Pritesh Mistry @pritesec - Twitter Profile

Pinned Tweet

over 6 years ago

I just published my writeup about How an incident gave us $$$ bounty. If you have any query feel free to DM me. https://t.co/gH6FwOwf2b

3

46

11

5

0

pritesec retweeted

Nick Mykhailyshyn 🇺🇦

@whoareme33

3 days ago

I earned a $22,500 bounty from Airbnb using a custom Opus 4.7 workflow built with MCP and Skills. It feels like bug bounty hunting has changed forever

whoareme33's tweet photo. I earned a $22,500 bounty from Airbnb using a custom Opus 4.7 workflow built with MCP and Skills.

It feels like bug bounty hunting has changed forever https://t.co/oAnrfYVoUI

33

1K

52

627

62K

pritesec retweeted

nisarga

@ni5arga

13 days ago

I had hacked CBSE's OSM (On-Screen Marking Portal) in February and had reported the vulnerabilities to CERT-In, but they were unable to patch most of them. I've written a detailed blog post about it here: https://t.co/qyT23GkTEJ

218

5K

2K

1K

731K

pritesec retweeted

Behi

@Behi_Sec

13 days ago

Nice write-up! $148,337 RCE in Google Cloud Production. https://t.co/B3oLUlvojO

1

202

19

147

8K

Who to follow

streaak

@streaak

BBAC kidnapped me | I hack things, play video games and occasionally take photographs

Secuaudit

@Secuaudit

Hacker, Father and Founder

pritesec retweeted

13 days ago

🚨 BREAKING 🚨 Infamous Russian hacker and beatboxer exposes exactly how hackers got access to private GitHub repositories

128

8K

731

6K

736K

pritesec retweeted

TrendAI Zero Day Initiative

@thezdi

20 days ago

Aaaand it's official! Orange Tsai (@orange_8361) of DEVCORE Research Team chained 3 bugs to achieve Remote Code Execution as SYSTEM on Microsoft Exchange, earning a whooping $200,000 and 20 Master of Pwn points. Full win! #Pwn2Own #P2OBerlin

thezdi's tweet photo. Aaaand it's official! Orange Tsai (@orange_8361) of DEVCORE Research Team chained 3 bugs to achieve Remote Code Execution as SYSTEM on Microsoft Exchange, earning a whooping $200,000 and 20 Master of Pwn points. Full win! #Pwn2Own #P2OBerlin https://t.co/zIgluSn4ax

29

2K

183

142

264K

pritesec retweeted

NDevTK @ndevtk

27 days ago

Bug write-up for "Google AI Studio XSS" https://t.co/ubhArPvSl0 (ﾉ*･ω･)ﾉ

0

223

36

208

11K

Pritesh Mistry @pritesec

27 days ago

@BugBountyDEFCON @Romilpatel1988 @sho3hit

0

1

0

73

pritesec retweeted

Romil Patel @Romilpatel1988

28 days ago

@BugBountyDEFCON GET /fetch?url=http://127.0.0.1/hackthebox/vip-license HTTP/1.1 Host: https://t.co/91orOPiJgr X-Hacker-Friends: @cyberx00t @akshit_mokani @pritesec

0

4

1

277

pritesec retweeted

s1r1us (mohan)

@S1r1u5_

about 1 month ago

when react2shell hit last year, i think vercel handled it brilliantly. to protect their users, they paid $50,000 for every bypass researchers could find. we decided to participate, and ended up earning $170,000. read how we did it here: https://t.co/2dM6Mf9PHU

4

383

68

199

20K

pritesec retweeted

Bipin Jitiya @win3zz

about 1 month ago

You don't find luck. You collide with it by moving. In 2021, a hunter pulled a $50,000 bounty just by digging into an Electron app and checking what most people skip. Keep moving. Keep looking. Big bugs hide in unexpected places. Ref: https://t.co/sWlSUYjjgG

2

137

7

66

7K

pritesec retweeted

Pingiskok

@pingiskok

about 1 month ago

Every JWT writeup online covers 2–3 attacks and stops. I got tired of jumping between 40 blog posts, so I wrote the whole thing. All in one place. https://t.co/iCSzQ4GjcS #infosec #appsec #bugbounty #websec #jwt

pingiskok's tweet photo. Every JWT writeup online covers 2–3 attacks and stops.
I got tired of jumping between 40 blog posts, so I wrote the whole thing. All in one place.
https://t.co/iCSzQ4GjcS

#infosec #appsec #bugbounty #websec #jwt https://t.co/K04bRkEJ4Q

11

1K

267

1K

77K

pritesec retweeted

Shadan

@skshadan_

about 2 months ago

I just gave Claude Code a rooted Android phone… It autonomously reverse-engineered Subway Surfers, hooked the coin logic, bypassed the anti-cheat, and gave itself UNLIMITED coins in ONE session.

126

6K

379

3K

511K

pritesec retweeted

Anthropic

@AnthropicAI

about 2 months ago

Introducing Project Glasswing: an urgent initiative to help secure the world’s most critical software. It’s powered by our newest frontier model, Claude Mythos Preview, which can find software vulnerabilities better than all but the most skilled humans. https://t.co/NQ7IfEtYk7

2K

44K

7K

16K

31M

pritesec retweeted

null Ahmedabad (n|u Ahmedabad) @NullAhm

2 months ago

🔥Happening this Saturday at NULL Ahmedabad. How to actually find and report your first bug. Security of AI agents. P2P systems with live tools and demos. 📅 28 March | 10 AM RSVP now 👉 https://t.co/M6fmUTG8P8 @null0x00 @OreoB1scuit @imhardikrathod @amanverasia #nullAhm