Skip to content
Avatar
I swear there was an XSS somewhere around here...
I swear there was an XSS somewhere around here...
2.7k followers · 22 following

Sponsors

@tomnomnom
@pondim
@codingo
@projectdiscovery

Achievements

Achievement: QuickdrawAchievement: Starstruckx4Achievement: Arctic Code Vault ContributorAchievement: Public SponsorAchievement: Pull Sharkx3
BetaSend feedback

Achievements

Achievement: QuickdrawAchievement: Starstruckx4Achievement: Arctic Code Vault ContributorAchievement: Public SponsorAchievement: Pull Sharkx3
BetaSend feedback

Highlights

Organizations

@liberapay @securitytxt
Block or Report

Block or report EdOverflow

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
EdOverflow/README.md

Logo

Hi 👋

I am a web designer, developer, security researcher, and have experience triaging for numerous vulnerability disclosure programs.

In 2016, I joined Gratipay's Blue Team where I operated their bug bounty programme. Subsequently, in 2018, I joined HackerOne as a Security Analyst. While at HackerOne, I had the privilege of triaging in-person alongside organisations such as: GitHub, Salesforce, and the United States Marine Corps.

In 2017, I published an Internet Draft for a proposed standard which allows websites to define security policies called security.txt. A year later, I created Bug Bounty Guide, a launchpad for bug bounty programs and bug bounty hunters.

edoverflow.com@EdOverflow

Pinned

  1. securitytxt/security-txt Public

    A proposed standard that allows websites to define security policies.

    HTML 1.6k 76

  2. can-i-take-over-xyz Public

    "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

    3.4k 584

  3. contact.sh Public

    An OSINT tool to find contacts in order to report security vulnerabilities.

    Shell 240 44

  4. legal-bug-bounty Public

    #legalbugbounty project — creating safe harbors on bug bounty programs and vulnerability disclosure programs. Authored by Amit Elazari.

    50 20

  5. securitytxt/securitytxt.org Public

    Static website for security.txt.

    HTML 54 36

573 contributions in the last year

Nov Dec Jan Feb Mar Apr May Jun Jul Aug Sep Oct Mon Wed Fri
Learn how we count contributions
Less More
Activity overview
Contributed to UWSWP/uwswp.co.uk, securitytxt/securitytxt.org, EdOverflow/can-i-take-over-xyz and 8 other repositories

Contribution activity

October 2022

Created 8 commits in 2 repositories
12 contributions in private repositories Oct 3 – Oct 20

Seeing something unexpected? Take a look at the GitHub profile guide.