Skip to content
Not sure if this is a coffee or cup of tea emoji
Not sure if this is a coffee or cup of tea emoji
  • Block or report user

    Report or block EdOverflow

    Hide content and notifications from this user.

    Learn more about blocking users

    Contact Support about this user’s behavior.

    Learn more about reporting abuse

    Report abuse
1.5k followers · 20 following · 193

Highlights

Organizations

@liberapay @securitytxt

Sponsors

@dwisiswant0 @tomnomnom

Sponsoring

@tomnomnom

Popular repositories

  1. bugbounty-cheatsheet

    A list of interesting payloads, tips and tricks for bug bounty hunters.

    2.5k 855

  2. can-i-take-over-xyz

    "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

    1.8k 325

  3. bugbountyguide

    Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.

    HTML 280 80

  4. megplus Archived

    Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

    Shell 255 85

  5. contact.sh

    An OSINT tool to find contacts in order to report security vulnerabilities.

    Shell 199 42

  6. proof-of-concepts

    A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.

    HTML 136 40

276 contributions in the last year

Jul Aug Sep Oct Nov Dec Jan Feb Mar Apr May Jun Mon Wed Fri
Learn how we count contributions.
Less
More
Activity overview
Contributed to securitytxt/securitytxt.org, GerbenJavado/LinkFinder, EdOverflow/csp and 5 other repositories

Contribution activity

June 2020

Created a pull request in projectdiscovery/nuclei-templates that received 1 comment

Add top-level directory check for security.txt

security.txt files can be placed under the top-level directory too. This commit adds a check for: https://example.com/security.txt

+1 −0 1 comment

Created an issue in liberapay/liberapay.com that received 2 comments

Implement k-anonymity for password-based sign up.

It would be nice to cross-check passwords in breaches during the sign-up and password-reset process. This is in similar vein to #1001: the goal bei…

2 comments
1 contribution in private repositories Jun 1

Seeing something unexpected? Take a look at the GitHub profile guide.

You can’t perform that action at this time.