Skip to content
View dedcrowd's full-sized avatar
🎯
Focusing
🎯
Focusing
4 followers · 9 following

Block or report dedcrowd

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
dedcrowd/README.md

M. Akif SAYIN · @DedCrowd

Bug bounty hunter and security researcher based in Türkiye.
I build custom recon automation to hunt vulnerabilities at scale across thousands of targets simultaneously.

Hall of Fame

NASA — Vulnerability Disclosure Program
Discovered a P2-severity Blind Stored XSS in mission-critical NASA infrastructure.
Awarded a Letter of Appreciation · Inducted into the NASA Security Hall of Fame

View Official Certificate


Responsible Disclosure

30+ high & critical severity vulnerabilities disclosed across private sector organizations.

Organization Findings
Kamyoon SQLi · Stored XSS · IDOR · Improper Access Control · 403 Bypass · AWS S3 Exposure
Ege Yurt Grup SQLi · Stored XSS · IDOR · Improper Access Control · 403 Bypass · AWS S3 Exposure

Focus

Web App Security   XSS · SQLi · SSRF · IDOR · Auth Bypass · SSTI · Business Logic
Recon & OSINT      Subdomain Enum · Asset Discovery · JS Analysis · Cloud Exposure
Automation         Custom pipeline — thousands of targets, parallel distributed scanning
CVE Hunting        Template-driven, fast triage on newly published disclosures

Stack

Python Bash Gonuclei httpx subfinder ffuf dnsx katanaAxiom PostgreSQL Linux

 

akif@hackermail.com

Pinned Loading

  1. PoCors PoCors Public

    Professional Cors PoC

    HTML 2

  2. wsql wsql Public

    Python 2

  3. manuel manuel Public

    1

  4. ExtractDomains ExtractDomains Public

  5. methodologyI methodologyI Public

    BugBounty Methodology