H1 HQ
bug bounty mission control
server
beacons --
targets --
sse clients connected
Probe Tools
WC Probe
walletconnect v2 session forge
MM Probe
metamask postmessage injection
Browser
proxy + injected devtools
Beacon Log
live sse stream + export
Reports
h1 template from beacon data
Targets
per-target notes + tracker
Sprite Sheet
all 164 pixel art sprites
Quick QR
Active Targets
loading targets...
Open Questions
Why does Base app reject wc: QR codes? (HTTPS req? dapp-initiated only?)
Is Base Farcaster mini app WebView the real attack surface?
Can ngrok HTTPS fix Base app QR scanning?
Next wallet target: Trust Wallet or Rainbow Wallet?
LIVE BEACON STREAM