How to get greater bounties for MEDIUM and LOW risk reports? Account takeover - Stripe

  Рет қаралды 6,646

Bug Bounty Reports Explained

Bug Bounty Reports Explained

Күн бұрын

Пікірлер: 19
@BugBountyReportsExplained
@BugBountyReportsExplained 2 жыл бұрын
Thank you for watching the video and welcome to the comment section! I just wanted to let you know that Black Friday will be one of the rare occasions when you can join BBRE Premium at a lower price. If you don't want to miss that chance, join my mailing list here: bbre.dev/nl
@itsm3dud39
@itsm3dud39 2 жыл бұрын
bro i submitted a report on intigrity and on the draft he says this : Availability: low - There is reduced performance or interruptions in resource availability. what does this mean? the report status turned to pending. do i need to give more information or wait for the target team to reply me?? this is my first report on intrigrity
@e.donker7787
@e.donker7787 2 жыл бұрын
Love the video! Great content as always. Agree that always being transparant in your reports is the way to go.
@BugBountyReportsExplained
@BugBountyReportsExplained 2 жыл бұрын
Thank you, Erik!
@islamrzayev9860
@islamrzayev9860 2 жыл бұрын
Kinda similar situation, actually i also recently found an issue(maybe haha) in Stripe and didn't want to report it as i think it will not be accepted as a valid one, going to report it tomorrow and see what happens!
@BugBountyReportsExplained
@BugBountyReportsExplained 2 жыл бұрын
I wish you good luck!
@BerryAlan-ql7nc
@BerryAlan-ql7nc 2 жыл бұрын
I like your note taking style on stripe programs. I you saw my suggestion please make a video how you made notes on stripe or any program .Or how you make notes while looking for a bug on a program ! thanks
@BugBountyReportsExplained
@BugBountyReportsExplained 2 жыл бұрын
Thanks, I will do ;)
@cimangongfc1515
@cimangongfc1515 Жыл бұрын
Sir, may you create a Live recon on bug bounty source code? Like program on github etc
@msalih
@msalih 2 жыл бұрын
another high quality content 👍
@curated_euphoria_experience
@curated_euphoria_experience Жыл бұрын
Idiots at bugcrowd put my report as not reproducible and put a screenshot without even following my poc. Is there a way to report such negligence
@bakpaoosas4642
@bakpaoosas4642 2 жыл бұрын
someone can help me. what can i do, when i upload any file like php,html,txt,jpg but, it's in the path to be an image. when sending html in path to . thanks
@mnageh-bo1mm
@mnageh-bo1mm 2 жыл бұрын
Great Tips as always : )
@CWLabs7209
@CWLabs7209 2 жыл бұрын
Awesome informative video 😻
@soko45
@soko45 2 жыл бұрын
You commented before you even could have watched the video...cringe bro
@CWLabs7209
@CWLabs7209 2 жыл бұрын
@@soko45 I commented while watching the video 😉
@OthmanAlikhan
@OthmanAlikhan 2 жыл бұрын
Thanks for the video =)
@revolutionstudio6385
@revolutionstudio6385 2 жыл бұрын
👋
@utensilapparatus8692
@utensilapparatus8692 2 жыл бұрын
☃️
What functionalities are vulnerable to SSRFs? Case study of 124 bug bounty reports
19:58
What functionalities are vulnerable to SSRFs? Case study of 124 bug bounty reports
Bug Bounty Reports Explained
Рет қаралды 16 М.
How to do account takeover? Case study of 146 bug bounty reports
30:23
How to do account takeover? Case study of 146 bug bounty reports
Bug Bounty Reports Explained
Рет қаралды 11 М.
When Cucumbers Meet PVC Pipe The Results Are Wild! 🤭
00:44
When Cucumbers Meet PVC Pipe The Results Are Wild! 🤭
Crafty Buddy
Рет қаралды 56 МЛН
消防避险训练,消防员用“水盾”逼退烈火!这是训练,也是他们可能面对的日常。致敬!#熱門 #中国
00:16
消防避险训练,消防员用“水盾”逼退烈火!这是训练,也是他们可能面对的日常。致敬!#熱門 #中国
M档案
Рет қаралды 81 МЛН
Long Nails 💅🏻 #shorts
00:50
Long Nails 💅🏻 #shorts
Mr DegrEE
Рет қаралды 11 МЛН
Trick-or-Treating in a Rush. Part 2
00:37
Trick-or-Treating in a Rush. Part 2
Daniel LaBelle
Рет қаралды 47 МЛН
Which XSS payloads get the biggest bounties? - Case study of 174 reports
28:40
Which XSS payloads get the biggest bounties? - Case study of 174 reports
Bug Bounty Reports Explained
Рет қаралды 27 М.
100 hours of bug bounty on a public Hackerone program. Bounty vlog #1 - Stripe
14:39
100 hours of bug bounty on a public Hackerone program. Bounty vlog #1 - Stripe
Bug Bounty Reports Explained
Рет қаралды 16 М.
Web Cache Poisoning: Hunting Methodology & Real-World Examples
11:24
Web Cache Poisoning: Hunting Methodology & Real-World Examples
Medusa
Рет қаралды 3,7 М.
Cracking Enigma in 2021 - Computerphile
21:20
Cracking Enigma in 2021 - Computerphile
Computerphile
Рет қаралды 2,5 МЛН
Cybersecurity Architecture: Application Security
16:36
Cybersecurity Architecture: Application Security
IBM Technology
Рет қаралды 76 М.
Top privilege escalation techniques - bug bounty case study
22:41
Top privilege escalation techniques - bug bounty case study
Bug Bounty Reports Explained
Рет қаралды 2,2 М.
DEF CON 32 - Anyone can hack IoT- Beginner’s Guide to Hacking Your First IoT Device - Andrew Bellini
54:12
DEF CON 32 - Anyone can hack IoT- Beginner’s Guide to Hacking Your First IoT Device - Andrew Bellini
DEFCONConference
Рет қаралды 86 М.
Turning unexploitable XSS into an account takeover with Matan Berson
23:46
Turning unexploitable XSS into an account takeover with Matan Berson
Bug Bounty Reports Explained
Рет қаралды 14 М.
Certificates from Scratch - X.509 Certificates explained
21:50
Certificates from Scratch - X.509 Certificates explained
OneMarcFifty
Рет қаралды 126 М.
Running a Buffer Overflow Attack - Computerphile
17:30
Running a Buffer Overflow Attack - Computerphile
Computerphile
Рет қаралды 2 МЛН
When Cucumbers Meet PVC Pipe The Results Are Wild! 🤭
00:44
When Cucumbers Meet PVC Pipe The Results Are Wild! 🤭
Crafty Buddy
Рет қаралды 56 МЛН