I¯\_(ツ)_/¯I \ (•◡•) / @BountyOverflow
BBH ( ͡° ͜ʖ ͡°) 💰 @Bugcrowd Top 50 \o/ ✌️ MVP✌️ I am here to learn/share application security stuff ✌️ I enjoy finding auth bypass bugs 🐞 🌎 Earth 🌎 Joined December 2010-
Tweets1K
-
Followers7K
-
Following1K
-
Likes3K
Why to use a simple #XSS vector like this 🤔 <img src=x onerror=alert(1)> when you can use a much better one? 🤩 1'//"</Script><Img/Src%0AOnError=alert(1)// The vector above pops in HTML and JS scenarios for single and double quotes! 🤯 Try it here: x55.is/brutelogic/xss…
New Rhino Blog Post: CVE-2025-0693: AWS IAM User Enumeration bit.ly/3QcEpnx
blog.cloudflare.com/resolving-a-mu… I don’t work there anymore but it’s truly so sick seeing this level of weird bug being patched so fast Hell yeah
Thanks to the recent @PortSwigger top 10, I finally found the motivation to finish writing the 2nd article about DOMPurify security! 😁 Before releasing it, I would like to share a small challenge 🚩 Challenge link 👇 challenges.mizu.re/xss_04.html 1/2
Unleashing The Power of a JavaScript Bookmarklet for Endpoint Discovery in Bug Bounty and… execure.medium.com/unleashing-the…
@3th1c_yuk1 @intigriti @renniepak Seems rennie deleted his twitter so original post is gone :/ but someone made a post about it here with the code: execure.medium.com/unleashing-the…
Got a CSRF attack being blocked by Content-Type validation? You might be able to bypass it with this quality technique. x.com/lukejahnke/sta…
Got a CSRF attack being blocked by Content-Type validation? You might be able to bypass it with this quality technique. x.com/lukejahnke/sta…
After a 4-month break, I’m backon @Bugcrowd ! Life kept me busy with something truly special—welcoming my adorable daughter into the world. 🍼💕 Feeling so blessed! 🥰
There is a public website with the following folder path: txyz.com/wp-content/upl…<filename> Does anyone know of any tricks for WordPress websites that would allow me to list all files and folders in the 'uploads' directory? #thanks-in-adv
I was facing a very strict WAF while trying to exploit a XSS : no gt/lt signs, no parentheses, no double quotes, no backticks. I was injecting inside an html tag. Turns out the solution was very simple (and not well documented): <img src=x onerror=alert(document.domain)>
🚨Alert🚨CVE-2024-30103: Microsoft Outlook Remote Code Execution Vulnerability ⚠This Microsoft Outlook vulnerability can be circulated from user to user and doesn’t require a click to execute. Rather, execution initiates when an affected email is opened.This is notably dangerous…
it sucks. Just after opening @Burp_Suite
INTRODUCING: Agentic Security - LLM Security Scanner! 🔍 🛠️ Customizable Rule Sets: Tackle agent-based attacks with precision! 🧪 Comprehensive Fuzzing: Dive deep into any LLM's vulnerabilities! 🔄 LLM API Integration & Stress Testing: Ensure robust performance!
When it comes to GraphQL recon, JavaScript is the next best thing to introspection. I made a tool (in go) which finds all graphql queries in js files (or folders) and uses ChatGPT to build the queries for you! github.com/xssdoctor/grap…
Come hack on Okta at bugcrowd.com/okta #ItTakesACrowd via @Bugcrowd
.@InsiderPhD's 4 must have Burp Suite extensions:
A Day in the Life of an Unemployed Bug Hunter
What is the difference between invites and engagements on @Bugcrowd platform?

