D_J @D_J_Hack
#bug_hunter #hackerone #bugcrowd India Joined May 2012-
Tweets1K
-
Followers521
-
Following749
-
Likes2K
Hacking Google with A.I. for $500,000 brutecat.com/r/hacking-goog…
It's really cool to see people exploring taking the single-packet attack even further with HTTP/3! Excited to integrate these techniques directly into @Burp_Suite in future.
New paper out on race conditions & last frame synchronization in HTTP/3 🚀 🔗 link.springer.com/article/10.100… Highlights: • Analysis of last frame synchronization in HTTP/3 • Tools & libraries with clean APIs for researchers • Comparison of attack effectiveness: H2 vs H3
Accurate
Learn how to hijack an AI agent with a single email. Join me and @NahamSec as we dive into hacking 3rd-party connectors in AI agents
Plug in Gmail, Calendar, Notion, your whole life, and one phishing email can hijack the agent and walk out with your password resets, 2FA codes, and crypto wallet recovery. @TakSec broke down a real POC he got paid for 👇 youtu.be/_3TfHEfVvCQ
For years, Google API keys (AIza...) had little to no real-world impact. But recently, many of them unexpectedly gained access to Google Gemini. curl "generativelanguage.googleapis.com/v1/models?key=…" This appears to be a widespread misconfiguration that can be hunted in the wild.
Sharing my Burp Extension that earned me $200k in 2025 while API testing heavy JS-rich targets. github.com/jenish-sojitra… The tool helps find endpoints, files, internal emails, and some secrets from minified JS. Its goal is to achieve maximum efficiency with reduced noise in results. Contributions and feedbacks are welcome.
HTTP is supposed to be stateless, but sometimes... it isn't! Some servers create invisible vulnerabilities by only validating the first request on each TCP/TLS connection. I've just published a Custom Action to help you detect & exploit this - here's a narrated demo:
A good mix of everything to please everyone: CVEs, AI, Integrity Bypass and Unicode 🛠 blog.doyensec.com/2025/09/02/ksm… 🔐 blog.trailofbits.com/2025/09/03/sub… 📰 blog.kulkan.com/in4m-keeping-u… 🤖 executiveoffense.beehiiv.com/p/ai-hackbots-… 🍪 portswigger.net/research/cooki…
It's easy to bash vulnerabilities with logos but... I couldn't resist, say hello to http1mustdie.com :)
🤓 If you want to learn more about MCP attacks or vulnerabilities, check out this project called Damn Vulnerable MCP. It allows you to experiment on MCP server security through 10 challenges, from basic prompt injection to multi-vector attacks. github.com/harishsg993010…
Even though common CORS attack vectors have been mitigated... It still remains exploitable! 🤠 Open this thread to master CORS misconfiguration vulnerabilities! 🧵 👇
lol, this works on Firefox: <object data=# codebase=javascript:alert(document.domain)//> OR <embed src=# codebase=javascript:alert(document.domain)//>
How did we (@AmirMSafari) earn $50k using the Punycode technique? I’ve published a detailed blog post about our recent talk, we included 3 attack scenarios, one of which poses a high risk of account takeover on any "Login with GitLab" implementation blog.voorivex.team/puny-code-0-cl…
I'm thrilled to announce "HTTP/1 Must Die! The Desync Endgame", at #BHUSA! This is going to be epic, check out the abstract for a teaser ↓↓↓
The $64k Bounty: Automating secret extraction from GitHub to win $64K in bounties. Loved the way Sharon glued his @github internals knowledge, existing tools (@trufflesec trufflehog), cloud and AI to automate at scale. medium.com/@sharon.brizin…
Blind CSS exfiltration attacks recently got a lot easier! Full details in this thread:
I think many people are familiar with the topic of blind CSS exfiltration, especially after the post by @garethheyes However, an important update has occurred since then, which I wrote below ->
Detect the NextJS middleware bypass directly in Burp Suite with this BCheck from @eternalky_u gist.github.com/fourcube/45a78…
Introducing @arcanuminfosec 's hack_tips! We will begin posting some of our team's best bite-sized content on our repo. This stuff comes from slack, internal wikis, bug bounty history, etc. Our 1st commit is all about Actuators Enjoy! github.com/Arcanum-Sec/ha…
SQL Injection Isn't Dead Smuggling Queries at the Protocol Level by @pspaul95 youtube.com/watch?v=Tfg1B8… #BBRENewsletter87
MorningStar @0xMstar
20K Followers 1K Following security researcher , bug bounty hunter ,bugcrowd top 10, co-founder https://t.co/1bT321Ayen, https://t.co/WqLPzN7PyL
Ahsan Khan @hunter0x7
35K Followers 1K Following [Hacker + lover of bash] I Don't know how to hack but i know how to pwnd!
