zseano @zseano
bug bounty hunter. creator of @bugbountyhunt3r hackerone.com/zseano Joined February 2012-
Tweets7K
-
Followers72K
-
Following677
-
Likes11K
I’m kinda shocked hackerone is vulnerable to really basic stuff like IDOR via integer id lol nice finding & bounty though 👍
I’m kinda shocked hackerone is vulnerable to really basic stuff like IDOR via integer id lol nice finding & bounty though 👍
Looking after one kid by myself was a breeze, but two kids?! I think I’m going to have a mental breakdown soon 😂 hardest thing I’ve had to do. But grateful to not miss a single day with my boys 😇
The HackerOne Ambassador Club is available to anyone in the UK! Whatever your skill level, all are welcome, we're here to help grow the community all over the UK. Great things are coming, stay updated at: h1.community/uk-hackerone-c… #hackerone #bugbounty #bugbountyuk
Proud mentor moment 💪
Race Condition Authentication Bypass leading to Full Account Takeover: medium.com/@keizobugbount…
The writeup is ready (Subdomain Fuzzing worth 35k bounty!) I tried my best to make everything clear,and useful Enjoy :) medium.com/@HX007/subdoma… #BugBounty #BugBountytip #bugcrowd
Huge thanks to @davidbombal for covering the past car hacking research from @_specters_ @bbuerhaus @xEHLE_ @iangcarroll @sshell_ @infosec_au and I. David and his team put in a ton of effort to research this and asked some great questions. More than happy to share the fun stories.
Huge thanks to @davidbombal for covering the past car hacking research from @_specters_ @bbuerhaus @xEHLE_ @iangcarroll @sshell_ @infosec_au and I. David and his team put in a ton of effort to research this and asked some great questions. More than happy to share the fun stories.
Intigriti @intigriti
155K Followers 644 Following Global Bug Bounty & VDP Platform. 🌐: https://t.co/fgCupJckrW ▶️: https://t.co/lRfCzZBgb7 👾: https://t.co/Inf7N9VQIlBen Sadeghipour @NahamSec
197K Followers 1K Following Cofounder @hackinghub_io, Advisor @Trick3st @CaidoIO. I hack companies and make content about it. Bug Bounty Village & #NahamCon organizer. ex @hacker0x01🇮🇷The XSS Rat - Uncle R.. @theXSSrat
128K Followers 888 Following Alone we survive, together we prosper. Are you with me? https://t.co/AfnDsVhqqAJason Haddix @Jhaddix
147K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. @arcanuminfosec 18 years hacking + sec leadership. ex:BuddoBot-Ubisoft-Bugcrowd-Fortify-HP-Redspin-Citrix.Sam Curry @samwcyo
77K Followers 949 Following Hacker, bug bounty hunter. Run a blog to better explain web application security.Aditya Shende @ADITYASHENDE17
51K Followers 422 Following MS Cyber 🇬🇧 | Bugcrowd Top 100 | Overseas Pentest Trainer | Keynote Speaker | Professional Biker | 🌎 @kong_sec 🦍Joseph Thacker @rez0__
49K Followers 873 Following the promptfather. christian. hacker. hobby jogger. principal ai engineer @appomnisecurity.Katie Paxton-Fear @InsiderPhD
82K Followers 2K Following Dr, apparently. Creator @traceableai, Lecturer & Hacker. #BugBounty hunter & #infosec YouTuber. APIs & Interlinked OffSec, PhD in AI+Sec @hacknotcrime. she/herAbhishek Meena - {�.. @RadhaSec
31K Followers 230 Following COO at @Vulncure | 🖊️ Tester | 🪲 Hunter HOF - Google 🤝 Sharing Knowledge with infosec community 📬 Inbox Whenever Need Helphakluke @hakluke
88K Followers 2K Following Hacker, bounties, entrepreneur. I help cybersecurity companies produce amazing content for their blogs and socials. Founder of: @haksecio and @hacker_contentSTÖK ✌️ @stokfredrik
127K Followers 1K Following Hi.. im that hacker / creative that your friends told you about. Creative Director & Hacks all the things at @truesecInfoSec Community @InfoSecComm
38K Followers 636 Following Largest InfoSec publication with 30k+ followers and 1M+ monthly views. 3rd edition of @IWcon_ happening in December 2023!Hussein Daher @HusseiN98D