Aditya Shende @ADITYASHENDE17
60K Followers 419 Following MS Cyber 🇬🇧 | Work @BforeAI | @Bugcrowd Top 100 | Bug Bounty Trainer | Keynote Speaker | Professional Biker | @kong_sec 🇮🇳 | Own Views ≠ Employment
🇸🇦 Murtada Bin ... @0x_rood
27K Followers 334 Following Rood 👑 and no one else | Digital Nomad Lifestyle 💎
Md Ismail Šojal �... @0x0SojalSec
31K Followers 5K Following Cyber_Security_Re-searcher || 0SINT || Malware Analysis II Pwn || Ai Re-searcher || Project @AIStrikeSec || 0ld Accounts Suspended @0xSojalSec ||
JS0N Haddix @Jhaddix
167K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. Cybersecurity + Hacking + AI + Sec Leadership @arcanuminfosec
Kanhaiya Sharma 🇮�... @krishnsec
18K Followers 584 Following Hacker | Top 25 @Bugcrowd all-time | MVP | Top 12 P1warrior
Het Mehta @hetmehtaa
36K Followers 1K Following Security Analyst | Content Creator | I Spread Cybersecurity News & Talk about AI, Cloud, Tech, Tools & Recent Updates
Lu3ky13 ⚡️⚡️ @lu3ky13
14K Followers 782 Following Co-Founder @suly_con @CyberShield01 | EWPT | ECCPT | CCNA | CCSP-AWS | CAPen | CNPen | CAPenX | CRTO |All HTB PRO | PT1 | CRTeamer | B.S. Accounting | C-APIPen
Tuan Anh Nguyen⚡️... @haxor31337
15K Followers 2K Following 29 y/o Bug Bounty Hunter and Red Teamer at Viettel Cyber Security. Brand Ambassador @Hacker0x01 - Researcher Spotlight @Bugcrowd
MorningStar @0xMstar
19K Followers 1K Following security researcher , bug bounty hunter ,bugcrowd top 10, co-founder https://t.co/1bT321Ayen, https://t.co/WqLPzN7PyL
Masonhck357 @Masonhck3571
16K Followers 790 Following 🔍 Top 100 Bug Bounty Hunter @ Bugcrowd | 🇩🇴 Dominican | Ethical hacking fanatic | 🎮🎵 Lover | Keeping the digital world safe. opinions are that of my own
Fat @fattselimi
16K Followers 9K Following Chasing Positive vibes only & Ethical Hacking for fun and profit🧑🍳
Darian Wilkinson @DarianWilk90395
121 Followers 4K Following
nitrox @0xNitrox
2 Followers 158 Following
Abhay @Abhay870939024
0 Followers 32 Following
devops123 @devops12350265
3 Followers 198 Following
nemo @JosephKanko4
217 Followers 3K Following Passionate about Ethical Hacking | CTF Player | I explore the vulnerabilities
i33x @bentildev
42 Followers 696 Following
Trần Nga @trnga14
3 Followers 56 Following
Augustus Germanicus @duende_ewifi
368 Followers 4K Following MX-РОССИЯ CDMX-МОСКВА КИБЕРБЕЗОПАСНОСТЬ| OSCP | Я ЛЮБЛЮ ЗВЕЗДНЫЕ ВОЙНЫ| РИМСКАЯ ИМПЕРИЯ | В НАСТОЯЩЕЕ ВРЕМЯ МОСКВА.
