Olivia
Online
Jeti
@0xJeti
Spare Time Hacker. Former Yahoo Elite 8-)
Cracow, Poland
Joined February 2018
378 Following
1.1K Followers
285 Posts
Pinned Tweet
Here's a write-up on a Browser-Powered Desync bug that I discovered in the Azure CDN service known as Front Door. The entire concept is built upon the excellent research by @albinowax. Initially identified within the @intigriti program.
https://t.co/sgpXEFVxzm
#bugbounty
@deadvolvo I should definitely dig deeper into this... https://t.co/sgpXEFUZJO
Knocking on the Front Door (client side desync attack on Azure CDN) - @0xJeti
https://t.co/XB8g3CpOHD
I created a tool called "Creatures Of Habit" which accepts a GitHub username/organisation finds all public repos and extracts endpoints from popular web frameworks https://t.co/L0TyTxYlJW
Who to follow
SickSec 🇲🇦 🇵🇸 
@OriginalSicksec
I love GraphQL | Hackerone Ambassador 🇲🇦 | Tweets are my own | Riichi #Mahjong Player | Founder of https://t.co/9ELRuMo4HK
𝚖𝚎𝚛𝚝 🦧
@mertistaken
hacker / bug bounty hunter / worldwide #1 on critical-high submissions https://t.co/djEccIleby
Tuan Anh Nguyen⚡️ 🇻🇳
@haxor31337
29 y/o Bug Bounty Hunter and Red Teamer at Viettel Cyber Security.
Brand Ambassador @Hacker0x01 - Researcher Spotlight @Bugcrowd
I plan to expand this by listing all the org repo, finding all the contributors and then scanning their public repos
When researching Palo Alto PAN-OS, @assetnote's Security Research team discovered an authentication bypass due to flaws in its architecture. Our team digs a lot deeper than surface-level CVEs; this research is an example. https://t.co/sJKwoovhFk
@_zwink Yes, like every good hacker, she has some tricks up her sleeve. In this case it's called autostereograms
With 12h more of hacking (and A LOT of reports to be processed, so it's all subject to change), we're 3rd as a team 🇵🇱 of the H1 Ambassador World Cup qualis
Plus individually, we occupy 2 out of top 3 spots for bounties with DrBrix absolutely killing it in the 1st
I'm so happy!
I recently found a decade old Server-Side Browser on a #BugBounty program. Exploiting it was a bit of a ride. I wrote up the experience so others may learn from my (many) mistakes!
https://t.co/nunFj4HLQW
Today @bugcrowd, we're expanding our product line to offer VDP's for free https://t.co/OiD82DnXuP, marking the next evolution of our VDP product, following our removal of incentives some time back.
This marks a change in the industry, providing a no cost entry point for customers to build up reporting portals, to support hackers in bringing vulnerabilities to them, in a fast, and effective manner. It also allows customers to build exposure to the value of the hacking community, and then pursue other offerings in the managed bug bounty space, or pen testing space, in a paid model, that incentivises findings and discovery, whilst VDP is intended to capture existing known findings.
Also, hackers, we hear you, we love you and we know there's more to change around VDP's. This isn't our only change. We're aware of the need to change terms for them, and it's currently an active discussion, as well as better separating VDP from MBB which we've done by removing incentives, and having this offering not list in our program portals. If you've other feedback, we would love to hear it, and welcome it - my slack is always open and you can reach me on HIVE, Bug Bounty Forum, or here over DM
Hey, Polish hackers! 🗣️
The first meeting of the Poland HackerOne Club is tomorrow, April 23! Join @gregxsunday and @_pkusik for an exciting agenda of lectures and networking.
RSVP here to reserve your spot: https://t.co/nx3v3xvgE7
@vict0ni That sucks. Maybe fitting those 3 requests into a single packet in Burp would help with jitter?
I'm proud to be the H1 ambassador for Poland🇵🇱 All the polish hackers interested, DM me to join to hack and have fun together😏
Poland has now a H1 Brand Ambassador!
Congrats @gregxsunday
The 2024 Brand Ambassadors are ready to kick off the year right! 🙌 Thank you to everyone who submitted their applications to the program this year.
Check out the thread below to see our newest ambassadors, and sign up on https://t.co/PQVu5jSIFE to join your local chapter! 🌎
I'm really close to 50k subscribers on YouTube and it's my birthday🥳 Can we make it to 50% of the silver button today?😏
Subscribe if you haven't already, RT if you have!
https://t.co/IP5uJiK378
@SecGus https://t.co/AbnjJIHx7h ?
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers