Skip to content
View EdOverflow's full-sized avatar
I swear there was an XSS somewhere around here...
I swear there was an XSS somewhere around here...
3.5k followers · 22 following

Sponsors

@projectdiscovery

Achievements

Achievement: YOLOAchievement: QuickdrawAchievement: Starstruckx4Achievement: Arctic Code Vault ContributorAchievement: Public SponsorAchievement: Pull Sharkx3

Achievements

Achievement: YOLOAchievement: QuickdrawAchievement: Starstruckx4Achievement: Arctic Code Vault ContributorAchievement: Public SponsorAchievement: Pull Sharkx3

Highlights

Organizations

@liberapay @securitytxt

Block or report EdOverflow

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
edoverflow/README.md

Hi 👋

I am a web designer, developer, security researcher, and have experience triaging for numerous vulnerability disclosure programmes.

In 2016, I joined Gratipay’s Blue Team where I operated their bug bounty programme. Subsequently, in 2018, I joined HackerOne as a Security Analyst. While at HackerOne, I had the privilege of triaging in-person alongside organisations such as GitHub, Salesforce, and the United States Marine Corps.

Currently, I am a Senior Pentester at Cure53, where I use my expertise to help clients strengthen their security posture by conducting security audits and source code reviews.

Outside of work, I enjoy staying active and maintaining a strong dedication to swimming, honed during my time as a student on the University of Warwick’s Sports Scholarship programme.

edoverflow.comLinkedIn

Pinned Loading

  1. securitytxt/security-txt Public

    A proposed standard that allows websites to define security policies.

    HTML 1.8k 76

  2. can-i-take-over-xyz Public

    "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

    Python 5.3k 765

  3. contact.sh Public

    An OSINT tool to find contacts in order to report security vulnerabilities.

    Shell 268 48

  4. legal-bug-bounty Public

    #legalbugbounty project — creating safe harbors on bug bounty programs and vulnerability disclosure programs. Authored by Amit Elazari.

    70 20

  5. securitytxt/securitytxt.org Public

    Static website for security.txt.

    HTML 67 37

7 contributions in the last year

Skip to contributions year list
Contribution Graph
Day of Week July August September October November December January February March April May June July
Sunday
Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
Learn how we count contributions
Less
No contributions.
Low contributions.
Medium-low contributions.
Medium-high contributions.
High contributions.
More

Activity overview

Contributed to EdOverflow/security-template, securitytxt/securitytxt.org
Loading A graph representing EdOverflow's contributions from July 21, 2024 to July 25, 2025. The contributions are 57% commits, 43% pull requests, 0% issues, 0% code review.   Code review   Issues 43% Pull requests 57% Commits

Contribution activity

July 2025

Opened 1 pull request in 1 repository
EdOverflow/security-template 1 open
Loading