TheKat @_cyb3r_k4t_
1 Followers 213 Following
gnom4e @gnom4e
2 Followers 251 Following
Happier1736 @enigmaGlow
2 Followers 2K Following
Rayan Swaid @Rayanswaaid
441 Followers 3K Following Between silence and sound, I shape my voice. Cybersecurity, jazz, and the art of curiosity.
Razmju Mehdi @MehdiRazmju
12 Followers 224 Following
Isaiah @Hacker_Ise
5 Followers 670 Following Web & Mobile Security Reseacher | Exploring Blockchain and Cloud Security | ARM | Chasing My Curiousity
Bytes Brawler @BrawlerBytes
20 Followers 490 Following
albml3f @albml3f
0 Followers 301 Following
xamse carab @HamzaAr12721415
13 Followers 424 Following
ph4nt0m @Ph4nt0m_404
8 Followers 340 Following
Irtiza Khan @irtiza_niloy
33 Followers 847 Following
Mr.X @sin66772559
2 Followers 307 Following
Aman Subedi @amsubedi2
82 Followers 670 Following
Halim @HalimJabbe12271
0 Followers 26 Following
bao khang @baokhan50706708
1 Followers 136 Following
p1und3r3r @p1und3rer
5 Followers 107 Following
127.0.0.1 @ik_again
377 Followers 2K Following Software developer, adventurous, calm and be your self
pearls of knowledge @PearlsK90534
5 Followers 318 Following
Saad @Saado
5 Followers 557 Following "رَبِّ اجْعَلْنِي مُقِيمَ الصَّلاَةِ وَمِن ذُرِّيَّتِي رَبَّنَا وَتَقَبَّلْ دُعَاء"
\ @g620_hd278_
0 Followers 1K Following
TechWizNet (❖,❖) @TechW1zNet
285 Followers 2K Following On the path to becoming a cybersecurity expert. Currently building skills in penetration testing and auditing smart contracts.
Kashyap Maisuria @Cyberkashyap
2 Followers 103 Following
stø_mp_e @StaceyStan48754
78 Followers 745 Following
CYBER News @CYBERWAR142017
2 Followers 611 Following
Dharmendra Kumar @Dharmendrausn
141 Followers 3K Following Computer Science & IoT Engineer| Pure mathematics|
Aditya Shende @ADITYASHENDE17
60K Followers 419 Following MS Cyber 🇬🇧 | Work @BforeAI | @Bugcrowd Top 100 | Bug Bounty Trainer | Keynote Speaker | Professional Biker | @kong_sec 🇮🇳 | Own Views ≠ Employment
bugcrowd @Bugcrowd
188K Followers 6K Following The leading provider of crowdsourced cybersecurity solutions purpose-built to secure the digitally connected world...Unleash Ingenuity™
Hussein Daher @HusseiN98D
49K Followers 199 Following Entrepreneur, Hacker 🇱🇧🇨🇮 @WebImmunify 21th/270000 BugCrowd Hacking Platform
Sam Curry @samwcyo
98K Followers 1K Following
JS0N Haddix @Jhaddix
167K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. Cybersecurity + Hacking + AI + Sec Leadership @arcanuminfosec
Kanhaiya Sharma 🇮�... @krishnsec
18K Followers 584 Following Hacker | Top 25 @Bugcrowd all-time | MVP | Top 12 P1warrior
zseano @zseano
79K Followers 703 Following
Luke Stephens (hakluk... @hakluke
96K Followers 2K Following Hacker, marketer. I manage socials and produce amazing technical blogs for cybersecurity orgs. Founder of @hacker_content and @haksecio
payloadartist @payloadartist
43K Followers 284 Following Yapping about AI, AppSec, Hacking, & Cybersecurity • Helped secure organizations like Google • Opinions are my cat's • Part-time shitposter
Julien | MrTuxracer �... @MrTuxracer
37K Followers 444 Following Freelancer | #BugBounty | @Hacker0x01 H1-Elite | $1,500,000 Overall Bounties | ❤️ Reversing | Mobile Hacker | https://t.co/pcWduPOt0n
Tuan Anh Nguyen⚡️... @haxor31337
15K Followers 2K Following 29 y/o Bug Bounty Hunter and Red Teamer at Viettel Cyber Security. Brand Ambassador @Hacker0x01 - Researcher Spotlight @Bugcrowd
Bug Bounty Reports Ex... @gregxsunday
53K Followers 616 Following Grzegorz Niedziela - a hacker who documents his hacking journey by creating and curating the best content about bug bounty and offensive security.
shubs @infosec_au
56K Followers 2K Following Co-founder, security researcher. Building an attack surface management platform, @assetnote
Yassine Aboukir 🐐 @Yassineaboukir
31K Followers 373 Following HackerOne Top 50, Elite, Pentest Lead, Ambassador, MVH Title and (former) Hacker Advisory Board • Digital Nomad • (Un)pro Athlete
Andrew Thompson @ImposeCost
39K Followers 1K Following Head of Research and Discovery (RAD) @Google Threat Intelligence Group via @Mandiant acquisition. Posts are attributable to me—not my employer. Former @USMC.
