Here's my writeup on my finding.😄 Issue: Facebook email disclosure and account takeover #bugbounty #bugbountytips #facebookbugbounty

@deephunt3r great, happy you were able to find something fruitful

@CristiVlad25 pentesters are safe, triagers might get replaced with agents tho

@datph4m h1 meditation is a joke it’s always company they’ll side with

🏆 Top web hacking techniques of 2024 are live 2 of my findings have been nominated 🏅 > Authorization bypass due to cache misconfiguration > Zendesk 0 day if you loved any of my findings do give it a vote 🙌 more writeups coming #bugbounty #bugbountytips

@val_brux @Hacker0x01 a report being "more detailed" is a subjective. Priority should be given to the original reporter, subsequent report could be paid bonus if additional impact was provided.

@pranshux0x congrats bro🤌

@ArmanSameer95 @Bugcrowd @elmehdimee @Ebrietas0 @ArmanSameer95 congrats brother, more to come 🙌

@05__Yash @Hacker0x01 congrats bro, more to come in 25🙌

@NahamSec @Meta facebook desktop rce🫣

@_godiego__ @Hacker0x01 @GoogleVRP @yeswehack @Bugcrowd

@_jensec @Hacker0x01 would be interesting to see a bug category breakdown. same types for 5 years or gradual pivot with time,hmm🧐

@thedawgyg facebook has device based recovery that usually allows you to recover your hacked account. Try it with “can’t reset option” or DM

@0xMstar @Bugcrowd top as always 🤌

@Assass1nmarcos @Hacker0x01 @intigriti @yeswehack @intigriti and @Bugcrowd have good support team and even do followups with h1 it’s harder to get reply on initial ticket itself

@HarshDRanjan1 @Hacker0x01 true, plus they auto close the tickets with no reply 🤷

@nischalxd @Hacker0x01 mediation is dead

@hetmehtaa @payloadartist interesting 😯

@Tinymimixx @payloadartist i simply mean creating your organization. ex: in github you can create your own organization, “minixOrg” i can create my own organization “rkshOrg” i can then link my okta with my organization

@alicanact60 amazing stats🔥