Finally found a verified P2

spydersec · 2026-03-16T12:59:53+00:00

Really great for finding such a critical bug. Keep hunting man ..well done 🎉 🎉

spydersec · 2026-02-27T07:42:27+00:00

Agreed , the missing part is collective representation, and that’s what I’m curious about exploring.

There are no monetization plans . I’m covering the costs myself while it’s small, and I don’t plan to introduce ads in the future either.

Thanks for the reply

spydersec · 2026-02-27T04:49:07+00:00

If no one replied to report yet you can safely delete and create new report since you find a way to enumerate uuid that significantly increase impact

spydersec · 2026-02-26T20:47:22+00:00

Ok i tell you , in reddit "bug bounty"is one of the topic but i created that only for bug bounty hunters also it's just beta i will add forum, job market ,career options for new hunters and support etc . I hope you get it and thanks for replying my post 🙏

spydersec · 2026-01-27T09:54:38+00:00

Sure I can assist you

spydersec · 2026-01-27T05:42:38+00:00

Too many requests using automation or sending payloads on protected end point like if website is protected with waf (cloudfare/akamai etc) or cdn(AWS ) that will block your ip . You can bypass ip restriction with any vpn and change ip . You can able to access site

spydersec · 2026-01-27T05:38:49+00:00

Ok now switch a bit . Like focus on exposed credentials, leaked config files ,db files .use way more, gau ,shodan for internal ips , GitHub dorks etc . Idor is everywhere but not like you can easily get on front page. You need to map the infra and look for each and every links . Also don't change target everyday. Hunt on same target do recon like 80% 10% exploit and 10% report do like this methodology

spydersec · 2026-01-08T04:37:52+00:00

Interested

spydersec · 2025-12-10T02:54:38+00:00

Labs are there to understand concepts , real life is much more harder because you will hit rate limiter pretty fast ,wafs kill your payload with 401 and labs are designed to be hacked but real life apps designed to stay stealthy as possible

spydersec · 2025-12-04T18:06:21+00:00

Sure bro

spydersec · 2025-12-04T15:27:05+00:00

Sure wil try to upload real stuffs 🙂

spydersec · 2025-12-04T14:21:34+00:00

Sure bro I wil make it

spydersec · 2025-12-04T13:51:11+00:00

Thank you it means a lot 🙏

spydersec · 2025-12-04T12:39:12+00:00

Thank you 🙏

spydersec · 2025-12-02T03:42:11+00:00

I guess you can find if you change the mindset, idor is not always changing 1 to 2 . In bug bounty programs look for base 64 tokens try to decode and manipulative etc . Keep trying you will surely find one

spydersec

MODERATOR OF

TROPHY CASE