JR0ch17 Profile Banner
Jasmin Landry Profile
Jasmin Landry

@JR0ch17

Followers
9K
Following
7K
Statuses
749

Bug Bounty Hunter

Montréal, Québec
Joined June 2016
Don't wanna be here? Send us removal request.
@JR0ch17
Jasmin Landry
26 days
@actuallyclover @rez0__ HTTP Parameter Pollution!
1
0
4
@JR0ch17
Jasmin Landry
26 days
Really a fun bug to work on! Here’s what our day looked like 😂
Tweet media one
@rez0__
Joseph Thacker
26 days
Wowww! I found a sick bug for my first day full time hacking. 😱 Aptly, it includes prompt injection: CSRF -> Path Traversal -> access to internal chatbot -> HPP -> prompt injection -> AI outputs XSS which pops on the victim. Shoutout to @JR0ch17 for the collab!
5
0
40
@JR0ch17
Jasmin Landry
1 month
@ArchAngelDDay Got my first crit of the year in shortly after you 😃 Happy New Years!
Tweet media one
1
0
58
@JR0ch17
Jasmin Landry
2 months
116 total reports, including 19 criticals! Let’s hope those numbers improve in 2025 as I’ll be doing bug bounty full time! @Rhynorater looks like I’ll be roaming around in the savanna with you 🦁
1
0
31
@JR0ch17
Jasmin Landry
2 months
When you spend that extra time looking at JS code related to the app's auth flow and see this 🤦‍♂️
Tweet media one
3
2
96
@JR0ch17
Jasmin Landry
3 months
@nbk_2000 @ArchAngelDDay I want to see that!
0
0
2
@JR0ch17
Jasmin Landry
3 months
@ajxchapman 😳 who thought that was a good idea? 😅
0
0
3
@JR0ch17
Jasmin Landry
4 months
@mijanhaque_ Just trying typical injections to see how the app reacts and then confirming whether an injection exists or not
0
0
0
@JR0ch17
Jasmin Landry
4 months
@ilhamdn23 Payload will be different every time
0
0
2
@JR0ch17
Jasmin Landry
4 months
@_StaticFlow_ Fringe target! Still fun to see in 2024 though lol
1
0
1
@JR0ch17
Jasmin Landry
4 months
🔥 Looking forward to next round! 🇨🇦#TeamCanada
@SebMorin1
Sébastien Morin
4 months
🇨🇦 GO CANADA 🇨🇦! We’ve made it to the Sweet Sixteen in #AWC2024! 🎉🍁 A huge shoutout to @Hacker0x01 for this amazing event! Good job team and let’s keep the momentum going 🏆🚀 #TeamCanada #BugBounty
Tweet media one
1
0
23
@JR0ch17
Jasmin Landry
4 months
RT @Hacker0x01: "What keeps me on programs is the interaction with the people. Good communication, access to unique scopes, setting campaig…
0
3
0
@JR0ch17
Jasmin Landry
7 months
@rez0__ How about a sport like hockey where fighting is allowed? lol
0
0
1
@JR0ch17
Jasmin Landry
7 months
@ArchAngelDDay Nice! Haven’t had one of those in a very long time!!!
0
0
1
@JR0ch17
Jasmin Landry
8 months
This made me remember an ATO bug I found a few years ago. The app used perl's crypt function as the token generator for password resets, here's the docs for it You'll quickly notice the problem with it 😂 Or I guess the real problem was that the app was built on perl!
@albinowax
James Kettle
8 months
Just discovered "Reset Tolkien" , a shiny new tool from @AethliosIK for cracking time-based secret tokens with the sandwich attack. Random-looking tokens can contain so many flaws, it's great to see more eyes on this area.
0
1
12
@JR0ch17
Jasmin Landry
8 months
My son watching something on YouTube and he’s like “Dad, the guy in the third picture looks like you” 😂😂
Tweet media one
@tabaahi_
Mohsin Khan 🇮🇳
3 years
@JR0ch17 Looking great. You look like Lionel Messi. If he hits the guy and eats more he will look the same.
2
0
17
@JR0ch17
Jasmin Landry
10 months
RT @Bugcrowd: 19 questions @JR0ch17 asks himself when looking through requests in order to identify and document potential vulnerabilities:…
0
24
0
@JR0ch17
Jasmin Landry
10 months
@Masonhck3571 @wld_basha I’m open to suggestions 😂
2
0
1
@JR0ch17
Jasmin Landry
10 months
@Masonhck3571 @wld_basha Damn I had not seen that!
1
0
1