My new writeup: 23000$ for Authentication Bypass & File Upload & Arbitrary File Overwrite.

RT @Partisan_12: “What they've done to Gaza is f***ing insane. & if you can't see that, if you can't say that, your response is, Israel has….

Roger Ver ?

What The best job in cybersecurity? Obviously, being a cybersecurity content creator — where you don’t need to secure anything, just wear a hoodie, open Burp Suite, and say ‘This is insane!’ every five seconds.

RT @albinowax: When HTTP/1.1 Must Die lands at DEFCON we’ll publish a @WebSecAcademy lab with a new class of desync attack. One week later,….

RCE on Call of Duty WWII exploited in the wild.

7144 known vulnerabilities 🤓

RT @n1nj4sec: I recently found a blind FreeMarker SSTI on a bbp. It was not possible to RCE but I found some nice gadgets to enumerate acce….

RT @zachxbt: 1/ My recent investigation uncovered more than $16.58M in payments since January 1, 2025 or $2.76M per month has been sent to….

RT @mistymntncop: Mini Writeup of CVE-2025-6554. POC by @DarkNavyOrg. All errors in writeup my own.

RT @0xacb: Nginx normalizes paths (/. /, %2e, etc.) before applying access rules like: location = /admin { deny all; }. But backends like N….

👏👏👏👏.

RT @albinowax: This talk will mark a personal milestone - my tenth presentation at #BHUSA! Feels like yesterday I stepped on stage to prese….

RT @Eyax0: Q2: I'm happy that I accomplished something I got a permanent ban on @Hacker0x01 My money was stolen because the platform is rac….

RT @0xacb: HTTP Requests often contain a lot of unnecessary headers. Removing headers one by one and checking the response after removing….

🚨🚨 Breaking News: Elon Musk has been banned from HackerOne for tweeting "PORKY PIG PARTY" . allegedly violating their Code of Conduct under Section 404(b): "No political porcine references allowed in vulnerability reports or social media posts." 🐷

RT @Xbow: Even mature products hide critical flaws – and @XBOW just found another one. CVE-2025-49493: XXE in Akamai CloudTest discovered….

Hungary cracks down on LGBT rights, and HackerOne’s probably thinking: Time to ban every Hungarian user too — just in case they think differently. 😂.

Yes! I was rewarded over $300,000 on HackerOne before getting a lifetime ban 🤣.BTW, I still have around $1,300 in the balance and some critical/high reports waiting to be paid. Classic move from a Zionism platform built on begging hackers to work for free 🐀💀

0-day Google Chrome Sandbox Escape.

RT @AlizTheHax0r: So like. Time to be vulnerable for a minute and talk about mental health as it relates to research. Because it’s tough, y….