Excited to share that I've made it to the top 3 🥉on @Bugcrowd’s March leaderboard! What a fantastic month it's been! Grateful for this achievement, Alhamdulillah.

A human being is nothing but a state of mind — when it becomes distressed, he becomes incapable of acting in matters of this world or the Hereafter. That’s why the Prophet ﷺ used to seek refuge from anxiety, sorrow, and grief every morning and evening.

https://t.co/odxPf0lYCI

To help alleviate the humanitarian disaster in Gaza, Proton has donated $100,000 to the Palestinian Red Crescent Society and other aid organizations working on the ground.

“In the heart, there is a brokenness that nothing can mend except turning to Allah; a loneliness that nothing can dispel except finding warmth with Him in seclusion; and an emptiness that nothing can fill except His love and devotion to Him.”

Earlier this year, @infosec_au and I discovered multiple vulnerabilities that allowed us to access the back office admin panel of ClubWPT Gold (the World Poker Tour's website) where we could manage customer data, KYC, and more. Read the writeup here: https://t.co/K2402UPWYk

About three months ago, I began full-time bug bounty hunting. It's been a great journey. Read about it on my blog 🙂 https://t.co/mPsPkI9llb

FINALLY! I overcame the procrastination wall and published my full breakdown on Dependency Confusion. This post covers my strategy for turning existing research into a 24/7 automated engine. Check out here: https://t.co/1uaYDcSRuJ #bugbountytips #supplychains

Three years ago, a bug bounty program @NetApp on the racist platform controlled by the Zionists @Hacker0x01 sent this email to a researcher @mido0x0x. Guess what? Was the company banned from the platform? No. This is all done by @jobertabma. He monitors hackers' social

Don’t forget what Israel and the US did in Gaza..

@rauchg Genocide, powered by Next.js ™

Redeemed my Bug Hunters Hoodie from @GoogleVRP!✅

It's out!! You can now watch @djurado 's and @niemand_sec talk: "Prompt. Scan. Exploit - Ai's Journey Through Zero-Days, and a Thousand Bugs". Learn more about @Xbow and autonomous hacking. You can watch it in our Youtube channel exclusively: https://t.co/XfxNCKtNQ1. Enjoy!

We've just published a novel technique to bypass the __Host and __Secure cookie flags, to achieve maximum impact for your cookie injection findings:

Win me with reason, not fire, flames can’t burn the truth. Pathetic!

For all non-french speakers out there, I finally found the time to write the article associated to "1001 ways to PWN prod!" ^.^ https://t.co/T6vIzX0mho For all those that welcomed this talk so well - cc @clintgibler @absoluteappsec @yeswehack @intigriti @chybeta @ManoMano_Tech

O Allah, Make me strong through You, powerful in You, merciful to those You love. Grant me understanding of reality, awareness of my mission, steadfastness at my post, restraint in my speech, abundance in my deeds.

يا كريم! ~ dependency confusion (package hidden in a JS file). Published it, reported it, and got a callback after 1 week. Allah Kareem.

Turns out my #PHRACK article is live! 🔥 > The Art of PHP — My CTF Journey and Untold Stories! Kinda a love letter to those CTF players & PHP nerds! Hope all the credit goes to the right ppl. Also huge thanks to @0xdea for not forgetting me, @guitmz for the edits, and the

Definitely more competitive now

Today, we're releasing the new Searchlight Cyber (@SLCyberSec) tools website, which allows you to use several of our open-source tools for free via a web interface. You can self-register at https://t.co/eG7mEH9QYo (+ all our wordlists will be released there from now on!)