├■▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀■[ YESWEHACK PROPHILE ON ZSEANO ]■▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄■┤ 

╔══════════════════════════════════ WHOIS ═══════════════════════════════╗
║              Handle: zseano                                            ║
║                 AKA: Sean                                              ║
║       Handle origin: My name is Sean, my friends use to call me 'Seano'║
║                       back in high school. Z meets Seano? ;D           ║
║    Age of your body: 27                                                ║
║         Produced in: United Kingdom                                    ║
║                Urlz:                           ║
║         Superpowers: I can turn anyone into a hacker,                  ║
║                       just give me your time :)                        ║

║ You only fail if you give up. Those who never give up will reach their ║
║ destination eventually, and even if they don't, the experience & wisdom║
║ picked up along the journey will be worth it.                          ║
║ Always believe in yourself. You've got this.                           ║

║ Burp Suite and my brain! I absolutely love hacking manually, it's sort ║
║ of like a puzzle to me without knowing the pieces.                     ║
║ It's almost like you create them yourself :)                           ║

▀▄█▓▒░ How did you come to Bug Bounty ? 
    │  ───────────────────────────────────────────────────────────────────
    └─ I learnt about bug bounties after a friend told me that a new 
        "internet hype" was happening and suddenly companies were happy to
        pay for things such as XSS vulnerabilities. 
        Interested, I went away & did some research on what "bug bounties" 
        were. I decided to reach out to some old companies I had done work 
        for in the past and asked if they were interested. They were keen 
        to see what I could find and I quickly received my first $500 payout
        for XSS. This lead me to find HackerOne & Bugcrowd and the rest is 
        history really. 

▀▄█▓▒░ You have a profile on many BB platforms, what are the Pro & Cons, 
    │  with your experience on those platforms? / What are your 
    │  expectations? 
    │  ───────────────────────────────────────────────────────────────────
    └─ My expectations are simple. Respect. After all, companies are relying 
        on *us* to do the work and find vulnerabilities in their assets. 
        Right now there are too many companies taking advantage of researchers
        & not respecting their work (especially new comers), and certain 
        platforms are even happy to turn a blind eye to this. 
        Companies do not realise that if you make the hacker happy, they 
        will keep looking at your assets. *Upset the hacker (from either 
        delayed responses or crap payouts) and we simply move on.*

▀▄█▓▒░  Do you remember your first exploitation? 
    │  ───────────────────────────────────────────────────────────────────
    └─ For bugbounties it was an XSS vulnerability. But before bug bounties 
        even existed I accidentally typed "" (double slash) 
        and it printed out a lot of chmod errors along with the file path. 
        Entire source code leak by accident. :D 
        I believe I was 14/15 at the time and I successfully managed to 
        responsibly report it. 
        No reward though, and now I look back, I didn't even care. 
        I was just hyped at learning more on why using // caused that to happen. 
        For all new comers reading this, this is why you must learn to hack 
        because it is something you ENJOY, not because you want to make lots of 
        money. You will seriously pick up hacking a lot quicker and realise it 
        isn't as tough as it seems. It's fun! Money is just a bonus, don't get 
        blinded by it.

▀▄█▓▒░  What keeps you going / What turns you down?
    │  ───────────────────────────────────────────────────────────────────
    └─  Just the aspect around what bug bounties are. The fact I can sit 
        at home (or anywhere in the world!) and responsibly hack into some 
        of the biggest companies in the world without going to jail. I use 
        a lot of the sites I hack on so it's a nice feeling knowing I am 
        actually working to save my own data.

        I am turned down with companies claiming they take security seriously 
        but when you unload a lot of bugs they take ages to go through them
        all, or they simply just go quiet for months and then re-appear like 
        "Hey, here's your reward!". Yeah, just 3months late and my trust in 
        you ruined. 
        I wish companies communicated more with hackers. 

▀▄█▓▒░  What will you learn next?
    │  ───────────────────────────────────────────────────────────────────
    └─  I want to explore training companies how to best make use of working 
        with hackers and how to use our knowledge to help you in the long run. 
        I feel like too many companies are opening programs and working it out
        as they go along. Watch this space... :)

▀▄█▓▒░  What is the future?
    │  ───────────────────────────────────────────────────────────────────
    └─  An internet secured by ethical hackers. I think over time companies 
        will start having their own internal team of hackers working along 
        side the security team. In my opinion it's a great time for a hacker
        to find a job right now!

-----------------------------------[ EOF ]-----------------------------------