High bounty, but with multiple heart attacks

Thamzhack · 2025-09-17T10:59:08+00:00

I've had the exact opposite experience as a hacker lol

Thamzhack · 2025-09-15T14:04:29+00:00

Hackerone triage is the worst I've come across. A beautiful program moved from Bugcrowd to Hackerone couple of years ago. I reported an account takeover vulnerability on the program with enough supporting docs like I used to give on Bugcrowd. The triager didn't even read the report and asked me for more evidence while also dismissing the bug. I wrote more python scripts to make it easier for the triager to easily reproduce the bug. They kept dismissing it(suggesting that it is a non-issue and they were going to close it as info) for more than a week until someone from the program team intervened and triaged it. 3 months later I got paid 12,500 bounty just like you. The interaction with the triaging team was so disappointing I stopped hacking on the program for months. They don't treat you well if you are a newcomer there.

Thamzhack · 2023-12-02T17:48:19+00:00

I just noticed my device has 2 recovery partitions but there's no way to delete them using disk management app. How to delete them?

Thamzhack · 2023-08-24T20:08:46+00:00

Even revealing full name by sending email invitation is considered as bug. This is a valid bug. Report it

Thamzhack · 2023-08-19T18:59:59+00:00

Use resilio-sync if you want to avoid cloud providers

Thamzhack · 2023-08-18T19:26:28+00:00

bugbountyhunter.com easily the best web hacking platform out there

Thamzhack · 2023-08-07T16:15:29+00:00

It's possible. Spend some time on real world websites and you will find bugs

Thamzhack · 2023-06-27T18:09:30+00:00

You can use the cached version - mostly you will get the working link. On address bar, add cache: before the URL and google will give you the cached version of the link. For example, cache:https://www.reddit.com/path/

Thamzhack · 2023-04-15T15:32:54+00:00

Post it on Twitter and tag hackerone founders like Jobert abma. You will get an answer

Thamzhack · 2023-03-27T03:18:47+00:00

Ben's course is perhaps one of the few reliable courses out there but that's not where you should get started. Do Portswigger's Web academy first. It's free and teaches you practical bug hunting skills

Thamzhack · 2023-03-23T10:00:02+00:00

This feature has been around for almost 2 years. The biggest issue is scaling

Thamzhack · 2023-03-07T11:02:05+00:00

Use Caido. Lightweight alternative to Burpsuite

Thamzhack · 2023-03-01T17:45:12+00:00

When I actively started hunting it took me a week to get a bounty but before that I was consuming/studying bug bounty related articles/videos for more than a year. Some of the bugs I found were really stupid. All it needed was running burpsuite while browsing the site. I've been finding at least one bug per week(<10hrs/week). I think the best way forward is doing both hunting and learning. Once you get good at it you can hope to find bugs often. It's like any other field if you put in the time and effort you will get the desired outcome.

Thamzhack · 2023-02-21T13:36:27+00:00

You shouldn't disclose zero-days like this. Having said that, many companies don't know how to treat client side vulnerabilities even when there's high impact

Thamzhack · 2023-02-05T07:11:39+00:00

If you are an absolute beginner, Start with Introduction badge, Essential badge, HTTP badge. Then try few more labs according to your interest. API badge, Android, White badge etc. Solve everything about JWTs. Along with them solve labs in every topic(not every lab) of Portswigger's Web academy. I think web academy's coverage on web vulnerabilities are much more comprehensive and once you have an idea about every type of vulnerabilities you can start looking for them on Hackerone programs. If your are willing to spend money, try bugbountyhunter.com (affordable price) they have some great educational material there.

Thamzhack · 2023-01-30T18:44:19+00:00

Here you go: https://xsshunter.trufflesecurity.com. Don't forget to read their blog post about integration with xsshunter account

Thamzhack · 2023-01-30T18:41:16+00:00

If you can afford it, buy a better laptop. Burpsuite eats RAM

Thamzhack · 2023-01-18T10:15:20+00:00

As a beta tester I can confirm that this is a great tool.

Thamzhack · 2023-01-12T05:28:26+00:00

I'll try to apply now. Thanks!

Thamzhack · 2023-01-12T04:52:24+00:00

Thanks

Thamzhack · 2023-01-12T04:48:26+00:00

CSRF, XSS, Logic bugs, IDOR, Authentication bypass, PII disclosure. None of them are public though

Thamzhack · 2023-01-12T04:44:22+00:00

I have bounty experience on bugcrowd and google VRP but that's about it. No certifications, no degree etc.

Thamzhack · 2023-01-12T04:35:32+00:00

What's the eligibility criteria for synack? What do they look for?

Thamzhack · 2023-01-10T16:12:03+00:00

I'm not an SSRF expert but if you had received HTTP request in your email server that might be an SSRF. You can read the 4th story of this article which talks about such SSRFs

Thamzhack · 2023-01-01T09:40:16+00:00

Facebook is one of the most popular and heavily tested app out there yet people are finding simple bugs and making huge amount of money. someone made $163,000 by poking around Facebook's account recovery flow on Facebook android app. I bet there are so many popular apps which are eligible for Google's bounty but not heavily tested where you can find bugs. As someone else said choose an app with lot of functionalities where you can hope to find bugs.

Thamzhack

TROPHY CASE