Muzamil @Kindone09 - Twitter Profile

Pinned Tweet

4 months ago

Alhamdulillah I was Awarded a $3000 Bounty on HackerOne 💥 #bugbountytips #bugbounty #CyberSecurity #Hacked #hackingtools

12

253

4

22

6K

Kindone09 retweeted

TrendAI Zero Day Initiative

@thezdi

28 days ago

There it is! Orange Tsai (@orange_8361) of DEVCORE Research Team was able to exploit Microsoft Exchange! If confirmed, they win a whooping $200,000 and 20 Master of Pwn points. Off to the disclosure room to explain how they did it and seal the deal. #Pwn2Own #P2OBerlin

16

530

63

48

67K

Kindone09 retweeted

LaurieWired

@lauriewired

about 1 month ago

the most low-effort / high reward thing you can do for security is installing the Russian language pack (not even joking, it's ridiculous how often that prevents execution)

lauriewired's tweet photo. the most low-effort / high reward thing you can do for security is installing the Russian language pack

(not even joking, it's ridiculous how often that prevents execution) https://t.co/wQ4res5DCA

146

14K

969

5K

2M

Kindone09 retweeted

H4x0r.DZ 🇰🇵

@h4x0r_dz

about 1 month ago

MYTHOS FINDS A CURL VULNERABILITY https://t.co/dhvdvhqqQp

5

407

35

205

43K

Kindone09 retweeted

lookatrobot. @lookatrobot

about 1 month ago

I visited a link https://t.co/XHGPdAO3SM. It site was HTTP. It asked me to complete a "CAPTCHA" This is NOT a CAPTCHA. It copies a hidden PS script to your clipboard and runs it. DON'T GO THE WEBSITE OR SOLVE THE CAPTCHA. Did you do this intentionally?? @lostsec_

lookatrobot's tweet photo. I visited a link https://t.co/XHGPdAO3SM. It site was HTTP. It asked me to complete a "CAPTCHA"
This is NOT a CAPTCHA. It copies a hidden PS script to your clipboard and runs it.
DON'T GO THE WEBSITE OR SOLVE THE CAPTCHA.
Did you do this intentionally?? @lostsec_ https://t.co/fA0otaDPRe

7

74

5

61

14K

Kindone09 retweeted

NXR🇮🇩 @_nnxxrr_

about 1 month ago

Hey I found a bug on your site!! 😃 Oh, it's just informative, no security impact 🙃 Alright then, please disclose it 🤝 Haha nope 😅 only resolved issues can be disclosed 🤭 ... whaw3532io523r9t8wf!!! 🤯🔥

2

17

2

1

649

Kindone09 retweeted

James Kettle

@albinowax

2 months ago

I'm thrilled to announce "Can AI Do Novel Security Research? Meet the HTTP Terminator" will premiere at @BlackHatEvents #BHUSA! Check out the abstract:

albinowax's tweet photo. I'm thrilled to announce "Can AI Do Novel Security Research? Meet the HTTP Terminator" will premiere at @BlackHatEvents #BHUSA! Check out the abstract: https://t.co/GeEAzT2ujw

21

647

101

209

56K

Kindone09 retweeted

Shivang @shivangmauryaa

2 months ago

Reward : 2000 $ IDOR in staging API due to missing object-level authorization Endpoint: GET https://example. com/api/workspace/{id}/latest The {id} parameter is directly mapped to backend objects without any access control enforcement. Since IDs are sequential

shivangmauryaa's tweet photo. Reward : 2000 $

IDOR in staging API due to missing object-level authorization
Endpoint:

GET https://example. com/api/workspace/{id}/latest
The {id} parameter is directly mapped to backend objects without any access control enforcement. Since IDs are sequential https://t.co/V9IdJLb8i0

5

241

8

69

7K

Kindone09 retweeted

kritika

@vibeonX69

2 months ago

What’s harder to master in Linux? -Permissions -Networking -Shell scripting -Package management

31

216

12

24

6K

Muzamil @Kindone09

2 months ago

@prasads94955045 @techbromemes There channels 😅

0

34

Kindone09 retweeted

Shivang @shivangmauryaa

2 months ago

bounty : 1,100$ Bug 1 : Debug Mode enabled well i the api endpoint was expecting /api/v1/xyz?id=1 [INT] but instead of int i used string value which thrown errror with a lot of information Bug 2 : User limit bypass as per plan you can add only 2 user ,

shivangmauryaa's tweet photo. bounty : 1,100$
Bug 1 : Debug Mode enabled

well i the api endpoint was expecting /api/v1/xyz?id=1 [INT] but instead of int i used string value which thrown errror with a lot of information

Bug 2 : User limit bypass

as per plan you can add only 2 user , https://t.co/CgNHzlaDOm

6

334

7

139

13K

Muzamil @Kindone09

2 months ago

@shivangmauryaa congrats. ✨ And How did you even come up with this payload

0

268

Muzamil @Kindone09

2 months ago

The panic in the #welcome channel was real—until the realization hit. Check the calendar: April 1st. 📅🤣😂

0

52

Muzamil @Kindone09

3 months ago

@albinowax True

0

103

Kindone09 retweeted

James Kettle

@albinowax

3 months ago

CVSS' Attack Complexity metric is the bane of bug bounty hunters: "you tried really hard to find that bug, so we'll pay you less".

18

318

16

31

27K

Kindone09 retweeted

chiefpie @cplearns2h4ck

3 months ago

pwn2own❌ ai2own✅

13

417

32

139

47K

Muzamil @Kindone09

3 months ago

@tech_cyber1447 Thanks, and I will make a write-up soon.

0

5

Muzamil @Kindone09

3 months ago

Just another day on hunting. ☕️ Secured a $500 bounty for a PII Exfiltration. It’s wild how a little creative "persuasion" can make an AI leak secrets. Back to the grind. 🛡️💻 #BugBounty #Infosec #AI #PromptInjection #CyberSecurity #EthicalHacking #RedTeaming #HackerLife

Kindone09's tweet photo. Just another day on hunting. ☕️

Secured a $500 bounty for a PII Exfiltration. It’s wild how a little creative "persuasion" can make an AI leak secrets.

Back to the grind. 🛡️💻

#BugBounty #Infosec #AI #PromptInjection #CyberSecurity #EthicalHacking #RedTeaming #HackerLife https://t.co/CwaX9pBWgN

3

83

0

16

2K

Muzamil @Kindone09

3 months ago

@Prajwal030105 I will make a write-up soon.

0

8

Muzamil @Kindone09

3 months ago

@Arqam992 Thanks . I have been doing bug bounties since August 2024, but I haven’t been very consistent because I am a student. I also just turned 18 and joined university this month

1

0

29

Muzamil @Kindone09

3 months ago

@sysxplore Kinda true 😂

0

9

Muzamil

@Kindone09

Last Seen Users on Sotwe

Trends for you

Most Popular Users