HackerOne @Hacker0x01
338K Followers 3K Following HackerOne makes security continuous. We unite AI and human insight through a unified platform to expose risk and eliminate it.
Tuan Anh Nguyen⚡️... @haxor31337
16K Followers 2K Following 30 y/o Bug Bounty Hunter and Red Team Lead at Viettel Cyber Security. Brand Ambassador @Hacker0x01 - Researcher Spotlight @Bugcrowd
0x0Asif🇧🇩 @0x0asif
5K Followers 881 Following Security Researcher aka Bug Bounty Hunter | HackerOne|BugCrowd|Yogosha #bugbounty #whitehathacker || Follow me on social media @0x0asif
dirty0124 @dirtycoder0124
5K Followers 426 Following A positive, never give up person. Founder of https://t.co/2H0KjZ5riG Telegram group https://t.co/bjQUMjI9Lh
Adam J Sturge @AdamJSturge
395 Followers 31 Following Hacker and AppSec Github: https://t.co/f6mbO5vMhp
Davn X hunter @DavnX29377
0 Followers 14 Following
nada🎀 @NadaMoh90175070
247 Followers 851 Following On fire for uncovering the mysterious and the exciting.🥷🏻
Isaiah @Hacker_Ise
4 Followers 668 Following Web & Mobile Security Reseacher | Exploring Blockchain and Cloud Security | ARM | Chasing My Curiousity
Kathleen Grace @KathleenGr18101
3 Followers 170 Following Recruiting webshell engineers to pe netrate websites, with a monthly salary of up to $100,000. If interested, please contact https://t.co/CNjnjmD3DR
Efrain Reyes @rockysec
346 Followers 315 Following Founder @krillsecurity | AI & Cybersecurity Expert
edxpwn @edxpwn
0 Followers 104 Following
Merbin R @merbinrussel
113 Followers 33 Following
HumorousHannah @pieredwing69928
44 Followers 1K Following Embracing the art of 'organized chaos' and finding beauty in the messiness of life. 🎨😅
Tuan Hoang Anh @tuanha2312
0 Followers 27 Following
El Mapache @trashp4ndasec
2K Followers 5K Following #latinhacker #SecureMindsNotMachines Sometimes I'm a photographer Sometimes I make videos as surly raccoon hand puppet @trashp4ndatiks
Swilder @Swilder47328
88 Followers 5K Following
Itsraining @Itsraining78550
113 Followers 4K Following
Srikanth Kunarapu @0xDarksec
93 Followers 891 Following Deeply Obsessed with computers & security Passionate Hacker | AppSec | I break things to make them secure
Quan the third III @big_Rbs
172 Followers 1K Following Infosec / security researcher 🔬 undiscovered talent Striving to Learn more and Earn more. #BugbountyHunter #Cultivator🌱#Systemanalyst Mentors welcome.
Ali.es @Alies2003
62 Followers 105 Following
vikram251 @vikramtall37015
542 Followers 7K Following Internal Auditor(ITGC) , Security reasearcher, Bug hunter
Gaurav Kumar(GDATTACK... @gdattacker
877 Followers 4K Following Recon 🔍 | Assets 🌐 | Cybersecurity 🛡️ | World + Web explorer 🌍 | Tasty food keeps me scanning | @HackenProof Security Researcher
ivan huertas @ivanhuertas
53 Followers 748 Following
Arun kumar @Arunkum30626996
9 Followers 59 Following
Kishan Dhamecha @KishanD07923071
6 Followers 538 Following
Scott Bollinger @kfalconspb
32K Followers 22K Following Long time IT pro and excertification junkie. Virtualization, Security, Networks, and Tacos!
