Hackerone (2020-2025)

Reported high-impact bugs in top companies like Booking.com, Yahoo, Ripple, and Expedia. Specialized in IDOR, injection flaws, auth bypass, and privilege escalation. Earned 7K+ reputation, multiple Hall of Fame mentions, and bounties.

Bugcrowd (2020-2025)

Discovered critical bugs like SQLi, RCE, and broken access control in major programs. Reported vulnerabilities in top companies including FIS Global, Trello.com, and SpaceX. Consistently rewarded with bounties and program acknowledgments for impactful findings.

Synack (2023-2025)

As Red-Team Member Conducted in-depth testing for private clients, identifying critical vulnerabilities including XSS and subdomain takeovers. Helped secure enterprise environments by responsibly disclosing high-impact issues. Recognized for consistent performance and contribution to client security.

Intigriti (2020-2025)

I have been actively hunting on Intigriti since 2020. Over the years, I’ve gained significant knowledge and experience on this platform. While the number of available programs can sometimes feel limited, I’ve managed to find valuable bugs, including impactful ones like blind SQL injection and other noteworthy vulnerabilities.

YesWeHack (2021-2025)

Since 2021, I’ve also been hunting on YesWeHack. It’s a platform I truly enjoy, especially because of its fast payment process. Most of my findings here have been XSS, logic bypasses, and other interesting edge cases. The hunting experience on YesWeHack has always been engaging and rewarding.