Hope you like it 🥂🥂 #BugBountytips.I just published $1,000 Bounty for Bypassing Restrictions via Modified HTTP Request

Bounty amount was rewarded on old submission with new bounty table. I raised this issue 5 minutes ago and @Hacker0x01 responded and resolved within 5 minutes. Thank you @Hacker0x01 @jobertabma for quick solution #bugbounty

I was awarded $2,000 Bounty for another 3 Reports.#BugBounty 🤑🤑🤑

#BugBounty.Reported only 90 CVE-2025-0133.2 - Pending Program Review.1 - Triaged .2 - rewarded $700(+$100$ retest) + $100.85 - Duplicates

#BugBountyTip .Found Swagger endpoint ?.test.yaml ❌ not working.test.json ❌ not working.test.pdf ✅ WORKED 💸💸

Third bypass of my fixed XSS report.#BugBountyTip .First - basic img payload.Second - double encoded xss payload.Third - triple encoded img xss payload .#HackerOne

some programs are 🔥 on @Hacker0x01

BLIND XSS #BugBountyTip :-.asset in scope wwwdotTARGET1dotcom - 403.wwwdotTARGET2dotcom - 403.wwwdotTARGET3dotcom - 403 with below error."reach to xyz@target3dotcom".1. opened gmail and added img BXSS payload in subject.2. email sent to xyz email. 3. few days later got this 👇

🦉 Proud to share my 2024 #HackerOne journey! 129 vulnerabilities reported, 68 high/critical severity findings, and a passion for web security that never sleeps! Thanks @Hacker0x01 🛡️ #BugBounty #CyberSecurity #HackWithPurpose

I am not Pro , I am not Full time BBH but i improoved myself in six years 😅.2018 - 48 rep points & -2.39 signal points .2024 - 3735 rep points & +2.14 signal points.Thank you @akita_zen (a great Man🫡) for this tweet 🍻.#BugBounty.

My highest retest amount till now.Thank You @Hacker0x01 🍻

censys input :- "WWWdotTARGETdotCOM".

#BugBountyTip $1,000 Tip 👇👇.Target/robots.txt mentioned /devuser/ is present.Target/devuser/ -> 404 .Target/devuser/FUZZ -> all 403,404.found original IP at censys .IP/devuser/ -> 403 .IP/devuser/index.php:DATA -> 200 OK.👇👇👇👇👇

Found interesting ??.

when i inspect that button , see that mf link 😠.which i was looking 3 days ago

when i opened the EMAIL i found there is one Register Button 😵😵

Tried FUZZZing but it gives me 403, 429 errors only 😖. i almost gave up on target when i didn't found any result Later i went to main domain www(.)target(.).com and subscribe for newsletters, updates etc etc. & i gave up on TARGET !!!! ⚔️⚔️. after 3 days, i got EMAIL 😯.👇👇

i went to wayback , there also zero result i found 😭

i tried to search on google but No result there too 😥

#BugBountyTip .How i got access to Internal docx on 403 domain Which ends up on $$$$ ? 😎🤑🤑.Target had Asset inscope was *(.)TARGET(.)com.workdevd(.)TARGET(.)com looks interesting to me but wheni opened the domain i got error 🤓