43K Followers 151 Following Entrepreneur, Hacker 🇱🇧🇨🇮 @WebImmunify 27th/270000 BugCrowd Hacking PlatformFarah Hawa @Farah_Hawaa
44K Followers 843 Following security analyst @fbsecurity | part-time bug hunter | content creator | she/her | views = mineHarsh Bothra @harshbothra_
42K Followers 663 Following Freelance Pentester & Consultant • Cobalt Core Lead & Pentester • Author • Speaker • Blogger • SecurityExplained • Project Bheem • Learn365 • Views are personalNathaniel @nnwakelam
38K Followers 1K FollowingJulien | MrTuxracer �.. @MrTuxracer
30K Followers 418 Following Freelancer | Full-time #BugBounty | @Hacker0x01 H1-Elite & $1,500,000 Hacker | ❤️ IDA ProKEN @ken0x01
0 Followers 159 FollowingI Don't Even Know Bru.. @Dontknowbruhpod
160 Followers 905 Following Brothers discussing life challenges and successes of everyday peoplesalamander666 @salamander034
2 Followers 138 FollowingMrx X @MrxX99376343263
2 Followers 20 FollowingHosam Awad @hosamawad
442 Followers 3K Following Egyptian, Computer &Technologies addict. #GREM #GCED #CEH & #GWAPTSeif Moussa @07_tlg
25 Followers 191 FollowingKubo-security @KuboSecurity
8 Followers 71 Following🇵🇸De3vil @De3vil0
8 Followers 55 Following malware developer | penetration tester | eJPT | OSCP|OSEP | SEKTOR7 | Maldev Academy | Python developer | Author of many hacking tools @githubgeorge coupet @CoupetGeor92720
22 Followers 135 Followingkeycitizen @keycitizenx
0 Followers 14 FollowingSergioΩhm @SergioFrami
505 Followers 546 Following Soccer Ref. 400m Athlete. Pentester & Bug Bounty Hunter.0utc4st @0utc4st___
2 Followers 118 FollowingAta @Atahex
0 Followers 10 FollowingShail Macwan @macwan_shail
11 Followers 203 Followingaminsecc @aminsecc131900
1 Followers 73 Followingjaix @jaiixx___
12 Followers 57 FollowingShardul Umap @Shardul_Umap
0 Followers 111 Following There are only two types of companies: those that have been hacked, and those that will be.ABHIGYAN ABHISEKHAM @ABHIGYANAB3926
0 Followers 66 FollowingOve Shaha @Oveshaha5
32 Followers 225 Following I am a student and freelancer.I am also Digital Marketer. My work Digital market place on FIverr,Microwork and ZeerK.siva s @s_siva24110
2 Followers 119 Followingtachion @tachionfield
0 Followers 195 FollowingIPman @IPman4004
16 Followers 143 FollowingThe BBH @OfficalTeamBBH
370 Followers 66 Following Bug Bounty hunter ! Check out the latest YouTube video of Bug Bounty Hunting ! Welcome Hunters To Share your Knowledge. 🇳🇵nuy @0xnuy
6 Followers 137 Following Life stored in my PC. Hacking is my passion "1 | Bug Hunter | Senior CybersecurityWumbledoor @Wumbledoor
136 Followers 1K Followingاحسانـــــ�.. @TheFreyja_
373 Followers 265 Following You can find my pure soul, deep thoughts and chaotic mind here...Ziad maghrabi @z_maghrabi
2 Followers 66 Followingmostafa Elserry @ElserryMos51616
23 Followers 462 FollowingSefan @SaeedSefein
6 Followers 72 FollowingKhattak | S1ren Head .. @S1renHead_
96 Followers 88 FollowingIntigriti @intigriti
155K Followers 644 Following Global Bug Bounty & VDP Platform. 🌐: https://t.co/fgCupJckrW ▶️: https://t.co/lRfCzZBgb7 👾: https://t.co/Inf7N9VQIlBen Sadeghipour @NahamSec
197K Followers 1K Following Cofounder @hackinghub_io, Advisor @Trick3st @CaidoIO. I hack companies and make content about it. Bug Bounty Village & #NahamCon organizer. ex @hacker0x01🇮🇷Jason Haddix @Jhaddix
147K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. @arcanuminfosec 18 years hacking + sec leadership. ex:BuddoBot-Ubisoft-Bugcrowd-Fortify-HP-Redspin-Citrix.Sam Curry @samwcyo
77K Followers 949 Following Hacker, bug bounty hunter. Run a blog to better explain web application security.Aditya Shende @ADITYASHENDE17
51K Followers 422 Following MS Cyber 🇬🇧 | Bugcrowd Top 100 | Overseas Pentest Trainer | Keynote Speaker | Professional Biker | 🌎 @kong_sec 🦍Joseph Thacker @rez0__
