after 1 mouth studying I decided to really look for the bugs and in 1 one mouth I found 3 types of bugs in one website, and today I found another in other site, if you study everyday and really look for the bugs you'll find it

Man this dude is speaking the truth that everyone needs.

I had no idea what a bug bounty was. I was in the bathtub when this video came on and I didn't want to get out so I just listened. What ensued is hands down the best and most useful psychological and motivational advice I have ever heard in my life. So while I may never be a bug bountier, I want to thank you so much for your words. You are brilliant. I have been procrastinating forever and will not start anything, but now I know how to begin for real.

Hey!

Your whole point on the fear of starting was so well articulated. I have been suffering from this, but have not been able to identify and articulated it. Thanks for the pep talk!

5 minutes in and this is exactly what I needed to hear.

I'm just gonna save the pep talk at the beginning for all the times I get down on myself lol

Thanks for this talk..I learnt alot. I started bug bounties in Jan, doing it part time though.. haven't gotten any bounty yet! But contents like this keeps me going

The talk i desperately needed thanks Luke and everyone..

I wish luck to all the future bug bounty hunters. it is a tough road. I've spent 1 year trying my best to get bounties but only got dupes, Idk if I'll get at it again, it takes a LOT of time xD

This is the best talk I have found on KZbin! Thanks.

i think , my starting goes wrong before viewing this. such a inspiration video for me to build my bug bounty career.

Thanks, it helped me a lot! Its more motivational than any of these business guys who tell to start with anything and get rich fast.

I was shocked when he say " log out from KZbin and turn off your phone" i was like telling me " drop out from university " All in all good stuff bro, as always

I've been comfortably and consistently doing bug bounty related work for two straight weeks now for 10+ hours a day. I'm starting my third week with a realistic glimpse into the world I'm diving into :) I'm in love with this work. It's incredibly fun and it compliments my insatiable need to figure something out. Not to mention, security research is exactly why I got into computing in the first place and that was in 2015. I've worked for so long to learn the basics and now I'm finally here soaking everything up like a kid at Disney World. Like I said, I'm in love, and I can't get enough of it. I'm excited for the year ahead.

08:56 the bug bounty hunter methodology v4 09:50 web application hacker's handbook 10:37 pentesterlab 38:12 kubernetes, message broker, reddis, mq rabbit, axiom (pry0cc)

One possible way to avoid burnout, diversify. I find that freelancing developing web applications is a great distraction and it gives you the chance to apply your unique skill set as well as learn more about your targets. Then you can turn right around an offer cyber security services to your new web application client.

I came to learn how to get started with bug bounty but in addition to it I ended learning how to live a life.

Really good talk. Was really motivated and provided a lot of guidance.

Very good and informative talk. Thank you for taking the time to make it.

Beautiful talk! Extremely informative ideas, the automation part really got me thinking...

Thanks for reminding me of Netflix. I was gonna start bug hunting but then I remembered that I just need to bingewatch the last season of The Queen of South. 😎

Damn, he is spitting the fact🔥 Thanks, g!

He said "Turn off KZbin," so I turned it off... and now I don't know what he said next!! 🙃

Hey there, thanks for sharing guys..... Could you give us newbs some advice about how not to drift out of scope during a bounty hunt? I realy think that would be valuable to a lot of folks.

Great speach, everything was explained nice an clear. However, may be I missed it, how do you actually monetize your findings ? Was explained where to start, to be consistent.. but didn't quite understand, what do you do with your findings ? For example, you are scanning an application for vulnerabilities. You found one. What do you do with it ? Do you sell it (where !?), do you publish it somewhere and wish somebody just pays you, you alert the application company and pray for a paycheck ?(what if they were not ok with you sniffing around :) ) A little bit more explanation on this topic would be wonderful

I have been listening to the guy for 42 minutes he said from zero to expert at the beginning yet he didn't explain what does a bug bounty hunter actually do to get paid. He talked super confident about the income I don't get it. Isn't each bug custom? How can you automate it? If it is as easy as what an automated piece of software get it why don't do companies do it? I thought you would do recon and try break something in a way the developers couldn't think of and then break it in a way that would concern the company enough to pay you for keeping quiet until they fix it. How can you automate that? I was expecting to hear about different kinds of attacks and attack surfaces etc. He hasn't touched the core of it yet. Give us the honey bro. Dealing with where to keep the logs of the recon is vanilla.

