EdOverflow
I am a web designer, developer, security researcher, and have experience triaging for numerous vulnerability disclosure programs. In my spare time, I enjoy swimming, photography, cinematography, and playing the guitar.
In 2017, I published an Internet Draft for a proposed standard which allows websites to define security policies called security.txt. A year later, I created Bug Bounty Guide, a launchpad for bug bounty programs and bug bounty hunters.
I use GitHub to work on open-source bug bounty and security projects for everyone to use, and to contribute to other open-source projects.
4 sponsors are funding EdOverflow’s next goal
🐸
Featured work
-
EdOverflow/bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
-
EdOverflow/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
-
EdOverflow/bugbountyguide
Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.
HTML 318 -
EdOverflow/megplus
Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
Shell 262 -
EdOverflow/contact.sh
An OSINT tool to find contacts in order to report security vulnerabilities.
Shell 210 -
EdOverflow/proof-of-concepts
A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.
HTML 146
Tadpole tier
Support my work with a $1 tip. :)