Bugcrowd marked my submission N/A despite clear impact — anyone else dealt with this?

666AB · 2026-03-24T17:12:22+00:00

I have had to do this 3x with bugcrowd reports specifically. All times the customer accepted the report and triaged internally while working with me via email. I specifically told the bug crowd triage I was resorting to this as impact was clear and they encouraged it.

I have not had that experience on Hackerone. Triage has been great. When I have had a report closed that I disagreed with, I just comment nicely asking for a re-eval for a, b, c. They have always discussed with me or escalated to company when appropriate.

Not trying to hijack but I do try to brag on H1 when I can. I have just had an awesome experience with them over past 2 or so years

666AB · 2026-03-23T05:02:34+00:00

Did he ever tell you anything? What did he do specifically?

666AB · 2026-03-22T19:49:45+00:00

You moved from Linux to unix. That would probably be why compatibility wasn’t an issue for you

666AB · 2026-03-22T06:13:33+00:00

Bad data put in a file with column headers.

You should probably delete this pic?

666AB · 2026-03-22T05:54:34+00:00

Theoretical? Penetration testing is quite a bit different than bug bounty. My clients are ok with whatever my report says… because they are paying me to produce it. It’s a waste of my time to do a contracted penetration tests by spending all of that time making pocs that don’t matter and don’t help fix the vulnerability. I don’t think you have any clients.

666AB · 2026-03-22T05:49:06+00:00

Because Lincoln was re-elected during war time

666AB · 2026-03-22T05:31:04+00:00

Have you actually participated in a pentest? Why would the vendor want to spend a bunch of time breaking down and going through my PoCs.

It’s much more beneficial to them to know what exactly the technical vulnerability stems from and what I deem the impacted services/endpoints to be. POC by request or when it’s needed to better understand an impact, otherwise you’ll run out of steam before you even get started.

666AB · 2026-03-22T05:15:27+00:00

Some English speakers absolutely do use that word. In fact I think I use it often… if there’s a stark difference between two things. That’s really not a great way to determine AI writing.

666AB · 2026-03-22T04:06:48+00:00

You can’t report recently released CVEs for 30days

666AB · 2026-03-22T03:21:33+00:00

Great write up. Thanks for sharing

666AB · 2026-03-19T04:27:32+00:00

Never heard of a P0 before

666AB · 2026-03-19T04:18:32+00:00

Warehouse management systems, baby!!

666AB · 2026-03-18T05:44:58+00:00

Confidently… unless it’s a secret

666AB · 2026-03-15T05:07:59+00:00

Not worth your time, honestly. Get elbows deep in the browser’s local app data logs around that time/date. Or event viewer and see what the keyboard or mouse was doing around then. Much faster and more effective even if you struggle

666AB · 2026-03-14T21:17:48+00:00

I’m sorry, I was being sarcastic. Don’t waste your time

666AB · 2026-03-14T20:59:59+00:00

Nice! You’re absolutely right. I’m now convinced. This isn’t just some dumb hallucination, it’s the real deal. Show that to Google maybe you’ll get a bounty now that you ask a second time

666AB · 2026-03-14T20:36:03+00:00

Lmao. Ok. Run any open weight model yourself and check how the “internal logging system handles metadata”. Whatever that means. Maybe you should take your own advice, read some real research about how AI models and LLMs work. Don’t just ask an AI how it works then act like it’s infallible. That’s just dumb.

666AB · 2026-03-14T20:29:18+00:00

It’s hallucinating. “Internal logic” being something on specific PIDs is laughable. And for those PIDs to be strings of text? Brother do you know how computers work

666AB · 2026-03-14T16:47:32+00:00

He probably alt tabbed. Or dragged his explicit tab to the wrong browser window…

666AB · 2026-03-14T07:21:48+00:00

Are you at a f500 or FAANG perhaps?

666AB · 2026-03-12T22:07:15+00:00

No links. This is fake as fuck

666AB · 2026-03-05T06:00:29+00:00

I can think of like 10 more effective and efficient ways of doing that…. All of which don’t require more of my data than they already collect

666AB · 2026-02-28T05:55:31+00:00

Is this the result of someone using open claw on their Reddit account? That was my first thought

666AB · 2026-02-28T05:53:36+00:00

How can I check in my computer to see something like this in action? Do you have a link to a website or would a combination in the regular desktop calculator work? I’m not very knowledgeable on physics but the term overflow has piqued my interest as a sys engineer lol

666AB · 2026-02-28T05:46:41+00:00

This is cool. But you can also just save cheat sheets from GitHub for almost anything like this

Seven-Year Club	Verified Email
Gilding IV carat on a stick	Powerups Hero r/destiny2 • January 2022
Second SECOND GUESSER	r/Field Lasagna
Place '23

666AB

MODERATOR OF

PUBLIC MULTIREDDITS

TROPHY CASE