Harley Kimball
@infinitelogins
Followers
7K
Following
6K
Media
175
Statuses
2K
Hacker Community Cultivator, Pentester, Bug Bounty Hunter | Co-Founder of @BugBountyDEFCON | Founder of Disclosed Bug Bounty Newsletter.
Portland OR
Joined November 2019
I vibe coded and shipped an app in three days. It got hacked. Twice. Here’s what I learned. 🧵
117
260
4K
ANDDDD I ALREADY MADE AN FFUF SKILL!!! LFG 🔥 https://t.co/0KHwRRB2B1
github.com
This is a "skill" for claude to use FFUF. Contribute to jthack/ffuf_claude_skill development by creating an account on GitHub.
Today we're introducing Skills in claude dot ai, Claude Code, and the API. Skills let you package specialized knowledge into reusable capabilities that Claude loads on demand as agents tackle more complex tasks. Here's how they work and why they matter for the future of agents:
7
14
145
This week, Disclosed. #BugBounty H1-65 Singapore & H1-468 Stockholm winners, new H1-Elites, Google’s AI VRP, YesWeHack wins EU tender, new programs, tools, write-ups & videos — and more. Full issue → https://t.co/P2Zjyh57Bs Highlights below 👇 @tiktok_us & @okx H1-65
getdisclosed.com
The bug bounty world, curated.
1
7
41
You’re about to see the world’s first show & tell from a hackbot. Enjoy!
9
36
212
Congratulations to the new @Hacker0x01 H1-Elite members, @alicanact60 and @_godiego__ Well deserved. First Turkish and First Spanish H1-Elites. That completes the 5 new Elite Posters for 2025. Hope you like these!
10
3
142
Congratulations to the #H1468 award winners! 🎉 Thank you for your incredible work in Stockholm. Your contributions help make the digital world safer for everyone. Most Valuable Hackers & Best Collaboration: -blaklis -snorlhax -doomerhunter Eliminator: -holyfield Eradicator &
3
11
198
Congratulations to the new @Hacker0x01 H1-Elite members, @niemand_sec, @ArchAngelDDay and @mallocsys. Well deserved. Some More to come soon! Stay tuned!
10
7
125
This week, Disclosed. #BugBounty Nullcon Berlin winners, Bugcrowd’s $30K Hacker Showdown, AI-powered zero-days, ChatGPT email exploit, PortSwigger milestone rewards, new programs, write-ups on RCE, SSRF & OAuth flaws, plus upgraded tools and bounty tips. Full issue →
getdisclosed.com
The bug bounty world, curated.
0
6
69
reading write-ups for the Disclosed newsletter.. came across: > Step 1. Test for High-Impact Vulnerabilities > Example: Check for Open Redirects lol..
2
1
37
It's out!! You can now watch @djurado's and @niemand_sec talk: "Prompt. Scan. Exploit - Ai's Journey Through Zero-Days, and a Thousand Bugs". Learn more about @Xbow and autonomous hacking. You can watch it in our Youtube channel exclusively: https://t.co/ywACpqVLUY. Enjoy!
4
18
51
This week, Disclosed. #BugBounty Spotlight on Android labs, LLM “sleeper” agents, big bounties for NGINX & GPT‑5, Zoomtopia & IoT hackathons, write‑ups on SSRF, UUID takeover & RXSS escalation, plus upgraded tools and hunting tips. Full issue →
getdisclosed.com
The bug bounty world, curated.
5
11
50
If an attacker pre-registers victim@gmail.com on an app (no email verification), then the real user later signs in with Google OAuth, the app merges accounts. Attacker keeps password access + victim uses OAuth. Real vuln? What's the impact?
20
7
166
Time to reveal what I was doing with @0xteknogeek back in '19. All the hard work and sleepless nights have paid off!
12
14
262
This week, Disclosed. #BugBounty Spotlight on CodeRabbit Exploit, NahamSec’s DEF CON vlog, Swiss Post’s €230K challenge, new tools for hunters, and more. Full issue → https://t.co/Affe2Yws7J Highlights below 👇 @KudelskiSec details how vulnerabilities in CodeRabbit’s AI
getdisclosed.com
The bug bounty world, curated.
5
17
61
okay well this rabbit hole distraction led me to fresh scope on one of my favorite programs so I can't complain 😂
working on this week's Disclosed drop and I keep getting distracted by all the cool tools/write-ups
0
0
19
working on this week's Disclosed drop and I keep getting distracted by all the cool tools/write-ups
1
0
19
Giveaway brought to you by @hackinghub_io: 5x Blind XSS vouchers 5x Web Exploitation vouchers How to enter: 1⃣ Follow @BugBountyDEFCON + subscribe to our YouTube channel 2⃣Follow @hackinghub_io 3⃣ ❤️+🔃 this post 4⃣Comment this post Winners will be picked on Friday 8/29
145
156
289
#DEFCON might have wrapped up, but the @BugBountyDEFCON Village fever is still alive 🔥 Can’t wait for the talks to be uploaded soon until then, here’s a short video sneak peek of how the Village went 🎥✨ Do mention @Arl_rose @infinitelogins and let them know what were
1
4
46