Hey, I'm Max Harari.

I'm a Security Researcher and Software Developer, studying at Stevens.

My security research is primarily done through HackerOne, where I hunt for vulnerabilities in production systems and open source projects. Since late 2025, I've earned over $17,000 in bounties and disclosed high-impact vulnerabilities to Netflix, Vercel, Node.js, GitLab, and Slack and others, and authored two public CVEs to date. I'm also Netflix's #1 hacker as of 2026 (#3 all-time) on HackerOne's leaderboard.

I care deeply about open source, and if you check my activity, you'll almost certainly see me contributing to the software I care about. I've created (and actively maintain) several semi-popular open source projects such as HVNC, Scarecrow, and VisualSploit to name a few. I'm the #2 contributor to Kon too, which is an amazingly minimal yet powerful coding agent for your terminal. The source code for this website is available here!

If you get to know me, you'll find that my morality is inseparable from who I am. It shapes what I believe in, how I treat others, how I conduct my research, and what I choose to pursue. Technology is, almost paradoxically, a fundamentally moral and human venture. My goal is to treat it as such.

Have something worth securing? Get in touch.