user avatar
Corben Leo
@hacker_
I hack stuff legally; co-founder @boringmattress
Brookings, South Dakota
boring.co
Joined February 2016
769
Following
72K
Followers
Posts
  • Pinned
    user avatar
    Corben Leo
    @hacker_
    Apr 8, 2022
    In 2010, WikiLeaks released a classified document. A list of infrastructure critical to U.S national security. The government listed a Trans-Atlantic cable. 3 years ago, 19-year-old me gained ADMIN access to that cable (and another; shared codebase). 🧵Here's how I found it
  • user avatar
    Corben Leo
    @hacker_
    Sep 29, 2022
    I hacked a gaming company this year. Here's how I did it:
  • user avatar
    Corben Leo
    @hacker_
    Sep 16, 2022
    Uber was hacked. The hacker social engineered an employee -> logged into the VPN and scanned their intranet. 👇
  • user avatar
    Corben Leo
    @hacker_
    Sep 26, 2022
    I'm uncomfortable tweeting stuff like this out, but... I found a critical vulnerability in @opensea this weekend and reported it through @Hacker0x01. They fixed the issue within 3 hours of reporting and I just got this notification👏🫢
  • user avatar
    Corben Leo
    @hacker_
    Nov 25, 2022
    I hacked a phone company earlier last year. I found a stupidly simple way to view the call logs of 50M customers. Here's how I did it:
  • user avatar
    Corben Leo
    @hacker_
    Aug 24, 2023
    I've made $500k+ from SSRF vulnerabilities. Here are my tricks:
    441K
  • user avatar
    Corben Leo
    @hacker_
    Jan 2, 2023
    I hacked a large company (70k+ employees) through social engineering. Legally of course. • I set up the infrastructure • Scraped names & emails with LinkedIn • Sent 200 phishing emails. I had access to their AWS console within 2 minutes. And much more:
    519K
  • user avatar
    Corben Leo
    @hacker_
    Jan 25, 2023
    I hacked a car company last year. I found a way to steal every customer's • Name • Email address • Phone number • Address Here's how I did it:
    540K
  • user avatar
    Corben Leo
    @hacker_
    Mar 30, 2022
    Hacking CAN be easy. But, often it's not. Let's develop your technical skills, they obviously matter. A roadmap:
  • user avatar
    Corben Leo
    @hacker_
    Aug 21, 2023
    I hacked a car company. Here's how I gained access to hundreds of their codebases.
    353K
  • user avatar
    Corben Leo
    @hacker_
    Apr 6, 2023
    I've spent the last 8 years hacking companies (legally). Now, I'm starting a mattress company. I'm taking on a $16B industry to solve a huge problem. Here's why:
    GIF
    712K
  • user avatar
    Corben Leo
    @hacker_
    May 3, 2022
    How you can learn to hack web3 (and protect millions of dollars):
  • user avatar
    Corben Leo
    @hacker_
    Sep 16, 2022
    Replying to @hacker_
    Apparently there was an internal network share that contained powershell scripts... "One of the powershell scripts contained the username and password for a admin user in Thycotic (PAM) Using this i was able to extract secrets for all services, DA, DUO, Onelogin, AWS, GSuite"
  • user avatar
    Corben Leo
    @hacker_
    Dec 31, 2022
    My favorite hacking stories of 2022:
    241K