Discover Hidden Web Vulnerabilities: Expert Bug Bounty Research

Discover Hidden Web Vulnerabilities: Expert Bug Bounty ResearchDiscover Hidden Web Vulnerabilities: Expert Bug Bounty Research

The network for creativity

Join 1.25M professional creatives like you

Connect with clients, get discovered, and run your business 100% commission-free

Creatives on Contra have earned over $150M and we are just getting started

Back to feedPost

Guilherme Farinassi

• Jun 8

Bug Bounty Research - Web Vulnerability Discovery

Conducted independent bug bounty research on public VDP and paid programs (Bugcrowd/HackerOne). Discovered and reported multiple valid vulnerabilities including IDOR exposing PII, stored XSS in user-controlled fields, SSRF via internal metadata endpoint, authentication bypass via JWT manipulation, and sensitive data exposure through misconfigured S3 buckets. Findings spanned government agencies, SaaS platforms, and financial services targets.

Documented all findings with full reproduction steps, CVSS scoring, and business impact analysis following responsible disclosure guidelines.

Cybersecurity Burp Suite Kali Linux Python

Praveen Kumar

max

• Jun 11

Build the website whose conversion rates are through the roof! Attracting Millions of organic traffic, all thanks to the well optimized SEO. The website is small and to the point when it comes to conversion. Meet Hex Security, a YC backed cybersecurity company.

Here's a small case study:

MD Rafee Alam

• Jun 11

The restrained approach for a cybersecurity brand makes sense. SEO-focused landing pages for YC companies tend to work best when the copy does the heavy lifting, not the visuals. Curious how the conversion rate compares before and after.

Sumit Joshi

pro

• Jun 11

Just cracked the top 5%🎉 Hopefully, I land a project soon on Contra and do contact me with any custom software/AI/Automation requirements you might have!