How to Write Great Bug Bounty Reports
Рет қаралды 18,900
Күн бұрын
@AlecMaly Жыл бұрын
Report writing is a fine art, especially for bug bounty. Report just good enough to get paid, but vague enough that the implemented fix can be bypassed so you can farm the same bug for multiple bounties. 😂
@dushanmalinga6268 9 ай бұрын
do you have any written bug bounty report
@markfuentes3666 Жыл бұрын
this is exactly what I have been waiting for. Thank you Heath!!!!😀
@BibleOSINT Жыл бұрын
Nice video, thank you! But when is the best time to start bug bounty hunting?
@melegritojoel Жыл бұрын
nice work man ❤❤❤
@_FudgeSupreme Жыл бұрын
Nice Video Mate ❤❤❤
@juliusrowe9374 Жыл бұрын
Great tutori8al Heath!
@Did_Diggie_Die_Yet Жыл бұрын
I know nothing about coding or hacking or ANYTHING, but I really want to learn- even just the basics would be cool. Do you know a good starting point or what I should do to set a foundation for building my knowledge on the subject?
@Ectokin Жыл бұрын
What tools do you like to use for note taking / documentation?
@youcef2851 Жыл бұрын
thank you heath
@mianhussnainjaved7313 Жыл бұрын
Just asking what if some comments and low severity vulnerabilities able to fetch the database where one can access admin account without changing the password, are those vulnerabilities will stay in low severity or we should set them as critical?
@cyberdark8082 Жыл бұрын
From my point of view, regardless of whether a tool tells you that you have something critical, it would be necessary to see if that asset is critical for the organization as such. But going back to what you indicate, I believe that something considered as disclosure of weak credentials or passwords must be approached with the same implication that it deserves. Since it carries an even greater risk.
@ankitchoudhury9678 3 ай бұрын
what to do if there is no bug bounty program but there is a vulnerability in the website I'm using
@mekdadpdiop5764 Жыл бұрын
nice
@antonioavilashiraz Жыл бұрын
MMMM. I will start your courses today. I just want to start with your courses. Not proffessor messer etc. just remind me how to start> thank you
@mohammadh8032 2 ай бұрын
❤
@AG-ur1lj 5 ай бұрын
Scope is negotiable-but you do need to actually negotiate. That means NOT submitting a report through their bounty program. If you find something out of scope that is actually something, you should reach out directly to the company. Be considerate, and there’s a decent chance of negotiating payment-assuming you really did _find something_
@SY_KURD Жыл бұрын
First
@racerx1777 Жыл бұрын
Dude! Who are these other people on this channel? Not really liking that
Tool Items
Рет қаралды 69 МЛН
МАРГУЛАН СЕЙСЕМБАЙ
Рет қаралды 6 МЛН
DevSec Hacker
Рет қаралды 1,3 М.