RelentlessT7
iβve been able to achieve great things through teamwork and greatly respect the following people @rhyselsmore, @HusseiN98D, @fransrosen, @Hxzeroone, @codecancare, @seanyeoh, @samwcyo. Weβve had a lot of fun together, the bounties donβt even matter at some point.
8
2
40
Who is Hx01? π€ September's Researcher Spotlight with 8+ years of experience hacking! Check out this impressive #bugbounty journey below! π£ #BugBountyTips #ItTakesACrowd
https://t.co/pK5SYPVRXx
bugcrowd.com
Hx01 is a full-time hacker, with 8 years of experience, and a brilliant set of python scripts. Check out the blog to learn more!
2
5
86
I and @Hxzeroone somehow broke the internet this week. A total of approximately 200 reports sent so far across #Bugbounty platforms for this 0day. All the giants are affected. I mean it.
18
16
280
It's finally live - I'm sorry for the time this took! The workshop I gave at @THREAT_CON is now live on Udemy for a discounted price. The price will go back to $149 at the end of the week . More details to follow. https://t.co/7LoaJOwhzH
39
88
388
ππ»
Congrats @Hxzeroone for reaching an ambitious goal! π With the amazing collaboration and efforts (not to mention memes π₯) we saw in the #TeamHunt2021, weβre honored to be a part of this milestone! Great work! π
1
1
29
The Monstars looking strong πͺπΌ BUT weβll see how many dupes/na/reduced sevs we get. Regardless, extremely proud of our team! @codecancare @ArchAngelDDay @HusseiN98D @Hxzeroone #bugbounty #infosec
We want to take a moment to applaud ALL of the #TeamHunt2021 #Hacker teams! The collaboration we've seen throughout this challenge π π₯ π π π π π π π π π π π Check out the leaderboard below! Final results coming soon π π§‘
2
3
20
Did you know we recently expanded our Collaboration feature? Since then, we've caught up with @codecancare and @Hxzeroone , a couple of Monstar's talented players in the #TeamHunt2021 challenge! π Check out this inspiring collab experience below!π π https://t.co/J2e7FNyFdR
bugcrowd.com
Unless youβve been living under a rock, Bugcrowd expanded our Collaboration feature this year. To complement this extraordinarily convenient feature we also announced our first-ever #TeamHunt2021...
4
3
63
Get ready to fight The Monstars! #TeamHunt2021 #bugcrowd #bugbounty @codecancare @Hxzeroone @rez0__ @ArchAngelDDay π
0
3
40
If you're gonna hack in the upcoming BugCrowd competition, you gotta battle the Monstars if you want to win! @codecancare @ArchAngelDDay @HusseiN98D @Hxzeroone #bugbounty #letsgoooooooo
0
0
22
If you're a triager/program owner who has published/stolen a researcher's private bug/0days. Fuck You! There have been multiple times where i had to hold on to vulns because of a sloppy PO and let go possible $$$$.
Shame on the writer of this blog: https://t.co/CKuRBBGwXc who stole @codecancare 's research when Eric sent a bug to the company he was triaging for. I wish bug bounty platforms could do something for such cases.
1
1
35
π₯
Great learning experience having my first LHE participation as the AntiPineapplePizza team with great hackers such as @codecancare, @HusseiN98D, @mcipekci and @Hxzeroone We won @BugCrowd's #BugBash as Best Collaboration having the highest amount of total points in the event
0
0
15
I've built a new Go tool with @xm1k3_ that can be used to run distributed commands across Linode&Digitalocean VPS to quickly get scan results. If you're into #bugbounty and automation make sure to check it out, you might find it useful! π #bugbountytips
https://t.co/Pf6dQf9RKt
11
69
191
Major bug bounty platforms need to get comfortable with firing bad programs. It's negatively affecting so many people, and ruining an otherwise-awesome model.
23
40
274
The pending bounties are now in five figures; Google messed up my contractor account by creating it twice π« p2p-vrp is unable to provide with an ETA is there anyone who could chase it? @sirdarckcat @GoogleVRP
Istg its easier to hit googleβs internal then to get yourself registered as a contractor for google vrp π©
4
1
12
Istg its easier to hit googleβs internal then to get yourself registered as a contractor for google vrp π©
10
0
41