We keep adding new tools and all of them can be used for free ! Subdomain enumeration, IP history, reverse IP lookup and many others. Start exploring data now at profundis.io.

Just found a very interesting asset by poking around on Profundis.io 👀 Turned out it belonged to a bug bounty program… And it had an exposed internal Jenkins instance, fully open via a public dashboard 😳 💥 profundis.io #bugbountytips #bugbounty

We are reaching 6 BILLION searchable items across all our combined datasets! And it keeps growing... 😇

Hey James Kettle If you have some free time, I pinged you on discord regarding your last (awesome) research paper, I've tried the techniques you've described, and found some weird specificity that you might want to see (and might already know as well) :) thanks !

Another Critical Vulnerability got triaged today a Collaboration with mhmd berro (badcracker) all thanks to Profundis.io alerting system💯🫡

We’ve just landed a $12,000 bounty with Lilian Fellice on a public program at bugcrowd with a nice admin panel access bypass (and few other things :D) ! The asset where this was discovered was, of course, found using Profundis.io 😇

New WHOIS search feature coming soon! 🔍 Search across ALL WHOIS fields within 100M+ domains to discover related assets and find hidden connections. Perfect for finding assets owned by your own company or target one. Coming in ~2 weeks for Premium users and above! #BugBounty

Salut les Français 🇫🇷 J’aimerais vous partager mon nouveau projet (hors cyber) pour enrichir un peu votre culture et mettre en valeur notre patrimoine. Cette carte recense les meilleurs noms insolites de villes, villages et communes en France. nom-dune-ville.fr Have fun😁

I wrote a (very) short article on how I found a Remote Code Execution, seconds after it got mistakenly deployed by the developers and earned a $$$ bounty for it :D Enjoy! #BugBounty Profundis.io secarius.fr/bugbounty/how_…

Let's speak about real bugs. This one was found this year on a huge public program on bugcrowd with クロマタエ. TL;DR: A misuse of a Microsoft SSO token led to an ATO and a nice $3,500 bounty :D Enjoy reading! secarius.fr/bugbounty/usin…

Hello ! I know it's been a while but, I wrote a little blogpost :) I hope you will like it ! blog.hks.ec/posts/playing-… (There is also a French version)

We've been busy 🤠

🗣️📢We heard you! Major quota system upgrade: search queries now cost significantly less, meaning more recon power for the same price. Free tier users get hundreds more searches monthly. Premium users? Even better value. More data. Same plans. Better hunting.

Just got a reward for a critical vulnerability submitted on YesWeHack ⠵ with Lilian Fellice -- Improper Access Control - Generic (CWE-284). yeswehack.com/hunters/sicari… #YesWeRHackers

There goes an easy and nice critical well paid on bugcrowd ! -> Received a new domain on my Profundis.io alerts -> Some kind of admin dashboard without authentication deployed few minutes ago -> Crazy Leak of 3,500,000+ employees history: email, names, employment status,... 🤯

Q3 on HackerOne went well. I ranked 2nd in “Other Assets”, and 19th on the Bug Bounty leaderboard, finishing the quarter with 2104 reputation ! 🔥 #bugbounty

I earned $12,000 for my submission on @bugcrowd bugcrowd.com/ElSicarius #ItTakesACrowd This time with very little help from Profundis.io 😅 -Found a hidden PHP resource using my wordlist generation tool -Found the required param in the error response ->SQLi boolean based on it🔥

We’ve been cooking 🧑‍🍳

Another 4-digit reward with 🇸🇦 Murtada Bin Abdullah (Rood) ! ❤️ 1) Got a new asset alert from Profundis.io 2) Found an “authorized users only” panel 3) Checked JS files and discovered an API key 4) Mapped API endpoints and confirmed the key worked 5) Was able to read, upload, and delete files +