Hi everyone! After a long time, Here's my new video that will help you to effectively recon on large scopes to discover content or sensitive files on your large scope based targets!

https://youtu.be/ie84NeBxPCM

A productive weekend on hackerone!

Some more reports triaged this week!
Tip: Recon, Recon & Recon

To all my mates from our beloved country India, Happy Independence Day 🇮🇳

We’ve Reached 20K Subscribers on YouTube!

I can’t put into words how grateful I am today. Just a few months ago, we celebrated 10K subscribers, and now, we’re a community of over 20,000! I’m truly thankful to each and every one of you for your incredible support and encouragement throughout this journey.

To show my appreciation, I’m planning to host a free 2-hour webinar on bug bounty (I’ll announce the topic and date soon).

Thank you all so much from the bottom of my heart. Let’s keep learning and keep hacking together!

Hi everyone! Just wanted to update you all with our website. Our website is down because of the vps service provider have banned it for some reason. We are trying our best to communicate with them & hope to make it live soon.

For the last few months, I am using macbook for hacking and the experience is amazing! Even though my windows machine has a lot better specs that Mac, but still this device outperforms mine in terms of hacking, video editing, battery life etc.. I really love it!

Here's how I use my Mac for hacking:

Installed Kali Linux with Vmware Fusion(works amazing)

Installed some tools directly on my machine like ffuf, nuclei, wpscan etc through brew

btw guys, do let me know what machine do you all use for hacking!

Another vulnerability reported!

Hi guys, In case you are free then do checkout this awesome report: https://hackerone.com/reports/180074

Pov: It's late night, You were just about to sleep then suddenly you come up with a new method to bypass SSRF protection and it worked!!

August was overall a blessed month for me!



This month, I had some time to look back and hack on some private bug bounty programs. I was committed focus on only two private programs and the result? Well, I have:

* Reported over 20 valid vulnerabilities
* Five bounties pending
* Reported High severity vulnerability
* Improved my focus and consistency on hacking!

Overall, it was an awesome month for me!

Just finished shooting the next video. Will be releasing it this week! Can anyone guess the topic? 😉
Hint: It's a little similar to CSRF but on modern applications using REST api

This is why I never recommend anyone to be full time bug bounty hunter. I have reported a SSRF protection bypass vulnerability to a private program. Normally they used to reply in 1 day but this time they took around 1 week!
In the meantime, They quietly fixed this vulnerability in the background and now saying that they cannot reproduce the issue. Trust me, when this happens, it just shatters your heart

Therefore, I always recommend everyone to do bug bounty only to upskill their hacking game!

Hi everyone! The new video is out!!!
Check out this video and learn everything about CORS Misconfiguration with live demonstration
Video Link: https://youtu.be/LqkElGac3oA

Next video will be releasing in the upcoming week! Stay tuned

Just updated our channel theme! Let us know your thoughts on it

Hey everyone! I can’t believe I’m saying this, but we’ve just crossed over 21K subscribers on the channel! 🎉

Honestly, I’m so grateful to each and every one of you. Your support, comments, and just being here means the world to me. This journey has been an incredible ride, and I couldn’t have done it without you all cheering me on. Thank you for being part of this adventure—I appreciate you more than words can say!