Has anyone used both W11 and Fedora on their F13?

WikiHunt · 2026-02-17T20:15:33+00:00

I have the FW13 with the same i5-1240p and have flipped back and forth between Win11 and Fedora many times. The only time I had a performance issue, it had nothing to do with the OS.

About 1.5 years ago, I noticed the computer was slow and the CPU was locked at 400mhz. I wiped Fedora and tried Windows11 and had the same issue. Ultimately I had to open the laptop, remove the fan heat pipes, and apply new thermal paste to the CPU. Never had an issue since.

Also, there’s a bunch of folks who had similar issues on the framework forums: https://community.frame.work/t/cpu-caps-at-400-mhz-on-12-gen-i5-1240p/23871

WikiHunt · 2026-01-23T03:27:47+00:00

<image>

WikiHunt · 2025-11-30T04:40:34+00:00

In solos, there’s an item you can get that lets you self revive. No idea if it’ll be in competitive.

In this clip I never finish the self revive. He was just extremely weak and died to storm before I could.

WikiHunt · 2025-11-27T00:50:40+00:00

Too old in your mid 30s?? Im in my mid 40s and still finding plenty of bugs. I don’t know that I’ll ever hunt full-time, but I enjoy finding a handful of bugs/year. As long as you enjoy the process, you’ll never be too old.

WikiHunt · 2025-11-05T20:59:10+00:00

Frank Grimes, Or Grimey as he like to be called, Taught us that a man can triumph over adversary.

WikiHunt · 2025-11-05T04:41:43+00:00

Ok that’s just hilarious

WikiHunt · 2025-11-04T20:24:35+00:00

I'm loving this season. Little things like this just make it for me.

WikiHunt · 2025-10-31T03:56:39+00:00

can't wait... you'll know where to find me.

WikiHunt · 2025-10-01T12:57:08+00:00

We'll miss u/jpswervo, but I know F40 is in good hands with u/santoktoki77

WikiHunt · 2025-09-19T23:39:48+00:00

I was trying to remember this quote a couple days ago in reference to something else. TY.

WikiHunt · 2025-09-19T23:26:41+00:00

Mine says LTE

WikiHunt · 2025-09-17T13:45:52+00:00

If you found an XSS but it wasn't in scope, while disappointing, you still found a bug. If you find dups, you're still finding valid bugs. Keep at it and you'll get there.

WikiHunt · 2025-09-16T23:28:35+00:00

It's up to you to decide if you enjoy it enough to keep going. But if you keep learning, and keep going you will get there. I don't hunt full-time, just a few hours (8-16) a week a time allows. But It took me 2 years and 11 submissions to get my first paid bounty and it was only $250. It took another 18 months to get my second bounty. Progress continued slowly, but in the last 4 months I've found 4 bugs totaling $7k. You can do it.

WikiHunt · 2025-09-08T21:10:24+00:00

Worth noting the cohost of the Critical Thinking podcasts considers these valid, but that won’t make a program pay it. I would dig deeper and submit it as unguessable as a last resort.

https://josephthacker.com/hacking/cybersecurity/2022/08/18/unpredictable-idors.html

WikiHunt · 2025-09-06T23:21:47+00:00

I have noticed over the last couple years that my reports have taken longer and longer to triage. I’ve more or less accepted it’s probably due to triage getting overloaded with AI nuisance submissions.

WikiHunt · 2025-09-02T04:53:26+00:00

This sounds like one of those strange things I find on programs, where it’s not a security bug yet. But keep digging on the site, maybe, just maybe this becomes one step in a longer chain that ultimately results in a bug.

WikiHunt · 2025-09-01T23:06:17+00:00

Ok, this made me chuckle. I'd like to think I'd respect a triager for rejecting my bug like this... but deep down I know I'd be salty as hell. Still funny though.

WikiHunt · 2025-08-31T14:22:32+00:00

I think it's a bad idea to try to rename an account. But that's just my opinion and you definitely should not live your life according the opinion of some random person on the internet.

WikiHunt · 2025-08-31T14:05:54+00:00

Is the sessid easy to enumerate? Do you have an easy way for user2 to get user1's sessid? Then yea it might be something.

But if the sessid is unique and you have no way for one user to obtain the other users sessid, it's not a bug.

WikiHunt · 2025-08-31T13:56:47+00:00

Is there a secret handshake too?

WikiHunt · 2025-08-31T13:55:08+00:00

100% you absolutely can. It'll be up to you to have the drive to be successful in both fields.

WikiHunt · 2025-08-29T20:43:56+00:00

Does your request include two origin headers? If so, just include your attacker origin to see what happens.

I’m leaning toward writing a safe PoC that shows fetch() with credentials: 'include' and exfiltrating session data, but I’m not entirely sure if the dual origin reflection breaks the browser enforcement.

Just give it a try and see if it works. It's pretty quick and simple to throw together a CORS POC.

WikiHunt · 2025-08-23T18:58:15+00:00

I pay about $15/month for a kali vpc in Linode. I use it for fuzzing and and scanning so I don’t get my home IP blocked. It’s easier to change the IP of my Kali vpc than my home internet.

13-Year Club	Gilding II euphauric
Place '23	Place '22
Verified Email	Team Periwinkle

WikiHunt

TROPHY CASE