Harsh Jaiswal
@rootxharsh
Followers
22K
Following
5K
Media
171
Statuses
3K
Building @hacktronai | researching at @httpvoid0x2f | auditing at @cure53berlin | prev @zomato @vimeo @pdiscoveryio
Joined April 2015
Here’s our Apple RCE writeup!.
I and @rootxharsh found and exploited a 0Day RCE in Apple's Travel Portal and were rewarded with $50K. Here's the write-up for that:.
13
72
483
I hope people now come out of their bubble and realize how impressively good AI hackers will be (to an extent already are).
4
0
49
RT @HacktronAI: Anti-Cluely - the cheating detector. suspect someone's using @cluely during interviews/calls?.make them visit https://t.co/….
0
11
0
Nothing better than ~24 hours hacking session ending with a shell! props to @HacktronAI. Started with an application shared by @sudhanshur705. Started auditing its libraries with @HacktronAI and found plenty of primitives until we ended up with an arb file + read in one of the.
6
4
86
RT @HacktronAI: so… you're a cracked dev?. want to build cracked AI hackers like me that secure the world? . join us. the future is beautif….
0
4
0
RT @S1r1u5_: Hacking Windsurf: I asked the AI for the shell, it said yes. new video’s out. I show how I could’ve hacked you… just by getti….
0
69
0
RT @httpvoid0x2f: CVE-2025-49113 is a fascinating PHP Object injection in Roundcube webmail, a really nice find by the original finder. #r….
0
13
0
Most people who are chanting Virat’s name would be cursing him if Krunal’s spell didnt save RCB.
0
0
2
Here's a pre-auth RCE in Delmia Apriso used by Apple, Boeing, Airbus @HacktronAI. More to come!.
Apple once ran this software. Multiple security firms poked at it. No one spotted the bug. Here's a thread of how we found CVE-2025-5086 in Delmia Apriso. 👇🧵.
1
4
36
RT @HacktronAI: Apple once ran this software. Multiple security firms poked at it. No one spotted the bug. Here's a thread of how we found….
0
16
0
RT @zeyu2001: Doing audits with @HacktronAI has been such a breeze. As a human auditor, I wouldn't have been able to handle more than one e….
0
7
0
Today was my last day at @pdiscoveryio. This place gave me the opportunity to do what I love: vuln research. I'm genuinely thankful for that. It's been fun hacking with @iamnoooob, and I'm sure he'll keep publishing great blogposts that I'll now be reading from the other side.
16
3
195
First of the many blogs to come!.
I found another variant of CVE-2025-4428 — a pre-auth RCE in Ivanti EPMM. Link to the blog post below 👇
1
3
51
RT @pdiscoveryio: 🚨 New blog post: Authentication Bypass to RCE in Versa Concerto (0-Day). Our research team discovered a critical authenti….
0
21
0
RT @pdiscoveryio: Every security researcher knows the dance: satisfy every parameter, only to hit a 403 at the finish line. In our analysi….
0
20
0
#PahalgamTerroristAttack is messing with my head. F**k terrorism, F**k extremists, F**k Pakistan's regime that supports terrorism.
0
2
29