Joined November 2019
- Tweets 435
- Following 934
- Followers 903
- Likes 2,906
64 Photos and videos
Pinned Tweet
6 May 2024
Yay, I was awarded a $XX,XXX bounty on @Hacker0x01! hackerone.com/venom26 #TogetherWeHitHarder #Hackerone #Recon #Automation
13
3
101
11,607
May 29
Recon wins, what a crazyyy chain๐ซก๐ซก
Found a cool bug at Meta.
From misconfigured Grafana instance to R/W access on 507 private Meta repositories.
Wrote up the full chain here:
sectricity.com/blog/misconfiโฆ
$157k bounty awarded by @metabugbounty
8
1,365
May 25
70
Apr 30
Hi @KaiaChain
Need your kind attention. Kindly check dm or provide a contact to report a critical security issue affecting you ASAP :)
104
Apr 23
RT @ThisIsDK999: What happens when you can tamper with patient data in transit?
Episode 2 of Bytez by @Hacker0x01 India West Club dives intโฆ
1
35
Arpit Borawake retweeted
Dropping something cool for @Hacker0x01 India West Club members :))
2
2
31
1,801
Arpit Borawake retweeted
Apr 14
New write up: "I Came for the XSS, Stayed for the Police-Only Data"
Its technically nothing super fancy but I often think about what I saw there. Most bug bounty hunters wont learn a lot here but its somehow interesting whats out there.
argosdns.io/blog/i-came-for-โฆ
2
19
74
5,763
Apr 10
RT @damian_89_: Small bug bounty writeup from one of my findings from the past - even back then having a carefully crafted list of non resoโฆ
2
19
Arpit Borawake retweeted
Heyy @ELFiProtocol
There's a critical security vulnerability affecting your assets.
Please reach out ASAP or provide a channel for disclosure. Thanks :)
2
16
1,664
Arpit Borawake retweeted
Hey @wasabi_protocol
Need your kind attention. Kindly reach out or provide a contact to report a critical security issue affecting you ASAP :)
2
14
1,480
Arpit Borawake retweeted
omg stop with this shannon Paid PR posts.
1
1
9
1,400
Jan 6
I've witnessed his incredible journey up close, this talk is a must attend! ๐๐๐ค
Excited to share my talk onsite at @BSidesDehradun on 11 January 2026 โ diving into how recon evolves from simple text files to production-grade systems.
3
353
Arpit Borawake retweeted
25 Dec 2025
Your Kubernetes cluster exists because someone wanted Kubernetes on their resume. Not because you needed it.
116
384
6,697
250,829
Arpit Borawake retweeted
17 Dec 2025
๐ Introducing BYTEZ โ a Fireside Chat Series
BSides Indore ร India West HackerOne Club ๐ค
๐ Speaker: Sudip Shah (@kn1ght_yagami)
Security researcher, Facebook Bug Bounty contributor
๐ง Hosts: @ThisIsDK999 & @_venom26
๐
Dec 20
Join Discord ๐
discord.gg/s5gkWGe9
#Bytez
2
4
587
16 Dec 2025
Lot of cool stuff going on here, join ASAP๐๐
16 Dec 2025
As part of our efforts at @Hacker0x01 India West Club, weโre launching Bytez โ a fireside chat series on security & real-world impact.
Inaugural guest: @kn1ght_yagami , known for deep Facebook Bug Bounty research across complex business logic, and high-impact disclosures.
Join the Discord for updates ๐
discord.gg/s5gkWGe9
1
9
996
28 Nov 2025
Looks like I will need a new server soon๐๐๐
3
1
16
1,548
27 Nov 2025
Collab is the ๐๏ธ
27 Nov 2025
boss, if you're passionate enough, you'll find your own path.
@sudhanshur705 has his own niche and I'm jealous of his mind
@_venom26 has his super recon
@XHackerx007 I'm blown away by his exploits.
Each hacker is different, and they create beautiful things in their own way :)
9
1,944
18 Nov 2025
Must watch, what an episode๐ฅ๐ฅ
18 Nov 2025
I talked a bit on BugBounties, Collaboration, AEMs and Burnout with @AseemShrey
Go check it out!
youtube.com/watch?v=VaqIH1GPโฆ
8
704
Arpit Borawake retweeted
18 Nov 2025
I talked a bit on BugBounties, Collaboration, AEMs and Burnout with @AseemShrey
Go check it out!
youtube.com/watch?v=VaqIH1GPโฆ
4
13
81
7,405
11 Nov 2025
Great article ๐๐
My article "High-Performance Network Scanning with AF_XDP" has been released on the 72th issue of Phrack.
phrack.org/issues/72/3_md#scโฆ
4
381
11 Nov 2025
๐
DNS hijacking is close to impossible these days because browsers verify HTTPS certificates, and reject if the SSL cert doesn't match
They can't generate a proper fake SSL cert without compromising a CA (certificate authority)
HTTPS is extremely safe because it's encrypted even on untrusted WiFi
Worst that can happen is NSA has a backdoor in the encryption standards and the US gov can read what you do (probably)
1
347