Jason Haddix
Security Researcher and CISO @buddobot Father, hacker, educator, gamer, & nerd. exCitrix, exRedspin, exFortify, exHP, exBugcrowd, exUbisoft.
View on ๐Threads
๐งตAnother hacker story thread!๐งต === Penetrating a Porn Site === How I hacked access to the most sensitive areas of a porn site using only low severity vulnerabilities. Here's how...
๐งตFull-Time Bug Bounty Hunter thread ๐งต I'm looking for people to jump in and give me their perspectives. This is all speculative and in US hyper inflated markets. A Sr/Principle S...
A thread/tip for hackers/defenders/organizations. ๐งต โ ๏ธA commonly found vulnerability for organizations is credentials leaked on Github.โ ๏ธ Sometimes this can be from the organiza...
4/8/22 #bugbountydiary #bugbountytips Everyone is sick in the house but I had some running scans I needed to check up on. I found a SQL injection bug on a blog. Here's how I...
Another long (hacker) story thread ๐งต = Stealing checks worth millions & pwning a bank = Hereโs how I did it, so you can learn. I was once contracted to do a penetration test o...
(a LONG thread) ๐งต Inspired by @infosec_au & @hacker_ here's one of my fun hacker stories: = The complete compromise of a password manager company = Here's how I did it (so you...
#bugbountytips ๐งต 1/x Starting from almost scratch. Testing Environment: DO Ubuntu VPS, 2 vCPUs. 4GB mem / 60GB Disk, ($20/mo) This works for most general tasks. In most VPS i...