Thank for my 5 followers! you mean the world to me :)

686f772061726520796f7520746f6461793f

Do you know the feeling when you finaly bypass the ssl pining of an apk and you have the feeling that its all over, but now its just the begining.

What was the first vulnerability that you haver found? for me it was inforamtion disclosure, throuh error messages.

If you had to name a movie about hacking, how would you call it?

Day 3 of "find the vulnerability" Level: Easy

today post is for hackers who do check hardcoded values!

day 5 of "finding the bug" level: medium

50 followers :) thank you!

Bug hanters often think that the more money a bug bounty program pays that harder it is to find a bug in that program, do you agree?

I am thrilled to announce I have found CVE-2024-42005. The CVE rated with "High" sevirity, which is the higest sevirity in django and same sevirity as RCE. The Cve score is 9.8. nvd.nist.gov/vuln/detail/CV…

Am i the only one who see all the companies today create small automation, call it AI, and publish: We are using AI.

Thank you for IBB for 4263$.😀🤑 CVE-2024-42005: Potential SQL injection in QuerySet.values() and values_list() hackerone.com/reports/2646493

What makes you feel like this?

A lot of hackers dont know if they whould earn more money in bug bounty or in a job such as penetration testing, what you think would give more money? I think that bug bounty is better to create good name for future job. HackerOne bugcrowd

I just published Django Unauthenticated, 0 click, RCE, and SQL Injection using the default configuration. medium.com/p/django-unaut…