Last week I had a great time at #RomHack2025 At the LHE our team took 2nd place 🥈 and won the “Overload Award”! Huge thanks to @leo__rac , @Al7eX91 and @MatteoFacci2 for making these victories possible 💪 Shout out to @cybersaiyanIT, UNGUESS & @sorgenia for making it happen

Last year, I took part in #romhack as a bug hunter at the live hacking event organized by @yeswehack and Ferrero reaching the podium together with my team of hacker friends. 🥉(@Al7eX91 @leo__rac @seeu_inspace ). This year, I came back in a different role on the other side,

Just got a reward for a vulnerability submitted on @yeswehack -- Cross-site Scripting (XSS) - Reflected (CWE-79). https://t.co/mUSsxikry7 #YesWeRHackers

Refill arrived! 💪 Thanks @intigriti @redbull

👉 Episode 4: Cursor IDE Arbitrary Data Exfiltration via Mermaid (CVE-2025-54132) 🏴‍☠️

Curated cheatsheet for #RedTeam ops or anyone diving into AD from an offensive angle 🛠️🔥 Feedback and suggestions are always welcome 🙂 #CyberSecurity #Infosec #ActiveDirectory #Hacking #RedTeaming https://t.co/8xwDZok3Md

🔥 Gear up, bug hunters: UNGUESS #security and Cyber Saiyan are back with the 2nd edition of the #LiveBugBounty Test your skills. #Hunt live. #Hack loud. More info at https://t.co/YVhNG8ATxs #bugbounty #ethicalhacking #cybersaiyan #livehacking #cybersecurityevent

Just got another one ✌️

The security research community in Europe and the Middle East just got even stronger. Say hello to these new HackerOne Brand Ambassadors: 🇦🇿 @AzeriumD34132 (Azerbaijan—new club!) 🇧🇪 @dropn0w & @hgreal1 (Belgium—new club!) 🇩🇰 @mthirup (Denmark—new club!) 🇮🇹 @Al7eX91 &

It was dupe fml, I’ll keep trying

Let's hope it's not dupe lol

Just got a reward for a high vulnerability submitted on @yeswehack -- Improper Access Control - Generic (CWE-284). https://t.co/mUSsxijTIz #YesWeRHackers

Just got a reward for a vulnerability submitted on @yeswehack -- Improper Access Control - Generic (CWE-284). https://t.co/mUSsxijTIz #YesWeRHackers

Just got a reward for a vulnerability submitted on @yeswehack -- Business Logic Errors (CWE-840). https://t.co/mUSsxijTIz #YesWeRHackers

Just got a reward for a vulnerability submitted on @yeswehack -- Improper Access Control - Generic (CWE-284). https://t.co/mUSsxikry7 #YesWeRHackers

Just got a reward for a vulnerability submitted on @yeswehack -- Cross-site Scripting (XSS) - Reflected (CWE-79). https://t.co/mUSsxijTIz #YesWeRHackers

Just got a reward for a vulnerability submitted on @yeswehack -- Insecure Direct Object Reference (IDOR) (CWE-639). https://t.co/mUSsxijTIz #YesWeRHackers

Worried you’re not ready for #BugBounty? @leo__rac warns against overcaution – “just start,” he urges newbies. In our latest interview, he offers tips for newcomers, dives into the challenges of hacking, & reflects on two decades of industry evolution 👇 https://t.co/9QlqYjNgVD

I earned $$$ for my submission on @bugcrowd #ItTakesACrowd

Just got a reward for a vulnerability submitted on @yeswehack -- HTML Injection (CWE-79). https://t.co/mUSsxikry7 #YesWeRHackers