this is pure gold info for the starters like me. and it's inspiring! thank you so much for your efforts and yes we would like to see more like these videos!

Just getting started in this field and found your playlist for "Finding Your First Bug" this is a mine of knowledge for me. Thanks for amazing videos.

Incredible content. I have done a lot of courses about web, reverse, hacking, passed certifications, but this is REAL hands-on cases! I love it ! Thanks a lot InsiderPhD

I am going to start taking notes from your videos. This is gold..!!! god bless you.

I'm still get back to this awsome super informative videos ❤️

Wow, nice channel, I am just getting into bug bountys from malware lol and I can see myself watching all your videos. I see you know STOK ha, love his videos as well :)

Can’t express how beneficial these videos have been in my goal of becoming a sound hacker. This is what the hacking community is all about!

Thank you so much!!!!! Love being able to actually watch you try real stuff.

man, u r such a good teacher... I mean when I first started to read about business logic error I didn't understand a thing but after watching ur video I actually tried n got results...thank u so much for doing this amazing work I really appreciate it

Absolutely loved it!!! Got so much to learn!! Thank you so much ❤️

Keep up the great work man, love your videos. I’ve been doing web app pen testing before bug bounties existed and fell out of the scene now I’m getting back into it and videos like these are helpful to update me on new theories and concepts. Keep posting!

thank you for making these videos you are actually one of the few people how go indept on a "live" target and really go into steps.. Yes sure people use the vulnerable web app or owasp test apps but i don't really feel its the same thing because they where made buggy. So thank you for making these video i learned allot :) !

Thanks for that well explanation Katie!

That's the kind that I've been looking for for a long time So far I have not found bugs because I have relied on types like xss sqli csrf And I became a little frustrated Thank you very much we hope to see more exciting things

Thanks for sharing such gold stuff! Really appreaciate your efforts :)

I am here for the cyber mentor recomendation, I came looking for copper and I found gold

TBH this was the most helpfull video of hacking ive ever seen on youtube i knew exactly what you where doing and the explaining was outstanding thanks alot!!! ....:)

your videos are so informative. thank you so much for this series :)

Ma'am, happy teacher's day. Love from India. :) Awesome video!

Thanks for giving this content. And i'd like also to ask in which order should some follow this playlist

such an amazing content, thank you so much for this! keep doing it

Pure gold content

dude ur great iwas wondering where to start bug bounty from scratch and you made it inspirational and easy loveyou

We all know InsiderPhd scores on business logic errors. She has really explained it really well.

Hey Katie, the only part I didn't understand was 23:36 here, when u changed some input here and said it will be easy to find regex sort of like that. I didn't get what you meant there or was it co-related to this topic we learned. It would be nice if you could clarify that, please. Sorry if I sound too naive.

Such great video i really learned so much from it keep up the good work!

At last found the channel (Goldmine) splendid content!.

Thank you very much 💖 We need more

OMG!!! very informational 👌👌

yes.we need more videos from you bypass 401, 400, 500 , 403 staus codes

Pretty good sharing and great content, no doubt. I'm a beginner in cyber security and eventhough I've got a private invitation on H1, I couldn't manage to find a bug... However, this video gave me a different perpective and way of think. Therefore, I'm so grateful to you for your sharing :) Btw, I guess you are from UK? I like this accent although I've hard time to understand it :)

CCNA courses from M1->M3 will help me with this path ?

I may be wrong, but I don't think your JSON payloads were legal JSON, because you forgot to add a comma before your Intruder position at 30:55.

really cool video!! keep up the good work

Starting with business logic and Idor in this field,Am I going good as a beginner?

can you plz share the slides with us just wanna use it as a mind refresher when I'm back to hunting , you're really doing a great job thank you for this informative videos

Nice video. Thanks. I didn't quite understand what's the difference between an IDOR and just changing an ID? You mentioned validation, but I'm not sure I understand.

Please more videos like this!!

Video was great just the fonts were too small for my eyes to see during the burp tutorial session, can you just increase the font size in future vids? Thanks!!

I might be a clueless idiot for asking this but how did you set up Burpsuite for flurry?

Thanks a lot 🙂,Keep Supporting ✌🏻

Do you have a course on you configure it ? You are doing it very fast. I understand the things you say and do but the configurations are super fast. Like configuring interceptor and fuzzdb $dddd.

Awesome!

As long as we have the Burp Suite we can hunt a bug, does OS matters? I mean in most cases, Linux is being used, so I am wondering if there's any factor in using Linux?

Thanks for the video =)

Business logic is more of like breaking or exploiting the business rules. In this case, a business rule can be to validate the input. Now if someone somehow exploit or break that rule then what it should be called? Business logic error or XSS? How business logic errors differ from other attacks like IDOR, XSS, CSRF etc. Can u please explain it?

very knowledgeable video.

Great content!

Bussiness Logic errors are so similar to IDORS, and according the web applications hacker handsbook it a type of IDOR.

thanks great content ❤

Many Thanks

what if the app is calling other 3rd party services? Does it still make sense to limit the scope?

Your the best thank u so much

Need some advice I am a newbie in coding and I finished python and am starting Java is it the right time for me to try bug bounties or do I need to learn more

Great Content!!!!!!!!!! BTW Plz buy a new MIC audio was horrible BUT the explaination was awesome!!!!

Thanks for sharing your knowledge will you continue uploading videos?

Awesome !!1 Keep Posting! :)

it's cool but katie it's a little bit similar with Data Tampering right

Thanks a lot Katie ! Keep up with the good stuff :) #InfosecGirls FTW

There are a lot of tutorials out there which tell you how you can get in to the community, what tools they use etc. but nobody actually tells any concrete examples.

thanks

🖖

who else watching this before jump into portswigger labs ?

Hi this series are for a completly noob and doesnt know about programming? i really start in BBH

You are doing great job but i am just having hard time understanding your accent !!!