d0nut 🦀 @d0nutptr Twitter profile

Pinned Tweet

d0nut 🦀

@d0nutptr

2 years

Dacquiri: A compile-time authorization framework in #rustlang Multi -🧵

2

23

129

Last Seen Profiles

@mama_ayaka0413

@PeskyMestem

@yazy_b

@ItazuraGenki1

@tubas_csgo

@Ldms91__

@CHIP_pros

@Iris_Capital

@stwmaniax

@LitCoh

@hmadh_alshaf

@bokeplokalmalam

@boysoffallband

@pefrilaku

@stw_pdg

@BitTowne

@paulatejantos

@e6JKJCfc3E70459

@Maelys_cmv

@liloml3

@hmadh_alshaf

@LeakedPin

@stkmaAkita

@tyougoukin_mze

@saxofoncho

@bokeplokalmalam

@SciTechgovuk

@NashbP

@mahoako_anime

@salbmmh86701320

@LilithSolinha

@RealHauleGluck

@ClaudiFormosa

@bennevert

@ClaudiaE1782

@MianPeeri

d0nut 🦀

@d0nutptr

1 year

Theo - t3.gg

@t3dotgg

1 year

Gonna start judging startups by if they pick us-east-1 or us-west-2

57

12

559

27

298

3K

d0nut 🦀

@d0nutptr

9 months

I'm freezing my ass off on this flight and they don't have any blankets. Im about to improvize.

17

64

1K

d0nut 🦀

@d0nutptr

2 years

This is absolutely insane

25

260

1K

d0nut 🦀

@d0nutptr

10 months

I’m happy to announce that my partner of 8 years and I are officially engaged :)

93

4

762

d0nut 🦀

@d0nutptr

7 months

This might be my first negative bounty. I ended up paying $13.50 to buy swag from the company's swag store after they gave me a discount code for reporting a bug to them.

15

746

d0nut 🦀

@d0nutptr

5 years

Discord: best company

Discord

@discord

5 years

An update from us regarding COVID-19:

4K

45K

252K

1

40

688

d0nut 🦀

@d0nutptr

3 years

12

77

677

d0nut 🦀

@d0nutptr

11 months

I’m BEGGING bug bounty hunters to actually learn security rather than trying to figure out the fastest way to print money

curl disclosed on HackerOne: [Critical] Curl CVE-2023-38545...

## Summary: Curl CVE-2023-38545 vulnerability code changes are disclosed on the internet ## Steps To Reproduce: To replicate the issue, I have searched in the Bard about this vulnerability. It...

hackerone.com

27

68

603

d0nut 🦀

@d0nutptr

5 years

Hey bug hunters! Want a look at some of the top vulnerabilities ever found on @Dropbox ? They just released the last blog post I wrote before leaving. Enjoy! #bugbountytips

3

215

599

d0nut 🦀

@d0nutptr

2 years

how to decode base64 #bugbountytips

38

37

507

d0nut 🦀

@d0nutptr

3 years

If you want to remain blissful while writing Go or Python, don’t learn Rust.

25

26

457

d0nut 🦀

@d0nutptr

5 years

Here it is! My blog post on Sequential Import Chaining (and tool: ) #bugbountytip #security

GitHub - d0nutptr/sic: A tool to perform Sequential Import Chaining

A tool to perform Sequential Import Chaining. Contribute to d0nutptr/sic development by creating an account on GitHub.

github.com

14

205

451

d0nut 🦀

@d0nutptr

7 months

pov: your mental health is tied to productivity

12

92

446

d0nut 🦀

@d0nutptr

4 years

pog

24

21

369

d0nut 🦀

@d0nutptr

4 years

Ever wanted your own copy of Burp Suite Professional? This Saturday at 11:00am PST (6:00pm UTC) I'll be unveiling the d0nut 10K Challenge! The first person to solve the challenge will receive a 1 year Burp Suite Professional license. Stay tuned. #bugbounty #security

13

54

334

d0nut 🦀

@d0nutptr

5 years

If example[.]com points to IP 1.2.3.4 and redirect to www[.]example[.]com but www[.]example[.]com doesn't point to anything (No A, AAAA, CNAME), try submitting your HTTP request to http://1.2.3.4/ with a "HOST: www[.]example[.]com" header. #bugbountytip #bugbountytips

3

96

331

d0nut 🦀

@d0nutptr

2 years

Im so sick and tired of meetings. There is no way meetings are this valuable to productivity. When are you *actually* supposed to do anything??? The weekend???

