0 HackerOne Web Authentication Endpoint Credentials Brute-Force Vulnerability Posted on June 27, 2016 by Arne Swinnen I publicly disclosed a vulnerability that I found on and reported to the HackerOne platform. It involved a brute-force rate limiting protection bypass via IPv6. It can be found here. Arne SwinnenBelgian. IT Security. Bug Bounty Hunter.