How I Found My First Bug (now you can too)
Рет қаралды 61,226
Күн бұрын
@gerardocovarrubias7610 Жыл бұрын
The script and integration with discord was really interesting, share more please!
@bigerrncodes 5 ай бұрын
Seconded! Please post a vid on the script!
@WR4lTH 9 ай бұрын
Automation seems to be the secret sauce that most hackers don’t want to share because this how they are finding their bugs. A video on setting up basic automations for an overall bug bounty hunter would be appreciated. Thanks for all you do
@UBNA671 3 ай бұрын
i would like to know more about finding bugs with automation if possible
@kawaiihikari0 2 ай бұрын
Ehh I kinda agree manual testing will always be superior for “majority" of things. Automated tools bring up errors or false positives when if you tested manually would have been able to tell. I think a mix between the 2 works best not just a one way approach
@UBNA671 2 ай бұрын
@@kawaiihikari0 I like to think that automated testing is just to find and manual is to confirm so I agree partly with what you say
@dxxp3835 2 ай бұрын
@@UBNA671 If I tell you with my experience Learn Go for mannual testing and make those steps into automation
@sino-wt7pu Ай бұрын
@@UBNA671 Well some bug bounty programs also don't allow automatic testing or only within given rules, like imposing rate limits on scans. Or some are completely banning certain scanning tools, for different reasons. I have also seen a program description, where automatic scanning tools were forbidden, except running your own scripts, then with some rate limiting of like 5 requests per seconds. So they don't want like 1000 people automatically scanning for the same vulnerabilities over and over, just stressing the servers.
@Blentux Жыл бұрын
My first "bug" was an IDOR vulnerability on my school's internal website. I found it by accident and I didn't even know what IDOR is back then, I just found it funny being able to access information about every student's profile. My second bug on the other hand was a XSS vulnerability, I again found it by accident. The login form of a website was reflecting the entered username and it wasn't being sanitized. I really don't know much about pentesting, but it was enough for being able to find vulnerabilities 😅
@mayank-ir7tm Жыл бұрын
Great video! A tutorial about script writing for automation would be appreciated! I am a bit stomped whenever i need to automate stuff so thank you!
@JohnRodgers7390 Жыл бұрын
Would be very interested to see how that script and integration with Discord works. Thank you as always for the in-depth information.
@LoosenRelaxation Жыл бұрын
We Want Full Play List
@ronetteprinsloo5048 Жыл бұрын
Second this
@AM-mv6ro Жыл бұрын
Please and thank you*
@hyperFOCUS42 16 күн бұрын
My first bug was discovered while working as a run-of-the-mill QA engineer: A voice assistant was set up improperly with the insult library (meant to trigger fallbacks in case of rude user behavior) hooked into it stemming from the wrong localization package, so fallbacks from insults in the target user language were never triggered.
@ShaySoFresh777 Жыл бұрын
Hey Alex. I myself would love to see a video on that automation tool and discord integration!
@Blecyn Жыл бұрын
Great topic. I want to see more Bugbounty adventure and would look to check out the TCM api course
@alexandersoltesz8103 Жыл бұрын
Great video, I added your methodology to my to-do on new targets, thanks so much! Also I'd love to see your automation script for analyze, I haven't heard about it but I'll surely check it out and likely integrate it too!
@PeterAdiSaputro 9 ай бұрын
Thanks for the great advices that may useful in all aspects of life, not only hacking or bug bounty.
@breakoutgaffe4027 5 ай бұрын
Yes please to the automation script content - how can one monitor the target for new endpoints without running a heavy scan like kiterunner every x days?
@youcef2851 Жыл бұрын
thanks Alex this is great
@Z0nd4 Жыл бұрын
Great video Alex! I wait for the automation/discord-bot video! Thanks man!
@prabakarj4797 Жыл бұрын
As usual a great stuff! I want more videos on bug bounty🙌🏻🙌🏻
@UBNA671 3 ай бұрын
i would like to know more about finding bugs with automation if possible
@lauleshmishra6143 Жыл бұрын
Want to learn more on how to write scripts and how can we identify if the app is using prepared statements
@GrimComix Жыл бұрын
Yes on the Discord script 👍🏼
@ssxnet2513 Жыл бұрын
Great video!! I am also on the way to find my first bug..... I was second😂😂
@abdulmannan3454 Жыл бұрын
Yes, I would like to learn the automation part please
@_CryptoCat Жыл бұрын
Nice! Video on the discord automation would be cool 👍
@nnofficial2414 4 ай бұрын
Great video!
@TheBenJiles Жыл бұрын
Great video. Thanks
@OthmanAlikhan 7 ай бұрын
Thanks for the video =)
@mssvbeats4070 Жыл бұрын
Where do you talk about actually gaining access to a target to attack? I think alot of us have no idea how to join a bug bounty or gain access to a website that we are allowed to attack
@lstr0 Жыл бұрын
Thank you for the great content, but a while ago your videos were showing me with Arabic translation, and then they stopped completely. Can you add the Arabic translation? There are people who are serious about learning from you their language is Arabic❤
@AppSecExplained Жыл бұрын
All the subs are generated by KZbin, we don't add them ourselves. Hopefully it will come up automatically though after a day or two!
@lstr0 Жыл бұрын
Thanks for your reply, really appreciate your powerful content🖤💻
@akilabejaia8428 11 ай бұрын
4:13 yes please
@amoh96 Жыл бұрын
we want playlist about bug bounty
@chowdhurytowhidahmed7780 Жыл бұрын
More bug bounty video
@MFoster392 Жыл бұрын
Defiantly need script a info in python and bash
@kalendra.ethicalhacker 7 ай бұрын
I always getting duplicates
@faizanshaikh2588 Жыл бұрын
We want the how to write script video
@sayemjency1304 Жыл бұрын
Please share tutorial about scripting with Discord...
@sourabhpurohit8575 Жыл бұрын
Please make a video on automation using scripts.
@alexadvanceautomechanics 11 ай бұрын
Can u do one for beginners from scratch at bugcrowd
@UmmeLP 7 ай бұрын
i would love to see that discord skript :)
@crazy_pythonist Жыл бұрын
my first bug-bounty was when I was child and my grandpa was like to say 'hey boy I'm 64 but I'm waking up at 5am every day and feeling as good as my 20ies ' - also my grandpa during whole day 'sleeping at sofa,napping at the table,going bed at 6pm😅😅😅 '
@technicalskillsintelugu2286 Жыл бұрын
Hey I want to learn this cource but I don't known can u tell how can I start
@alexadvanceautomechanics 11 ай бұрын
Do u have automated scripts
@shadowshan125 Жыл бұрын
create a video for script and integration with Discord
@mlitzy 10 ай бұрын
please share the script and integration with discord
@deepaknishad5272 Жыл бұрын
Pl help mi my Facebook ac hack
@schooltime001 Жыл бұрын
I want to learn from you, will you help me?
@ruycr4ft Жыл бұрын
First!
@criggyartist Жыл бұрын
Second 😂
@AbhishekGupta-fz5dn Жыл бұрын
Great video and yes please make a video on how to make security tools like gobuster and all. Much appreciated.
@mohammedessam7829 6 ай бұрын
The script and integration with discord was really interesting, share more please!
Bug Bounty Reports Explained
Рет қаралды 152 М.
The Cyberboy
Рет қаралды 74 М.
Fabiosa Best Lifehacks
Рет қаралды 18 МЛН
mufazmi
Рет қаралды 1,9 М.