31

14

306

d0nut 🦀

@d0nutptr

4 years

If you don't feel like you understand the attack flow for an oauth CSRF, I made this diagram earlier while explaining part of it to someone. (In this case, the bug was that the state parameter was valid if it existed for *any* user). #bugbountytip #AppSec #bugbountytips

4

107

298

d0nut 🦀

@d0nutptr

3 years

In my opinion, if you're trying to get into bug bounties for web applications your first step is to learn how to build sites, not break them. It will pay off so much more in terms of your ability to find bugs and you'll actually understand what you're doing this way.

15

35

296

d0nut 🦀

@d0nutptr

2 years

This was me 10 years ago today at my first internship as a Software Developer on the Android team. And yea.. I know... I was a dweeb, lol

20

6

282

d0nut 🦀

@d0nutptr

5 years

Hey new bug hunters. Welcome to this fun, growing part of security. Before you send a dm asking for help, please google your questions. I, and others, are tired of receiving your copy+paste googleable questions. If you're not able to google at this stage, you will fail.

14

36

282

d0nut 🦀

@d0nutptr

8 months

I earned $20,000 for my submission on @bugcrowd #ItTakesACrowd

d0nut on Bugcrowd

View d0nut’s researcher profile on Bugcrowd, a platform and team of experts connecting organizations to a global crowd of trusted security researchers.

bugcrowd.com

27

8

285

d0nut 🦀

@d0nutptr

16 days

If you're new to bug bounty, you should not learn recon.

31

30

279

d0nut 🦀

@d0nutptr

3 years

Here's armada taking Apple's /8 down in 44 seconds.

10

54

270

d0nut 🦀

@d0nutptr

4 years

The d0nut 10k Challenge starts in 3... 2... 1... GO!!! I'll release a hint every 50 likes (or when I'm feeling generous :P)! Now go forth and win that Burp Suite Pro license. #bugbounty #security

6

44

267

d0nut 🦀

@d0nutptr

1 year

A sad realization that took me until last year to learn: You’re seldom rewarded for working hard and long hours, but rather for working on the *right* high impact work. Promotions and perf are easier to sell with a couple of notable projects, rather than countless smaller ones

11

24

261

d0nut 🦀

@d0nutptr

3 years

Introducing ripgen - A rust-based version of the popular dnsgen python utility by myself and @iustinBB .

12

49

257

d0nut 🦀

@d0nutptr

3 years

6

30

254

d0nut 🦀

@d0nutptr

1 year

I finally released my blog post on how I configured my Rust project to build quickly, deploy simply, and reliably test my code in environments outside of production. #rustlang #docker @hashnode

Entering the Garden of Ferris

A Better Rust Development Experience Using Cache Mounts and Garden

d0nut.hashnode.dev

8

37

256

d0nut 🦀

@d0nutptr

5 years

9

15

245

d0nut 🦀

@d0nutptr

3 years

GitHub - resyncgg/armada: A high performance TCP SYN port scanner.

A high performance TCP SYN port scanner. Contribute to resyncgg/armada development by creating an account on GitHub.

github.com

12

83

228

d0nut 🦀

@d0nutptr

3 years

id_rsa should really be id_rsa.private

10

14

211

d0nut 🦀

@d0nutptr

5 years

I guess it’s a good a time as any to officially announce that I'll be joining @Cruise to work on their incredible offensive security team. I’m super excited :D

28

3

212

d0nut 🦀

@d0nutptr

3 years

IT ARRIVED (Custom laser fab with 1008 steel. It’s 1/8” and about 20lbs (~9kg))

17

7

208

d0nut 🦀

@d0nutptr

5 years

Would y'all bug hunters want to see a live stream on the details of how OAuth works? (could be 1, 1a, or 2, or even some of the add-ons) I feel like y'all need to learn this stuff.

26

11

207

d0nut 🦀

@d0nutptr

5 years

Hey everyone! This Tuesday, October 15th, will be my last day at @Dropbox ! It's been a really amazing 2 years and I truly am sad to go but it's time for me to move onto new challenges that align more with my current interests. Thanks to everyone that made work amazing :)

14

0

209

d0nut 🦀

@d0nutptr

4 years

Meanwhile the bug bounty community commonly recommends using the @DeptofDefense bug bounty program as practice before moving onto hardened targets.

12

31

191

d0nut 🦀

@d0nutptr

4 years

Piercing the Veal: Short Stories to Read with Friends New blog post! I was asked to write about some of the SSRFs I've found in the past so I've done just that! I'm pretty excited about this as it's my longest work yet. #BugBountyTip #infosec

Piercing the Veal: Short Stories to Read with Friends

Every idea needs a Medium

link.medium.com

5

59

187

d0nut 🦀

@d0nutptr

2 years

Pray for me. I’m attempting to format a 30MB json file.

