Me and Paulo Silva wrote a simple golang tool to check full disclosures on HackerOne. Why? You can filter the results You can see ALL […]
BSides Lisbon – The way of the bounty
Hey guys for those who want to download my presentation at BSides Lisbon you can do it right here. Also you can watch the 50min […]
OLX and Adobe full-disclosures on HackerOne
OLX Stored XSS https://hackerone.com/reports/152069 Adobe Reflected XSS https://hackerone.com/reports/50389 I asked for full-disclosure of this reports so other users can learn something from it. The OLX […]
BSides Lisbon 2016
Guys I’ll be a speaker at BSides Lisbon 2016 with the talk – “The way of the bounty”. If you want to know some of […]
Latest work done
Just to give a small update on my work… I’ve been more active on my Twitter account so follow me to get the latest updates […]
Hey vendors, researchers are here to help
Yesterday I was exchanging some messages on Twitter – specially with Kymberlee Price (from BugCrowd) – about the relationship between vendors and security researchers when […]
Should bug hunters provide real personal data on bug appreciation programs?
That’s a question that sometimes comes in mind of many “hunters”. Personally in most cases, when I participate on these programs, I use fake information […]
Free online tools to help your #bugbounty
I’m getting a few emails asking some tips on how to get some bounties. Because I like to help others and I’m a share knowledge […]
A tip for bug hunters – Sell your service
As a bug hunter at Cobalt, HackerOne and BugCrowd I always try do my best to give programs the best information needed to understand the […]
Bounty ChitChat canceled
Why? I forgot that’s my grandmother birthday. I could lie and tell something technical or something, but no… It’s true 🙂 I’ll try to post […]