Proud to be the first auditor on the bountyhunt3rz podcast the most popular one, I haven’t missed a single episode. Cutting weight these days, so I might’ve sounded a bit tense xD Huge thanks to riptide for having me on 🫡

Results speak louder than promises: none of our audited code has been exploited in 3.5 years. Can your auditors say the same?

You're a great starting point for anyone who wants to learn Web3, truly inspiring 🏅🦈

⚡️3 Fast Bugs for Quick Wins in Bug Bounty Immunefi medium.com/@dersonxyz/3-f…

Btw the prize is 20k now, and still nobody claimed. Fun facts: Almost 4 years 250+ audits 0 hacks

I Found an Easy Account Takeover via IDOR in a Bug Bounty 🦆 medium.com/@dersonxyz/eas…

👀

Ever seen a 401 on a POST request? Change it to POSTX. If the server says "missing parameter" or acts weird you just bypassed auth. Some backends treat unknown methods like POST. WAFs? They might ignore it completely.

ㅤ 🔥RCE in Auth Login ☠️ Before testing SQLi, test RCE in login page 😎 Join my telegram channel for more bug bounty and penetration testing t.me/ShellSec

Thank you Avalanche🔺 & Immunefi

Doing amazing work in Web3 and still showing strong support for Web2 security issues. Thanks Avail & Immunefi

Edo Avail Immunefi Awesome work - Web3 wouldn't go far without great web2 bug hunters!

ZK has broken out of the crypto bubble. Google Wallet, Cloudflare and EZKL now ship zero-knowledge proofs in production. Here’s what that looks like in the real world: hexens.io/blog/zk-usecas…

I'm a Security Engineer with 5+ years of experience in Web Security and Bug Bounty. Actively looking for new opportunities in cybersecurity (engineering or triage roles). Feel free to reach out or connect, happy to share my CV.

Thanks HackenProof

CodexSentinel: A Security-Oriented Static Code Analyzer for Go linkedin.com/pulse/codexsen… via LinkedIn

You can enjoy the most precise token risk analysis here: hexens.io/solutions/toke…

You're a true leader, we're proud of you.

Ever feel like gosec or staticcheck miss real security issues in Go code? I did too-so I built CodexSentinel. OWASP Top 10 coverage Taint analysis (input -> sink) Architectural layer checks Secrets & dep scanning CI-ready (SARIF, HTML) Try it: github.com/Voskan/codexse… #golang

Hakira detects threats before they reach you.