15

2

180

d0nut 🦀

@d0nutptr

4 years

Sadly today will be my last day at @Cruise . Despite learning so much about the offsec role, having plenty of good times, and working with smart people I've decided to move on to a more engineering focused role at @GraplSec ! Thanks to everyone at Cruise that made it special :)

23

3

185

d0nut 🦀

@d0nutptr

4 years

Interested in learning about Android app exploitation? Tomorrow at 2:30 PST I'll be streaming myself reverse engineering an android app (with the first vulnerability I ever found) and writing an exploit to attack it. See you there! #bugbountytips

d0nutptr - Twitch

I'm a bug hunter, security engineer, and rust programming enthusiast who's found vulnerabilities in Uber, Duckduckgo, The Department of Defense, and many more! Join me as I build tools for hackers,...

www.twitch.tv

5

29

180

d0nut 🦀

@d0nutptr

4 years

Yay, I was awarded a $900 bounty on @Hacker0x01 ! #TogetherWeHitHarder This was for the SSRF on email signup I wrote about ().

Piercing the Veal: Short Stories to Read with Friends

It’s been over a year and a half since I’ve started my bug bounty journey as a hacker. With years of experience triaging reports and…

d0nut.medium.com

8

45

175

d0nut 🦀

@d0nutptr

2 years

@Komaniecki_R "F minor", eh? Given the church's history, that tracks.

4

167

d0nut 🦀

@d0nutptr

2 years

I'm shooting for staff this year. I'm 27. I also bust my fucking ass every god damn day learning as much as I can and have been working in tech since highschool. It's not a crazy idea.

22

2

174

d0nut 🦀

@d0nutptr

3 years

One of the SSRFs I found recently was paid out today! My friend submitted it since we were collaborating on the target together. Pretty proud of this one as it had a lot of impact. $3k program max.

8

6

175

d0nut 🦀

@d0nutptr

6 years

CSS Injection Blog Post with @NahamSec and @bbuerhaus :D

7

83

170

d0nut 🦀

@d0nutptr

4 years

My mood went from "meh" to "top of the world" over the course of 20 minutes. Hacking is a drug.

5

10

168

d0nut 🦀

@d0nutptr

7 months

My second CVE!!! CVE-2024-2048

HCSEC-2024-05 - Vault Cert Auth Method Did Not Correctly Validate Non-CA Certificates

Bulletin ID: HCSEC-2024-05 Affected Products / Versions: Vault and Vault Enterprise up to 1.15.4, 1.14.9; fixed in 1.15.5 and 1.14.10. Publication Date: March 4, 2024 Summary Vault and Vault Enterp...

discuss.hashicorp.com

d0nut 🦀

@d0nutptr

7 months

it's real fucking bullshit that hashicorp doesn't pay bounties. wasted all this time and gonna get nothing 😒

3

1

53

7

11

165

d0nut 🦀

@d0nutptr

3 years

Do you ever get those moments where you sit there and think "I have no idea what I'm actually good at"?

22

4

159

d0nut 🦀

@d0nutptr

7 months

Yay, I was awarded a $5,300 bounty on @Hacker0x01 ! #TogetherWeHitHarder Found a vulnerability in a widely used (>1mil / week downloads) open source security library.

HackerOne profile - d0nut

If it pays, it stays. -

hackerone.com

9

4

161

d0nut 🦀

@d0nutptr

4 years

Dropping a cool wordlist

It’s a golang wordlist made from 500 very popular golang repositories containing http endpoints pulled from invocations of HandleFunc. Reason for sharing: This list is 30x larger than the seclist...

forum.bugcrowd.com

3

37

156

d0nut 🦀

@d0nutptr

10 months

I earned $5,000 for my submission on @bugcrowd #ItTakesACrowd Max critical payout :)

d0nut on Bugcrowd

View d0nut’s researcher profile on Bugcrowd, a platform and team of experts connecting organizations to a global crowd of trusted security researchers.

bugcrowd.com

14

1

161

d0nut 🦀

@d0nutptr

5 years

As I promised, here's my new blog post: Attacks on Applications of K-Anonymity - For the Rest of Us! Special thanks to @jackhcable @nbk_2000 @hxnyk @KarimPwnz @0xacb @spaceraccoonsec and Rephlexsion from @NahamSec 's discord for reviewing the post.

4

65

152

d0nut 🦀

@d0nutptr

3 years

Remember: If the bug bounty program says it needs a VPN, you need a new program.