Those "phases" are totally a matter of perspective. The guy didn't predict anything at all. Also, being Bugcrowd employees it's hard to really take all this information and run with it. I mean he even says he hit his goal after getting employed by Bugcrowd. I'm sure cows think milk is great.

Automation of happy birthday was funny.

you truly. motivated and ironically it still lasts after 4 hrs

Hackers always have the best names

I like that the sign keeps getting flipped haha

That was bloody sensational

Wow - what an honest presentation of your knowledge! Thank you and God bless ALL of your endeavors.

Kudos Hakluke. You nailed it!

Slow and steady wins the race.

thanks mate, wish you all the best!

Great talk Luke !!!

Fantastic guide. Could be bolstered with some additional resources to guide newcomers on how to do the things you've recommended.

Thanks hakluke for the video I got a great guidance from you

Great talk...very informative and helpful!

Such a beautiful soul. Thank you Luke

Thank you Very Much for this Video..its really great and informative..keep it coming :)

I don't need money from this field I just love to do so I'm learning ❣️

Nice one, good talk.

This guy did his target audience research

Great talk. By the way how many of us noticed @cje at 1:14:41 lol :)

hey , i started this video right now ,. before that i want to tell u i am exploring this field since last 2 years but did not get a single vulnerbility in any target website.

Thank you so much for sharing!!!!

everything you said about "fear of starting" I'm experiencing almost all these things these days.. I always think is it worth to invest my time in this or I should do something else that can help me earn handsome amount to bare my educational expenses. I'm just stuck at starting point..

THANKS #HAKLUKE...Amazing suggestions....I am starting from may 12 ,2022....Let's see what I got...

Nice weed plant 😙☁️

Great video Man

Στην υγεια σας.

Love you man 💕

Thank you

Some great hackers to follow 12:25

When you say "zero", you mean "zero zero" or just "zero"?

This is awesome!

great talk! Thanks!

Hello, i have Done some both udemy and labs Trying to start bug hunting but as soon as I get on a real target I get overwhelmed and don’t know how to proceed

But what about the fact most programs dont allow automation?

I might not do bug bounties, but this definitely helps with pentesting, if im not interested in bug bounties. But maybe, later on, sounds pretty interesting.

so much information

He said "Turn off KZbin," so I turned it off... a

Hi, there is a bug in the description. It shows Katie's KZbin instead of Luke's. ;)

Skip the pep talk 8:19.

Is a good thing focus in just one category? Example, web servers?

What video-call software are they using in the talk??? its so smooth

Hey there's audio in this one! 😆

keep it and thanks for sharing i am flowing u...

push up explanation may need some sport science expertise, everything else was mint nice one

Love you Bugcrowd ♥️

Can someone explain how Python Wrappers work? I want to automate this stuff but I have no clue how to do that. Thanks.

Hello sir , Can I use IMac to find bug bounty ?

was "how many background combo's are there in hakluke's talk" one of the ctf questions?

Hai brother... I have studied owasp but i don't know how to implement.. And want to start bug hunting...

What steps to take to create my own automation ?

My FOS is that I will do something wrong like DOSing target or mess something.

Question for you Mr.HakLuke , when it comes to automation is this something you achieve with python? what do you recommend?

1:16:45 starting: education ( *Jason headaches stuff, pentesters lab, web apps handbook, Twitter community* ) 1:22:00 +/- idea 1:24:30 _new points of view_

Thanks

Great bro

Does anyone know where i can find the application hacking version of bug bounty hunter methodology

Do I need a kind of computer deggre to work as a bughunter or my skills are enough?

Thank you buddy.

hey can you guide me on automation?

@hakluke do mean starting from zero zero, like a total dummy beginner in Bug Bounty because i don't know how to start and what to do.

Awesome thanks for sharing! Btw, What's the into music name?

So before I began bug bounties should I master the techniques first or do that as I bug bounty??m

Music is epic

Hi does anyone know where the Jason Haddix v4 Application hacking is uploaded?? I already saw the v4 recon....

This guy is amazing !

im bachelor in Netcetcentric Computing.. but i do not see any of use for bug bounty and i dont how where to start it.. can u help me?

automation means i keep burp pro scan running??

I got solidly called out in the very first 5 minutes 💀

Hello to you, am absolutely zero knowledge do you think i can do it, even if i have no back ground of Software. thanks

hey i just scan the qr code of the intro and i enter your website and i can't find the flag 😟, any hint ?????

why do u keep changing ur background elements?

You forgot to mention the most important tip that "be prepared for the truth that not everyone can learn bug bounty". Thanks 😊