n1ghtm4r3.hashnode.devIDOR Fallout: Leaking 2 Million Sensitive Files with a Simple TrickWhen you see a public bug bounty program that has been running for over a decade, the assumption is usually that it's been picked completely clean. Every obvious endpoint has been hammered, and every 1d ago·8 min read
n1ghtm4r3.hashnode.devBug Bounty Cartel Stories - 1 Year Later“Can a man still be brave if he’s afraid?” “That is the only time a man can be brave.” — George R.R. Martin, A Game of Thrones. - This article was originally published on December 28, 2025, on my GitHub page. I’m republishing it here as part of the ...4d ago·13 min read
n1ghtm4r3.hashnode.devBug Bounty Cartel Stories - December EditionWelcome to the December Edition of the Bug Bounty Cartel Stories This month has been an incredible journey, filled with numerous challenges, valuable lessons, and, of course, a lot of bugs! From the 7th of last month to the 15th of this month, I deci...Dec 26, 2024·7 min read
n1ghtm4r3.hashnode.devBug Bounty Cartel Stories - November EditionIntroduction Time flies—it’s already been a month since the last edition! Welcome to the November edition of The Bug Bounty Cartel Stories. This month has been particularly rewarding for me as a bug hunter. In fact, it’s shaping up to be my best mont...Nov 26, 2024·9 min read
n1ghtm4r3.hashnode.devBug Bounty Cartel Stories – October EditionWelcome to the October Edition of the Bug Bounty Cartel Stories! This month has marked a transformative chapter in my bug bounty journey, brimming with invaluable lessons, challenges, and significant achievements. While I initially set out to provide...Oct 29, 2024·6 min read