12

8

153

d0nut 🦀

@d0nutptr

5 years

IN THIS HOUSE WE DROP FAT CRITS. Yay, I was awarded a $4,000 bounty on @Hacker0x01 ! #TogetherWeHitHarder

HackerOne profile - d0nut

If it pays, it stays. -

hackerone.com

14

8

150

d0nut 🦀

@d0nutptr

1 year

holy shit.. this dude got served in the middle of his intro to database systems class 😂

✂️ you've been served

60 seconds · Clipped by Nathanial Lattimer · Original video "21 - Introduction to Distributed Databases (CMU Intro to Database Systems / Fall 2022)" by CMU D...

www.youtube.com

9

7

151

d0nut 🦀

@d0nutptr

2 years

I apparently make 100% dude-only content.

14

0

151

d0nut 🦀

@d0nutptr

1 year

Oh this is really really disappointing :/ I thought I really had something innovative both for security and rust.

22

3

152

d0nut 🦀

@d0nutptr

2 years

Yay, I was awarded a $1,200 bounty on @Hacker0x01 ! #TogetherWeHitHarder —— The vuln was an auth bypass I found 5 minutes after waking up using only my phone. No tools necessary :D Definitely the laziest bug I found

HackerOne profile - d0nut

If it pays, it stays. -

hackerone.com

10

3

145

d0nut 🦀

@d0nutptr

6 years

@FGRibreau How Google must feel right now

0

1

144

d0nut 🦀

@d0nutptr

10 months

Entirely unrelated to the news earlier today 😅 I also got my first CVE! I usually hack on SaaS bug bounty targets, so I’ve never received a CVE before. I don’t really give the idea of “number of CVEs” much credence but I’m glad I can say I’ve got one now! CVE-2023-6708

9

6

143

d0nut 🦀

@d0nutptr

2 years

I'm 1000% sold on copilot now. You were all correct.

11

4

140

d0nut 🦀

@d0nutptr

1 year

sorry @trashh_dev

4

5

139

d0nut 🦀

@d0nutptr

3 years

Thought that was fast? Nah. THIS is fast. /16, 5 ports, 3 attempts each port. In 2 seconds.

d0nut 🦀

@d0nutptr

3 years

Armada CLI client demo

6

11

90

9

22

140

d0nut 🦀

@d0nutptr

2 years

what the hell happened last night

16

1

139

d0nut 🦀

@d0nutptr

4 years

This is the first time I've ever had blue team catch me while bug hunting. What a wild experience.

11

3

136

d0nut 🦀

@d0nutptr

3 years

It was fairly difficult getting back into writing, but with the help of a couple of awesome reviewers I've finally released my latest blog post: Eliminating Authorization Vulnerabilities with Dacquiri

Eliminating Authorization Vulnerabilities with Dacquiri

Dacquiri identifies and eliminates authorization vulnerabilities by turning them into compiler errors.

d0nut.medium.com

4

36

136

d0nut 🦀

@d0nutptr

3 years

Rust programmers be like

1

6

132

d0nut 🦀

@d0nutptr

2 years

I'm beyond happy to announce that Dacquiri 0.5.0-rc1 is officially released! 🎉 🥳 🎉 If you're a fan of #rustlang and #security , check dacquiri out! Here are some of the highlights of this update:

2

17

135

d0nut 🦀

@d0nutptr

3 years

1

9

136

d0nut 🦀

@d0nutptr

6 years

Holy shit I think i just invented a new exploitation technique for a type of vulnerability. After the #h165 event I'll do a write up on how to do it and share the tool you'll need to do it.

3

2

131

d0nut 🦀

@d0nutptr

5 years

Just found out that I’m the number one hacker on a @Hacker0x01 private program that I really enjoyed. feelsgoodman.jpg

8

4

127

d0nut 🦀

@d0nutptr

4 years

Have you ever talked to someone and afterwards think for the rest of the day: “Damn, I’m definitely dumb”.

9

6

129

d0nut 🦀

@d0nutptr

4 years

Thanks to all 10,000 of you for helping me finally hit 10k followers. It’s been a fantastic experience getting to educate and entertain so many. I was trying to have something prepared to release the moment I hit 10k, but you’ll have to wait until this weekend. Stay tuned.

10

3

127

d0nut 🦀

@d0nutptr

2 years

Are you a real developer if you haven’t caused an outage?