Crazynaval @Crazynaval
22K Followers 498 Following जितना प्राप्त है, उतना ही पर्याप्त है. love #onefund, love #cricket
Stock Flash India @StockFlashIndia
2K Followers 34 Following Verified Stock Market Information And Data, Simplified For Smarter Investing All info is for educational purposes only 🎯
HSaN MKki @HsanMkki
2 Followers 316 Following
Ashish Singh @DrupalBaba
2K Followers 37 Following Swing Trader | Coder Scan stocks with Vivek Singhal’s strategies 🌐https://t.co/ELQCXwSMX3 📬https://t.co/SGvtJVKEqh No tips. Not SEBI registered.
Alok Jain ⚡ @WeekendInvestng
336K Followers 44 Following Founder WeekendInvesting | IITD | NSE | Smallcase | EQ| Gold | RE | Momentum | Personal views not related to SEBI license | No advice
Vikrant Sadana @VikrantSadana
83 Followers 337 Following Personal Views on Stocks, Technical Charts, Trading, Investment, Mutual Funds, Multibaggers || Not SEBI Regd
Radar 𝘸 Archie�... @RadarHits
357K Followers 0 Following World Events in real-time: 💵 💻 🧬 🎺🐒 Business, Tech, Science, Culture and Politics.
Investing 🔆 @LaxmiInvests
3K Followers 3K Following Stock Market Investor, AMFI reg MFD, Writer || Motivational Speaker || content Creator !! 🇮🇳🇮🇳🇮🇳
Vivek Singhal @TheVivekSinghal
166K Followers 19 Following Founder - VSpartans Consultants Pvt Ltd, A SEBI Registered Portfolio Managers, Reg No. INP000009083; A SEBI Registered Research Analyst, Reg No. INH000012546.
Hossam A. Mesbah 🇵... @m359ah
4K Followers 233 Following Sr. Security consultant | Bug bounty hunter https://t.co/tuKTyrFrWo | https://t.co/PGSwsav7HG | https://t.co/Z6BCawM3XF
Lupin @0xLupin
17K Followers 683 Following Roni Carta alias Lupin. Co-Founder of Lupin & Holmes. R&D. Red Teamer. Bug Hunter. Musician 🤘
El Mehdi @elmehdimee
1K Followers 392 Following bug bounty hunter, https://t.co/IgwNoFRWmO , https://t.co/0DPtWr7tZ8 , https://t.co/eG6Su8DLgb
Ebrietas @Ebrietas0
5K Followers 188 Following Security @ Phantom Wallet, former TikTok & Blizzard. All tweets are my own.
Sadhguru @SadhguruJV
4.1M Followers 4 Following Yogi, Mystic, Visionary & Founder, @ishafoundation. Tweets from Sadhguru himself are signed -Sg. #SaveSoil #ConsciousPlanet | #MiracleOfMind
Sergey Belov @sergeybelove
3K Followers 726 Following Information Security Director @Acronis. Follow @secharvesterx for last cybersec news
BusesCanFly and -1 ot... @BusesCanFly
2K Followers 2K Following I like hardware hacking | @ldpreload.so 🟦
Khaled Samy @khaleedsamy12
1K Followers 864 Following Hey there! Unfortunately, this was submitted previously by another researcher, but we appreciate your work and look forward to additional reports from you.
