About me

Discord: cyanidee.

Email: admin@cyanide.net

Bounties & honorable mentions:

• Found zero day vulnerability in XenForo (Jan, 2025)

• Verified by XenForo team (Mar, 2025)

pika-network.net, jartex-network.net

• SQL injection (2021)

• Hidden virtual host and bypassing CloudFlare firewall with warp (2025) ($250 bounty reward)

Banknorwegian

• Cross site scripting (XSS) in Banknorwegian (index page) (2024):

• banknorwegian.dk, banknorwegian.no, banknorwegian.fi, banknorwegian.fi, banknorwegian.de

ascension.gg

• Personal Github Token leak ($2.5k bounty reward) (2024)

manacube.net

• SQL injection (2022) ($200 usd bounty reward)

mc-complex.net

• SQL injection (2024) and LFI (2025)

luckyblock.com

• RCE webshell escalated from SQLi (2024)

Skills and Expertise

• Web Hacking and Bug Bounty Hunting: HTB certified, skilled in identifying and exploiting vulnerabilities.

• Full-Stack Web Development: Proficient as a secondary hobby.

• Advanced Security Attacks:

  • SQL Injection (SLQi)

  • Firewall and IDS Bypassing

  • Command Injections

  • Zero-Day Development

• Network Attacks:

  • Evil Twin

  • ARP Spoofing

  • SS7 Attacks

  • DNS Poisoning

• Privilege Escalation: Specializing in Linux environments.

• Buffer Overflows and Directory Traversal

• Programming and OS Proficiency:

  • Skilled in Python

  • Can work with C and Assembly x86-64

  • Expertise with Linux OS

  • Docker Virtualization

• OSINT/Reconnaissance: Capable of finding origin IPs behind firewalls and bypassing IDS.