49K Followers 873 Following the promptfather. christian. hacker. hobby jogger. principal ai engineer @appomnisecurity.Katie Paxton-Fear @InsiderPhD
82K Followers 2K Following Dr, apparently. Creator @traceableai, Lecturer & Hacker. #BugBounty hunter & #infosec YouTuber. APIs & Interlinked OffSec, PhD in AI+Sec @hacknotcrime. she/herSTÖK ✌️ @stokfredrik
127K Followers 1K Following Hi.. im that hacker / creative that your friends told you about. Creative Director & Hacks all the things at @truesecInfoSec Community @InfoSecComm
38K Followers 636 Following Largest InfoSec publication with 30k+ followers and 1M+ monthly views. 3rd edition of @IWcon_ happening in December 2023!Hussein Daher @HusseiN98D
43K Followers 151 Following Entrepreneur, Hacker 🇱🇧🇨🇮 @WebImmunify 27th/270000 BugCrowd Hacking PlatformFarah Hawa @Farah_Hawaa
44K Followers 843 Following security analyst @fbsecurity | part-time bug hunter | content creator | she/her | views = mineHarsh Bothra @harshbothra_
42K Followers 663 Following Freelance Pentester & Consultant • Cobalt Core Lead & Pentester • Author • Speaker • Blogger • SecurityExplained • Project Bheem • Learn365 • Views are personalNathaniel @nnwakelam
38K Followers 1K FollowingJulien | MrTuxracer �.. @MrTuxracer
30K Followers 418 Following Freelancer | Full-time #BugBounty | @Hacker0x01 H1-Elite & $1,500,000 Hacker | ❤️ IDA Propayloadartist @payloadartist
34K Followers 288 Following Tweeting about Application Security, Hacking, & Cybersecurity • Helped secure organizations like Google • Opinions are my ownshubs @infosec_au
50K Followers 2K Following Co-founder, security researcher. Building an attack surface management platform, @assetnoteRana Khalil 🇵🇸 @rana__khalil
51K Followers 869 Following AppSec Team Lead | OSCP | CEO & Instructor of @ranakhalilacadNathan Jones @njcve_
1K Followers 2K Following Bishop Fox || GoogleVRP (UK): 5th || HackerOne UK AmbassadorAbdullah Nawaf (Hacke.. @XHackerx007
6K Followers 174 Following Hackerx007 Bug hunter FB/Twitter/Mail.ru HOF 58 Bugcrowd rank 7 Bugcrowd P1 rank with 110 p1 :) In love with P1 ;)Ebrietas @Ebrietas0
4K Followers 190 Following Security @ Phantom Wallet, former TikTok & Blizzard. All tweets are my own.Jerry Decime @DEClme
171 Followers 224 Following I'll never contact you to ask for gift cards or to install software. My views and opinions are my own. Sometimes parody. Also here: https://t.co/i9H7CGmZqVOllie Whitehouse @ollieatnowhere
5K Followers 1K Following CTO @NCSC Former: PortSwigger, Interrupt Labs, NCC Group, BlackBerry, Symantec and AtstakeChris Oakley @crisp0r
525 Followers 144 Following Cybers and whatnot. Head of technical services @nettitude_labsMatan Berson @MtnBer
965 Followers 203 Following Hacking for fun | H1-65 Eliminator award | AWC23 Best New HackerHackTricks @hacktricks_live
12K Followers 198 Following HackTricks is a project which aims to offer free quality hacking resources to all the world, so people can learn for free the latest techniques in cybersecurityTuan Anh Nguyen 🇻�.. @haxor31337
13K Followers 2K Following 28 y/o Bug Bounty Hunter and Red Teamer at Viettel Cyber Security. Brand Ambassador @Hacker0x01 - Researcher Spotlight @BugcrowdAlexandro @alexbindrei
2K Followers 450 Following Bug Bounty Triager 💻 I triage stuff and I try to hack things, or whatever. Memes are my own and do not represent my employer.Jayesh Madnani @Jayesh25_
11K Followers 354 Following CEO and Hacker in charge @ EIS | HackerOne Top 15 | https://t.co/JSX03WutFNm0rfiwn @m0rfiwn
459 Followers 540 Following Being bug hunter is my goal 🍹 Cyber Security student 🎈 Love Drink, h4cking, games and so on... Do not Look downIan Bouchard @Corb3nik
4K Followers 472 Following Co-Founder @CaidoIO. Security Enthusiast, CTF Fanatic, Bug Bounty Hunter. Previously @opentoallctf & NorthernCoalition web guyMD Sagor Hossain (Pro.. @bughuntar
