Janlele91(@janlele91) 's Twitter Profile Photo

I earned $X,XXX (1k$ bonus) for 3 submissions on @bugcrowd bugcrowd.com/janlele91

Focus a program only, pay attention to its focus area, and dont forget to bypass resolved report.

My first P1 bounty ever, writeup comming soon ๐Ÿ’ฅ๐Ÿ’ฅ

I earned $X,XXX (1k$ bonus) for 3 submissions on @bugcrowd bugcrowd.com/janlele91 

Focus a program only, pay attention to its focus area, and dont forget to bypass resolved report.

My first P1 bounty ever, writeup comming soon ๐Ÿ’ฅ๐Ÿ’ฅ

#ItTakesACrowd #bugcrowd #BugBounty
account_circle
Hammad ๐Ÿ‡ต๐Ÿ‡ฐ๐Ÿ‡ต๐Ÿ‡ธ(@Hammad7361) 's Twitter Profile Photo

Spent 8 hours straight on @bugcrowd to identify these ๐Ÿ˜ฎโ€๐Ÿ’จ
let's see how it goes๐Ÿ‘€
tips
Tip: always try to find places where you are able to store values and test them for Stored XSS

Spent 8 hours straight on @bugcrowd to identify these ๐Ÿ˜ฎโ€๐Ÿ’จ
let's see how it goes๐Ÿ‘€
#bugbountytips #bugbounty #ittakesacrowd  #infosecurity 
Tip: always try to find places where you are able to store values and test them for Stored XSS
account_circle
Hammad ๐Ÿ‡ต๐Ÿ‡ฐ๐Ÿ‡ต๐Ÿ‡ธ(@Hammad7361) 's Twitter Profile Photo

3 Triaged remaining 5 are yet to be Triaged๐Ÿ˜‰ bugcrowd
But not satisfied with severity it should be P1 as I'm able to takeover other researcher's account. Since Stored XSS doesn't require user interaction & ATO without user interaction is P1 Michael Skelton ?

3 Triaged remaining 5 are yet to be Triaged๐Ÿ˜‰ @Bugcrowd #BugBounty #infosecurity 
But not satisfied with severity it should be P1 as I'm able to takeover other researcher's account. Since Stored XSS doesn't require user interaction & ATO without user interaction is P1 @codingo_ ?
account_circle
Ali khalkhali(@ali_khalkhali0) 's Twitter Profile Photo

I earned $2,500 for my submission on
bugcrowd
It leads to accessing 170k employees' PII ๐Ÿ›‘ + Internal Vulnerability reports ๐Ÿชฒ

I earned $2,500 for my submission on
@Bugcrowd 
It leads to accessing 170k employees' PII ๐Ÿ›‘ + Internal Vulnerability reports ๐Ÿชฒ
#ItTakesACrowd
#bugbounty
account_circle
bugcrowd(@Bugcrowd) 's Twitter Profile Photo

A Hackerโ€™s Guide to Navigating Bugcrowdโ€™s Code of Conduct

- Ethical hacking guidelines
- Platform Behavior Standards
- Enforcement Actions

Here's our guide to stay within the lines๐Ÿ‘‡
loom.ly/NQombbQ

account_circle
brutexploiter(@brutexploiter) 's Twitter Profile Photo

I earned $900 for my submission on @bugcrowd
It's truly motivating to receive such positive feedback from the customer team, and it gives motivation to work hard.

I earned $900 for my submission on @bugcrowd 
It's truly motivating to receive such positive feedback from the customer team, and it gives motivation to work hard.
#ItTakesACrowd 
#bugbounty #bugcrowd
account_circle
Michael Skelton(@codingo_) 's Twitter Profile Photo

One of the challenges that comes up in support bugcrowd: briefs changing while submissions are pending, which caused scope misunderstandings.

Going forward, hackers, customers, and triagers will have access to the original brief at the time of submission. Additionally, we're

One of the challenges that comes up in support @Bugcrowd: briefs changing while submissions are pending, which caused scope misunderstandings.

Going forward, hackers, customers, and triagers will have access to the original brief at the time of submission. Additionally, we're
account_circle
Akita ๐Ÿ‡ฆ๐Ÿ‡ท who Am I ?(@akita_zen) 's Twitter Profile Photo

I earned $500 for my submission on @bugcrowd XSS stored
BugbountyTip:
-> Overtested program
i'm not an xss guy..
but.. Encode everything as you can ๐Ÿซก

account_circle
rugb(@Bet0_Shinoda) 's Twitter Profile Photo

Hunting in the VDP program (private) on @bugcrowd, I was able to buy a house for my parents.

I only submitted P1 reports. Ultimately, I was banned from the program.

account_circle