Mr Netwons @netwons1
479 Followers 2K Following Web Designer | Bug Hunter | Security Researcher 😜 @netwons
Lunar Oceans @oceans_lunar
2 Followers 378 Following
P@t31 @Patel42153392
0 Followers 3K Following
Reactor @Reactor29786117
4 Followers 82 Following
RameshKumar Soundarra... @rameshkumarec89
230 Followers 3K Following SOC Analyst, Malware Analyst, Phishing Analyst, Thread Hunting, Learner, Bug Bounty, VAPT,...
dinesh(Aravind) @nanicyb_
703 Followers 722 Following Securing the Web2 & Web3 | DM for private audits
Misba anjum @anjum_misba
42 Followers 396 Following
Vala @Vabro_
340 Followers 462 Following Interested in Bug Bounty Hunting, Programming, also a big fan of Linux.🏞
Haneef @haneefmuhammad3
68 Followers 2K Following
bugcrowd @Bugcrowd
200K Followers 6K Following The leading provider of crowdsourced cybersecurity solutions purpose-built to secure the digitally connected world...Unleash Ingenuity™
Intigriti @intigriti
211K Followers 668 Following Bug bounty & VDP platform trusted by the world’s largest organisations! 🌍
Ben Sadeghipour @NahamSec
249K Followers 1K Following Cofounder @hackinghub_io | Advisor @CaidoIO. I hack companies and make content about it. #NahamCon organizer. ex @hacker0x01🇮🇷
Sam Curry @samwcyo
101K Followers 1K Following
Aditya @ADITYASHENDE17
63K Followers 421 Following MS Cyber 🇬🇧 | Work @BforeAI | @Bugcrowd Top 100 | Solo Bug Bounty Hunter/Trainer | Professional Biker | @kong_sec 🇮🇳 | Own Views ≠ Employment |
Joseph Thacker @rez0__
73K Followers 1K Following christian. father. hacker. advisor: @ethiack & @caidoIO & @StarstrikeAI products: https://t.co/EVhQl8HTlp podcaster: https://t.co/1aFavJN2h8 writer: https://t.co/JBPT1CJWJH
shubs @infosec_au
59K Followers 2K Following Co-founder, security researcher. Building an attack surface management platform, @assetnote
Hussein Daher @HusseiN98D
51K Followers 197 Following Entrepreneur, Hacker 🇱🇧🇨🇮 @WebImmunify 21th/270000 BugCrowd Hacking Platform
MorningStar @0xMstar
20K Followers 1K Following security researcher , bug bounty hunter ,bugcrowd top 10, co-founder https://t.co/1bT321Ayen, https://t.co/WqLPzN7PyL
Ahsan Khan @hunter0x7
35K Followers 1K Following [Hacker + lover of bash] I Don't know how to hack but i know how to pwnd!
JS0N Haddix @Jhaddix
177K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. Cybersecurity + Hacking + AI + Sec Leadership @arcanuminfosec
STÖK ✌️ @stokfredrik
138K Followers 1K Following Hi.. im that hacker / creative that your friends told you about.,
Nate @nnwakelam
43K Followers 1K Following
Yassine Aboukir 🐐 @Yassineaboukir
33K Followers 414 Following HackerOne Top 40, Elite, Pentest Lead, Ambassador, x2 MVH Title, $1 million bounties and ex- Hacker Advisory Board • Digital Nomad/Hybrid Athlete/Surfer
Luke Stephens (hakluk... @hakluke
100K Followers 2K Following Hacker, marketer. I manage socials and marketing for cybersecurity orgs. Founder of @hacker_content and @haksecio
PentesterLab @PentesterLab
205K Followers 0 Following Don’t just learn tools and payloads. Learn why vulnerabilities exist. Hands-on web hacking, security code review, and real-world CVE labs.