Ryan G. Cox @RyanGCox_
645 Followers 219 Following Cybersecurity Engineer. Writer. Builder. 📨 https://t.co/BhHLaTrqGb *️⃣ https://t.co/QEsYvCCSKI 💜 https://t.co/62uNRQl4SD
Ron Masas @RonMasas
1K Followers 218 Following trying to predict the next token to make you think i’m a security researcher.
H1 Disclosed - Public... @h1Disclosed
10K Followers 1 Following User friendly unofficial HackerOne public disclosures, keeps you updated about the recently disclosed bugs. Made With ♥ By Hackers For Hackers. - @rohsec
Jayesh Madnani @Jayesh25_
14K Followers 471 Following CEO and Hacker in charge @ EIS | HackerOne Top 10 | https://t.co/JSX03WutFN
Jenish Sojitra @_jensec
22K Followers 539 Following $2M in Bug Bounties, Web2 and AI Offensive Security research. Creator of https://t.co/Sbnrie1LXH Security @Exodus
Maciej Piechota @haqpl
4K Followers 1K Following I’m a security enthusiast and technology polyglot, pug lover and drum’n’bass head. Vice Cpt @justCatTheFish, Daily Pwning @ElectrovoltSec @cure53berlin
Ananda Dhakal @dhakal_ananda
11K Followers 663 Following Vulnerability Researcher @patchstackapp | Brand Ambassador @Hacker0x01 | Blogs: https://t.co/a0aOojdwyl 🇳🇵
Chukwuma @B2Chukwuma
1K Followers 1K Following https://t.co/5j88QDF3TB About Tech, Jokes n Facts. https://t.co/ZXaHB5XsL8 HTML/CSS/JAVASCRIPT/ ⚛️React/Node.js /WordPress/Laravel
Amal Murali @amalmurali47
2K Followers 1K Following Manager - Security Operations at @Bugcrowd. Interested in Information Security. BBAC certified. Opinions are my own. He/him.
Mackenzie MacKenzie |... @0xMackenzieM
4K Followers 1K Following Hacker Success @immunefi, Helping hackers get paid, DMs open
Godfather Orwa 🇯�... @GodfatherOrwa
25K Followers 2K Following Hacker | Bug Hunter | Cooker | Top 5 P1 Warrior On https://t.co/dzFQH75OWj | LevelUpX Champion | 10+ 0Days/CVEs
Ahmed Attia @Limbo0x01
7K Followers 767 Following just a tech. The most difficult thing about debugging isn't fixing the bug. It's all about finding the bug.
Jonathan Bouman @JonathanBouman
7K Followers 523 Following Medical Doctor (GP) & Security Researcher
brendan @bscarvell
2K Followers 629 Following I'm mnz. A security researcher, penetration tester and member of the @thegooniesctf team in Australia. No logs, no crime. PGP: 9F7D 181D 1F4A 51B2
ethicalbughunter @ethicalbughuntr
592 Followers 62 Following Ethical Technology builder, hacker, pentester, bug-bounty hunter. Current all-time rank 12th @Bugcrowd. securing systems along with the great folks at InfoSec.
harris0ft @harris0ft
5K Followers 99 Following Christian, Hacker, Independent Security Researcher. https://t.co/7rmqelX5L4
Dafydd Stuttard @DafyddStuttard
7K Followers 78 Following Founder and Chief Swig at @PortSwigger. Creator of @Burp_Suite and @WebSecAcademy. Author of The Web Application Hacker's Handbook.
Khoi Duong @khoiasd
477 Followers 33 Following
Bojan Zdrnja @bojanz
4K Followers 689 Following IT Security guy, penetration testing is my thing. One of the SANS Internet Storm Center handlers at https://t.co/KLxU4pooKI. SANS SEC542 instructor and course co-author.
CVE Trends @CVEtrends
8K Followers 0 Following Monitor trending CVEs in real-time; crowdsourced intel sourced from Twitter, NIST NVD, Reddit, and GitHub. Run by @SimonByte