11K Followers 39 Following Security Researcher at @Hacker0x01 #FreePalestine 🇵🇸kevin hemmingsen @KEVINaitch
1K Followers 1K Following Bugcrowd Conjurer, Sorcerer of Solutions, Security Swordsman, Bug Bounty Brawler, Horde Historian, Paperback Pugilist, Web Warrior, Dueling Dad of DoomRohit @rohsec
12K Followers 180 Following Bug Bounty Hunter | @Hacker0x01 Ambassador | Creator - @h1disclosed . The Only Easy Day Was Yesterday Born in India, Made on BattlefieldCharlie Eriksen @CharlieEriksen
1K Followers 291 Following Founder @weaseljs. Previously Product Manager @SecCodeWarrior, co-founder at Adversaryio & Principal Security Engineer/Partner @thesyndisPeter M @pmnh_
3K Followers 566 Following aka pmnh / ex-Security researcher / Synack #1 SRT 2022-2023 / Synack, HackerOne, BC / Deep recon / source code analysis. Opinions my own, not employer.Dzmitry Lukyanenko @vulnano
914 Followers 89 FollowingFat @fattselimi
12K Followers 7K Following Hacking for fun and profit @Hacker0x01 @Bugcrowd @intigriti #CyberSecurity #1 @BMWGroup | Pentester @CytadelEuDaniel Kelley @danielmakelley
40K Followers 558 Following Reformed Black Hat Computer Hacker • Contributed To 100+ Bug Bounty Programs⚡100K+ Audiencezonduu @zonduu1
4K Followers 215 Following Hacking the Planet! - Full-time bug bounty hacker 🇦🇷 https://t.co/dMI1g4s8GvI am Jakoby @I_Am_Jakoby
12K Followers 522 Following I'm the reason you don't plug in USBs you find on the ground.Renganathan @IamRenganathan
12K Followers 680 Following 19 | Ethical Hacker | Building R Protocols | Speaker | 25+ talks | Secured Google, Apple, LinkedIn, UN, Medium & more | Tweets are personal :)Corey Arthur @CoreyD97
2K Followers 546 Following Senior Bug Bounty Analyst @NCCGroupInfosec --- Logger++ & Stepper BApp Maintainer. One time I made a plugin to make Burp look nice.R3VEAL @R3_VEAL
853 Followers 54 Following Co-Founder @Stacksecurity1 Ethical Hacker | Cybersecurity Consultant | Bug Bounty Huntergodiego @_godiego__
3K Followers 1K Following Security researcher and bug bounty hunter. https://t.co/ybndhjqZ5z | https://t.co/ALWTKTdgwc | 🇪🇸Godfather Orwa 🇯�.. @GodfatherOrwa
17K Followers 1K Following Hacker | Bug Hunter | Cooker | Top 3 P1 Warrior On https://t.co/dzFQH75OWj | https://t.co/TdLNCtmEGt | LevelUpX Champion | 10+ 0Days/CVEsJoran Honig @joranhonig
6K Followers 1K Following Security Researcher 👨💻 | Professional Bug Bounty Hunter | Resider on the @immunefi leaderboard | Building things @ConsensysAuditsIman Gurung @ImanGurung13
6K Followers 429 Following Computer Engineer, Ethical Hacker, Body Builder, Tatoo Lover, Blind xss kingGareth Heyes \u2028 @garethheyes
32K Followers 1K Following JavaScript for hackers: Learn to think like a hacker. https://t.co/e0aNEbEDk5Soroush Dalili @irsdl
18K Followers 850 Following Hacker (ethical), web appsec specialist, trainer, tools builder & apps breaker, @SecProjectLtd founder 🕸️https://t.co/YipuTcYnWc🥷 🍏A dad-joke maker🍐William Wallace 🇺�.. @phyr3wall
2K Followers 550 Following Red Team Operator | Technology Leader | Penetration Tester | BB Hunter | Software EngineerTur.js @Tur24Tur
2K Followers 399 Following Independent security researcher @NoBugEscapes @BugBountyZip JavaScript - ExpressJS ♥️💛 https://t.co/bltifT1jkQEdis Konstantini @EdisKonstantini
2K Followers 477 Following a hacker, now focusing on turning ideas into reality.Sceptre @SceptreSec
163 Followers 106 Following Hacking My Way Into Cybersecurity | eJPT | Novice Bug Hunter | Follow Me For Practical Ethical Hacking Skills🔥Jacopo Tediosi @jacopotediosi
884 Followers 173 Following Software Security Consultant @ IMQ Minded Security ~ IT and cybersecurity enthusiast ~ N00b CTF player ~ Tweets are my ownThis one's for the people in the comments section hating on bug bounties. One of our Discord members just got his first bounty ($2,000!!!) after 5 months!