Julien | MrTuxracer �... @MrTuxracer
39K Followers 441 Following Founder of @rcesecurity | #BugBounty | @Hacker0x01 MVH && H1-Elite | $1,5+ Mio in Bounties | Mobile Hacker | @[email protected]
publiclyDisclosed @disclosedh1
68K Followers 2 Following This is an unofficial HackerOne public disclosure watcher who keeps you up to date about the recently disclosed bugs. By @NOBBD
skull @brutecat
9K Followers 382 Following hacker, security researcher. 21. i run a blog @ https://t.co/cBW6gzTpV2
Shad0w @Itx_Shad0w
3K Followers 619 Following Chasing "-rw-r--r--" Impact | Bug Hunter | Recognized By Paypal, Shopify, Netflix, Polygon, Wise Transfer, Linktree, U.S Gov, IBM, AWS, Amazon, Spotify, Expedia
Adam J Sturge @AdamJSturge
395 Followers 31 Following Hacker and AppSec Github: https://t.co/f6mbO5vMhp
S.M.Mathivadhani @MMathivadhani
47K Followers 109 Following மானமும் அறிவும் மனிதர்க்கு அழகு - தந்தை பெரியார் 🖤
Subhankar @CenturionGuy1
12K Followers 66 Following Credit Card Enthusiast 💳 | Sharing the Best Hotels & Destinations Around the World 🗺️ 🛩️ | Founding Partner @TechnoFino | Co-Founder @Creditpedia
𝕏 Bug Bounty Write... @bountywriteups
40K Followers 4K Following 🔍 Bug Bounty Hunter | Content Creator | Sharing cybersecurity write-ups & resources | AI | | by @piyush_supiy #bugbounty #bugbountytips
Jayesh Madnani @Jayesh25
14K Followers 506 Following Researcher in charge @ Ethical InfoSec Services | HackerOne Top 10 | https://t.co/JSX03Wv1vl
Tal Be'ery @TalBeerySec
11K Followers 2K Following Security Research Manager. Co-Founder, CTO @ZenGo. Advisor @ZeroNetworks. x-VP Research Aorato, acq by @Microsoft. 10 times @BlackHatEvents speaker.
Ebrietas @Ebrietas0
4K Followers 189 Following Security @ Phantom Wallet, former TikTok & Blizzard. All tweets are my own.
Martin Doyhenard @tincho_508
3K Followers 225 Following Security Researcher. Speaker at BlackHat, DEF CON, RSA, Hack In The Box, Troopers, EkoParty
Hackmanac @H4ckmanac
127K Followers 371 Following We track verified, real-world cyber attacks to help you develop effective Cybersecurity strategies. Try https://t.co/eB7qgxKFAa, your Strategic Threat Intelligence platform
Bilbo Baggins @Jbanklestankle1
139K Followers 5K Following Shitposts from The Shire. Random memes, pointless vids and mediocre jokes
Benjamin Strick @BenDoBrown
72K Followers 2K Following Open Source Investigator - OSINT|GEOINT|Disinfo Tutorials: https://t.co/jwll4Af0ax
Dark Web Informer @DarkWebInformer
223K Followers 85 Following One guy. Global cybercrime. Tracked so you don't have to. Ransomware, data breaches, dark web activity, darknet markets, IOCs & emerging threats. Stay informed!
H1 Disclosed - Public... @h1Disclosed
10K Followers 2 Following User friendly unofficial HackerOne public disclosures, keeps you updated about the recently disclosed bugs. Made With ♥ By Hackers For Hackers. - @rynosec
I¯\_(ツ)_/¯I \ (�... @BountyOverflow
7K Followers 1K Following BBH ( ͡° ͜ʖ ͡°) 💰 @Bugcrowd Top 50 \o/ ✌️ MVP✌️ I am here to learn/share application security stuff ✌️ I enjoy finding auth bypass bugs 🐞
andrew gao @itsandrewgao
44K Followers 3K Following DMs open! happy to chat; @cognition @stanford; prev @sequoia @LangChain @pika_labs; Z Fellow 🇺🇸; views my own
Hubble @NASAHubble
8.9M Followers 44 Following The official X account for the NASA Hubble Space Telescope, managed and operated by NASA's Goddard Space Flight Center.
