Full-time Penetration Tester | Bug Bounty Hunter bugcrowd.com/janlele91 | hackerone.com/j4nlele91

Vietnam
Never been triaged so many P1s like this before. Manual testing is still a thing for me. Also loving the fast triage in 16 mins by #Timmy_Bugcrowd too. Hope for the best !! @Bugcrowd
11
3
187
19,510
F*cking night F*cking Nice Program with 2 P1, 2 P3 and 1 P4 !!! 250 points for this program already 😍 @Bugcrowd bugcrowd.com/janlele91
6
3
140
11,413
I earned $X,XXX (1k$ bonus) for 3 submissions on @bugcrowd bugcrowd.com/janlele91 Focus a program only, pay attention to its focus area, and dont forget to bypass resolved report. My first P1 bounty ever, writeup comming soon 💥💥 #ItTakesACrowd #bugcrowd #BugBounty
14
2
129
8,572
I earned $$$ for 3 submissions on @bugcrowd bugcrowd.com/janlele91 #ItTakesACrowd - Business Logic Error - IDOR - Open Redirect
10
3
122
6,336
First bounty on @Hacker0x01 and first try at Ambassador World Cup 2024 with Vietnam1 team 🇻🇳 leaderboards.hackerone.live/…
3
1
108
8,414
Lightspeed Retail is exactly a scam. They denied all the reports and even mark my Stored XSS (showed evidence how an low-level user attack Admin) as Out of scope because they are aware of the issue?
9
2
101
13,018
I earned $X,XXX + Bonus for my submission on @bugcrowd bugcrowd.com/janlele91 Got resolved in the first P1, try to dig deeper and i got the second in the same day. The program is nice as well 💕💕 #bugbounty #bugcrowd #ItTakesACrowd
4
71
5,826
I have officially joined in Bug Bounty campaigns since Sep 2023: - Submit > 30 reports on @Bugcrowd and Meta - 20 valid reports and 7 bounties from @Bugcrowd and Meta - 0-day on an unofficial Wordpress plugin Amazing 2023 and Happy new year 2024🎊 #BugBounty #Bugcrowd
2
1
23
3,473
editor.swagger.io/ use it to parse swagger json or yaml
1
1
7
803
In addition, the 1-click ATO is also marked as Info because they are aware of the issue internally again. Such a bad program i have ever join in. This is the Out-of-scope policy.
9
1,723
@codingo_ I think Bugcrowd should do sth to protect the hackers. It wastes our time. Thank you.
1
7
1,649
Replying to @flysec_corp @ngocdh
đỉnh quá mấy a 🫡
3
175
Replying to @0xSabir @3nc0d3dGuY
did you try spring boot actuator hacktricks?
1
3
443
Replying to @Bugcrowd
Waiting for more private programs from u

ALT Kid Dancing GIF

1
1
98
Replying to @cyberx00t @Bugcrowd
I got it, congrats btw haha
1
43
Replying to @itz_mg_ @Bugcrowd
No bro, recon domains base on the service of program
1
184
Replying to @xitsec
PII leakage but no bounty?
1
1
266
Congrats bro~~~
1
1
124
Just recon subdomains base on the context of application bro
1
166
Replying to @sidharthas8962
hey can I dm ? i can escalate the HTML injection severity to Medium or maybe higher.
3
1,401
oh nice, thanks mate
1
1
57
Replying to @tunadv @Bugcrowd
Cảm ơn bro
1
304
Replying to @moodiAbdoul
exactly bad prog bro :D
1
89
just focus on progs on bugcrowd
150
Replying to @LTiDiii @Bugcrowd
Thanks a ơi, manual nên ko dám nghĩ tới :D dc bug nào hay bug đó thui anh
1
216
Replying to @xitsec
Love it 💥💥
1
1
287
Replying to @thaivd98 @Bugcrowd
vẫn phải đợi program tính như nào nữa a ơi :DDD
1
903
Replying to @thaivd98 @Bugcrowd
:D cố gắng đc 1 vài phần như a thôi kaka
1
1
514
Change from OOS to N/A :))) Bad program ever.
1
2
1,005
Look up some params like: return_url, return_path, next_url…
1
1
161
Thanks mate, sometimes Outofscope still works :D
127
Replying to @h4x0r_dz
hi, which endpoints often leak these info?
1
628
Thankiu a zai, nó vẫn đang triage mà reward rồi nên chưa tính thì phải. Em ko rõ lắm
1
261
You can DM me for html injection impact. I can leverage it
1
1
266
Looking for hidden domains bro
2
1
309
Replying to @xitsec
Nice catch bro
1
1
304
congrats!! Is it P1? I have found the same vuln in a target that leaks fullname, email, phone number.
2
1
182
Replying to @thaivd98
chúc mừng anh 💎
1
1
266
Replying to @BlankJinn @Bugcrowd
Focus on their focus haha
1
652
Replying to @xitsec @Bugcrowd
So much thanks bro, you are talented too
1
1
490
My pleasure, big brother 🤝
1
300
Replying to @thaivd98 @Bugcrowd
Em cảm ơn anhh 🥳🥳
1
215
Replying to @_public_void
Hey i think you should submit it in another report. Anw, can you share how to download DLL when found it on webroot or sth like that?
1
1
228
Congrats anh và team ạ 🤩
1
1
426
Replying to @pivik_
Congrats em
1
1
334
E tạo rùi mà rep hong chi tiết lắm với lâu qá a 🥲
74
Replying to @xitsec @Bugcrowd
Please DM me
1
1
71
Replying to @lokeshdlk77
Congrats!! Happy new year bro
1
80
Replying to @Bugcrowd
*me when receiving ur comment*

ALT Happy So Excited GIF by TikTok

1
1
88
Private program bro. Just fuzzing and surfing all the application’s functionality
1
138
Haha sorry for the late message. I'll try to write it down in medium. You're so cool too, bro.
1
1
249
Replying to @codingo_
Yes i remit them on 22nd , but i still dont get the money now. I create ticket in support but takes quite long time
1
1
82
Replying to @GodfatherOrwa
I’m struggling with sqli in programs in Bugcrowd. And it is great if i can collab with you for more knowledge and experience. P/s: i’m from Viettel Cyber Security as your previous collaborator 😅😅
1
145
Replying to @codingo_
Can you refer me to bugcrowd staff who is responsible for this section? Thank you so much
1
33
Can you share more details about threads in ffuf?
1
1
117
Replying to @thaivd98 @Bugcrowd
You too 🤩🤩
1
248
Replying to @xitsec @Bugcrowd
really???? so excited to hear that bro
1
90