“Do you know who dug up the irrigation at 2am in the morning” Dad asked his furry friend “I have absolutely no idea Dad” replied Rosa.

To all the hacking mums and the mums that allow the Dads to hack have a great Mother’s Day.

So I had my second largest bounty on a bug. I love the campaigns, as it drives your attention to programs you tend to not look at and stick with it for the campaign duration. Thank you HackerOne and your customer

Gotta love Twitter / X The posts today are hilarious 🤣

To all the deserving peeps that made the HackerOne #h1702, throwing it out there, would love to go (and already live in Las Vegas). If you have not nominated for a plus One, please keep me in mind. Thanks

Outta nowhere 100k swifties voting 4 Trump 🤣 absolute 💩. GOP scared of the swifties, throwing 💩out hoping it will STUCK to try & ALIENATE her from calling her position 😂 Taylor Swift Every Swiftie is entitled to their own view. As THE Swift, please state yours, end this 💩

I think I may have collaborated on 2 bugs in my entire BB journey. What have I learned, absolutely zero! other than collaborating will most certainly teach you new skills. Name your Dynamic Duo Collaborators. I’ll start - Frans Rosén & ­Mathias Karlsson The 💩 they come up with 🤯

Am anticipating Salesforce to start offering their Bug Bounty Program platform out for their clients who are capable of triaging their own issues. Would also be a good platform for internal BBPs (points = prizes from corporate store).

I think I have spent more time trying to pick a Bug Bounty Program than goddam hacking 🤣 Why is it so effing difficult. So many choices, then examining program response to bounty, researcher views on programs etc etc. Never ending :)

Listen to this anonymous letter from an FBI agent. THIS is who Trump and Musk are purging from government. And it has nothing to do with cutting wasteful spending. They’re gutting non-partisan career civil servants so they can replace them with loyalists (Project 2025 in action)

#Anonymous message to the people of the United States and Trump

This kid got more balls than the entire so called “men + MTG” in GOP telling it how it should be. Bout time the men in GOP grew a nutsack rather than playing with Trumps.

Mom goes postal when her daughter shows up to introduce her to her maga-cult boyfriend! 🤣🤣🤣🤣🤣🤣😂😂😂😅😅😅😅🤣🤣🤣🤣🤣🤣🤣🤣 🗯🗯🗯🗯🗯🗯🗯 She doesn't hold back!😳😳😳😳😳😳🤣🤣🤣💥💥💥💥💥🗯🗯🗯🗯🗯🗯🗯🗯

American Veteran has a word for Trump and Zelensky. Take two mins…

Someone at Coinbase 🛡️ definitely watched this film. Love it !!! Mel Gibson turns ransom into bounty g.co/kgs/znRqpFL

See a lot about URL encoding bypasses etc, had many myself recently. Take debug as an example - always remember to try things like %25%36%34, on the back-end %64 = d Can mean some $$$'s

I think @xbow is one of the coolest things to see happen within cyber security. It’s interesting looking at its “thought” process (see the full trace at the end) - xbow.com/blog/xbow-akam…

Appears Starlink is down globally.

If anyone around from good old NGS or NCC and wants to grab a few beers DM me.

Just looking for opinions pls. Is a SAML Assertion attack (steal creds etc), or a CORS attack (against Admins) considered “Social Engineering”. Program recently said it was. If that is true, then what’s the difference between them and a reflective XSS or CSRF attack ??