Sahn Lam @sahnlam
49K Followers 282 Following Coauthor of the Bestselling 'System Design Interview' Series | Cofounder at ByteByteGo | YouTube: https://t.co/IphBm2DLnZ
El Mapache @trashp4ndasec
2K Followers 5K Following #latinhacker #SecureMindsNotMachines Sometimes I'm a photographer Sometimes I make videos as surly raccoon hand puppet @trashp4ndatiks
Shivam Kumar Singh @MrRajputHacker
5K Followers 475 Following NGO Director https://t.co/534IpYYmta | Security Researcher
Dave Gerry @davegerryjr
2K Followers 3K Following #girldad x2. CEO @bugcrowd. Former WhiteHat Security, Sumo Logic & Veracode. Tweets are my own.
Kanhaiya Sharma @krishnsec
20K Followers 747 Following APPLICATION SECURITY & RECON | Top 5 P1 warriors @bugcrowd | https://t.co/QhMy9MYvrx
Robert Hansen @RSnake
34K Followers 968 Following Managing Director - Grossman Ventures. CTO of Evidence. Defender of others' privacy, Author of AI’s Best Friend, Advisor, often found joking.
Bytebytego @bytebytego
131K Followers 2 Following Weekly system design topics you can read in 10 mins.
Critical Thinking - B... @ctbbpodcast
26K Followers 87 Following A 'by Hackers for Hackers' podcast focused on technical bug bounty content. Exploits, techniques, stories, bounties. Hosts: @rhynorater, @rez0__, @gr3pme
george hotz archive @geohotarchive
9K Followers 4 Following Not George Hotz. Just an archive. We archive @comma_ai, @__tinygrad__ and @realGeorgeHotz videos for fun. [email protected]
sayan @sayan_011
2K Followers 2K Following security researcher @therealgregoAI prev @sigp_io (rust dev) , @ethereum (protocol fellow) . opinions are my own
dmolnar @dmolnar
2K Followers 5K Following I like security. He/him. Supporting scaling security superpowers at Meta (Facebook). We're hiring across Meta Security, DMs open.
Mustafa Can İPEKÇİ @mcipekci
9K Followers 493 Following I'm an engineer from Turkey, who is interested with biotechnology, computer science and digital gaming. Proud father of three little devils. A.K.A nukedx
Dr. Michio Kaku @michiokaku
850K Followers 50 Following Official X of Theoretical Physicist, Futurist, Bestselling Author, On-Air Personality, Professor of Physics, and Public Speaker.
weiss.eth @0xWeisss
4K Followers 726 Following Co-Founder @EnigmadarkLabs (+60,000,000,000 secured) Security Researcher @Spearbit
chrisdior @chrisdior777
11K Followers 2K Following Co-founder @CDSecurity_io Helping protocols avoid multi-million dollar losses
enno @enncoded
189 Followers 206 Following SAST Enjoyer. Prodsec Eng @Adobe. Prev @Semgrep. Alumnus @RPISEC. My views are Owned by Self.
Zellic @zellic_io
18K Followers 18 Following Security reviews and research that keep winners winning. We apply unmatched hacking talent to secure critical software for the most innovative teams.
乱铁 @_dirtyiron_
232K Followers 49 Following
MackenzieM 🛠️ @0xMackenzieM
4K Followers 2K Following Security Coord @immunefi, Building security infra for the Deca-Trillion coming onchain, Paying hackers for doing good, DM me
Vidoc Security Lab @vidocsecurity
2K Followers 33 Following Securing the new era of AI-generated code with next-gen security automation. 🔧 https://t.co/epRtnyLvpT
Grizzly Research @ResearchGrizzly
54K Followers 508 Following Grizzly Research LLC is focused on producing differentiated research insights on publicly traded companies through in-depth due diligence.
KALOS @kalos_security
2K Followers 36 Following KALOS security researchers are here to safeguard your web3 projects, proudly taking 2nd place at Paradigm CTF! #Web3Security #SmartContractAudit
Jade Han @windowhan
1K Followers 1K Following windowhan.eth | Lead Security Auditor @zellic_io prev. @kalos_security








































