Bug
Bounty
Hunter
Learning to hack
Learn about vulnerability types
Free Web Application Challenges
BARKER
BugBountyHunter Membership
Reading Material
Getting started in bug bounties
Disclosed HackerOne Reports
ZSeano's Methodology
Useful Guides for bug hunting
Effective Note Taking for bug bounties
Making use of JavaScript (.js) files
Using XAMPP to aid you in your hunt
Bug Bounty ToolKit
Finding bugs using WayBackMachine
Our members & events
Browse our hunters
Member Perk
Hackevents
Member Contributions
My methodology during Firstblood
— Contributed by
Jomar
My Hackevent Experience
— Contributed by
iBruteforce
Members Area
Choose vulnerability type
×
Cross Site Scripting (XSS)
Cross Site Request Forgery (CSRF)
Open Redirects (+Oauth flows)
Server Side Request Forgery (SSRF)
SQL Injection (SQLi)
Command Injection
Insecure Direct Object Reference (IDOR)
XML External Entity (XXE)
73
unique bugs discovered
65
reports accepted
pichik
Rank #16
—
Level 3
Total Submissions
: 65
65
accepted
0
rejected
10
bug chains
Active Hacking Time
:
10 days, 15 hours, 34 minutes and 40 seconds
HackerOne:
pichik
Intigriti:
pichik
BARKER Activity — pichik has started BARKER
134 times.
Active Hacking Hours & BARKER starts
Bug Submissions & total bug count
Hackevent Activity
Report Title
Severity
Editing other users appointments with IDOR
High
IDOR in aptid which grants access to every appointment
High
Info leak on reddit leads to create acc with admin privileges
High
Reflected XSS on register page
Medium
12000000
Respect Earnt
Disclosed HackerOne Reports 