@BountyOverflow No , definitely not , it's a valid new bug
@M0Allam @zseano @YourDomain @BRuteLogic @zseano We're just kidding because I found xss like this 😂😂 I did not expect you to read the comment in Arabic 😂😂
code[.]microsoft[.]com became pretty interesting to the community over the weekend. Blog post about what we use it for and what we’ve been seeing. Crucially why it had to say goodbye. techcommunity.microsoft.com/t5/microsoft-s…
Got 10 reports (wrongfully) closed as duplicates of the same report overnight. Makes me wanna quit bug bounty and open a bed and breakfast 🥲
@rinz0h @Hacker0x01 Things are in the works. We're listening to multiple folks from the community and will take action accordingly.
Hackers, good news: we’ve launched the ability to pause your payments and setting a minimum amount for a small group of hackers — and it’s looking good! We expect to make this available for the entire community in the second half of May.
Some really interesting data points will start being exposed for better transparency across the industry. Very excited 🎉
The point of a VDP program is to keep you all busy while I find bugs on companies that pay money.
@caseyjohnellis Then, give us the actual purpose!? 😀 Are platforms hosting the VDPs for free? Or BB programs, for that matter. It better not be that platforms are doing this to profit 🤯 Sry for sarcasm, but sometimes it sounds like hunters are the only ones trying to monetize this space
@caseyjohnellis I don't agree, some companies are using/abusing them as a way to get free testing. This demoralizes full-time BB hunters. VDPs could have a time-limit, if you are not converting them to a paid program in a certain amount of time it means you just want the free testing.
@caseyjohnellis VDPs are good for the world, I don't mind them on the platforms. However, massive gamification on VDPs have proven to in-directly affect operations and bug bounty hunters experience on platforms. Leaderboards, Triage times, Same Scope VDP-BBP, Mediations, Lack of follow-ups.
We've listened to your feedback - @Bugcrowd, you will no longer lose access to briefs and program data once the program ends. Our new engagement model keeps your brief history and more right at your fingertips. Big thanks to @CharlieEriksen, @galnagli, @1lastBr3ath, @djurado9,…
Had an amazing time in Singapore for @Hacker0x01 's #h165 event! Hats off to the talented @salesforce for hosting such a cool event at a cool location! Found some very cool bugs & hacked with some very cool hackers! (@Michael1026H1 , @shm0ul , @MtnBer , @0xacb , and more)
Thank you @salesforce and @Hacker0x01 for the opportunity! This LHE definitely was one for the books! 📚 Very honored and grateful to receive a second MVH award, 7 (!) years after my first one (2017) and 5 (!) years after participating in my last H1 LHE (2019) 🙏🙏🙏
The first batch of #H165 winners are here! On behalf of the HackerOne and @salesforce teams, thank you for your hard work. 💪 1st Place: arneswinner 3rd Place: ngocdh Eliminator: matanber Exterminators: shubs, ziot, nahamsec, ryotak Most Valuable Hacker: arneswinner
@osiryszzz Lots - but it’s shifted a lot in the last year. STO was king forever and a day, AWS changes shifted us from that. Currently, the big earners tend to be diving deep on a bug class like IDOR and other authorization based bugs, with a variety of approaches