25

14

124

d0nut 🦀

@d0nutptr

2 years

I just learned about @davidtolnay 's "Rust Quiz" and it is HUMBLING. I've only answered 4 questions correctly so far (no hints! but definitely multiple attempts xD)

Rust Quiz

What is the output of this Rust program?

dtolnay.github.io

10

29

128

d0nut 🦀

@d0nutptr

4 months

Finally living my dream of reading on the beach

18

1

126

d0nut 🦀

@d0nutptr

3 years

My chair finally arrived and it is genuinely so comfortable I could sleep in it

9

0

125

d0nut 🦀

@d0nutptr

7 months

I don't understand why bug hunters never listen to me when I tell them this. Maybe they'll listen to a much more esteemed hacker than myself. Learn to build, then learn to break

Corben Leo

@hacker_

7 months

Understanding how systems work is a competitive advantage as a hacker. How do you get to this point? Build. Code a complex, modern application that relies on: -> a database -> caching/memory-store (redis) -> message broker (rabbitmq) etc. Deploy it. #typefully

5

37

346

8

9

124

d0nut 🦀

@d0nutptr

3 years

Rip bug hunters

Sara Fischer

@sarafischer

3 years

🚨Verizon sells Yahoo and AOL to private equity firm for $5 billion

20

87

183

5

9

123

d0nut 🦀

@d0nutptr

2 years

Spent today working on a library for a problem that someone in a forum complained that they could only process 100k entries per hour. My initial solution in Rust: 360k/hr Further iteration: 2.9m/hr Current version: 72.7m/hr Here's my connection 100% maxed out

7

6

119

d0nut 🦀

@d0nutptr

5 years

Yay, I was awarded a $3,000 bounty on @Hacker0x01 ! #TogetherWeHitHarder

HackerOne profile - d0nut

If it pays, it stays. -

hackerone.com

6

3

119

d0nut 🦀

@d0nutptr

4 years

Almost done with moving and I can already tell I’m going to be much happier here :)

7

0

122

d0nut 🦀

@d0nutptr

7 months

My favorite part of finding this bug

d0nut 🦀

@d0nutptr

7 months

Yay, I was awarded a $5,300 bounty on @Hacker0x01 ! #TogetherWeHitHarder Found a vulnerability in a widely used (>1mil / week downloads) open source security library.

9

4

161

2

4

122

d0nut 🦀

@d0nutptr

5 years

@LisaLeysen @rj_gallagher @eelcobvr @business @bopinion It’s 100% factually incorrect.

1

110

d0nut 🦀

@d0nutptr

5 years

AHHHHHHHHHHHHH ODNGSISTDUEBTNOESEHRKEOSIGRVRKRVTCY UNRL DYDHE MY FIRST EVER CFP WAS ACCEPTED

14

0

120

d0nut 🦀

@d0nutptr

8 months

Yay, I was awarded a $2,000 bounty (was a fun collab with @NahamSec ) on @Hacker0x01 ! #TogetherWeHitHarder

HackerOne profile - d0nut

If it pays, it stays. -

hackerone.com

4

120

d0nut 🦀

@d0nutptr

7 years

@phil_b_reed @tarah @hacks4pancakes @MalwareTechBlog @matthiasr Chillin' out, patching, hacking all cool Reversing engineering code written by some fool

2

14

113

d0nut 🦀

@d0nutptr

3 years

Final photo before I applied a clear coat. Next step: hang it up! #rustlang

6

10

114

d0nut 🦀

@d0nutptr

5 years

What was the first vulnerability you exploited? (Can be from a Bug bounty, CTF, DVWA, etc) I think mine was Weiner’s Attack against RSA for PicoCTF.

84

10

109

d0nut 🦀

@d0nutptr

5 years

I FUCKING LOVE SSRF HOLY SHIT THANK YOU @awscloud

6

10

115

d0nut 🦀

@d0nutptr

6 years

Just thought of this really cool #bugbountytip when talking with @0xACB today. If you're testing for XSS on a site with a CSP, use burp's find+replace on the CSP reporting uri to point to a burp collaborator instance so you don't have to monitor dev tools for csp exceptions.

2

35

115

d0nut 🦀

@d0nutptr

1 year

Do any of you have recommendations on how to improve in communication clarity and succinctness? I'm so fucking tired of being misunderstood and misquoted in conversations. This happens both at work and in my personal life and it feels like I'm being gaslight constantly.

43

4

112

d0nut 🦀

@d0nutptr

3 years

Did github just shit the bed for anyone else?

21

6

111

d0nut 🦀

@d0nutptr

3 years

“I don’t want to write any code - even one line is too many.” - @chompie1337

3

9

112

d0nut 🦀

@d0nutptr

5 years

My partner showed me the new security humble bundle and then, unprompted, told me that I'd be a shill if I did a give away. Like and follow for your chance to get a free humble bundle gift of $15. I'll pick the winner tomorrow 9pm PST.