#NahamCon2022
Рет қаралды 62,466
2 жыл бұрынPurchase my Bug Bounty Course here 👉🏼 bugbounty.nahamsec.training
#NahamCon2022 is a virtual offensive security. This year's event was hosted by Jason Haddix & STOK!
Big thank you to all of our sponsors for making this event possible.
----
Hadrian - hadrian.io
Android - google.com
HackTheBox - hackthebox.eu
The Yahoo Paranoids - The Paranoids.com
Zero Point Security - zeropointsecurity.co.uk
Intel - projectcircuitbreaker.com/
AWSSecurity - AmazonAWS.com
HackerOne - Hacker101.com
Intigriti - intigriti.com
Bugcrowd - bugcrowd.com
Truffle Security - trufflesec.com
Snyk - snyk.io
Offensive Security - offensive-security.com
AssetNote - AssetNote,io
YesWeHack - yeswehack.com
PureVPN - purevpn.com
Immunefi - immunefi.com
NetworkChuck - networkchuck.com
haksec - hacksec.io
PentesterLab - Pentesterlab.com
Live Every Sunday on Twitch:
/ nahamsec
Free $100 DigitalOcean Credit:
m.do.co/c/3236319b9d0b
Follow me on social media:
/ nahamsec
/ nahamsec
twitch.com/nahamsec
hackerone.com/nahamsec
/ nahamsec1
@AshleyEhSMR Жыл бұрын
Wow, what an abundant collection of tools and info 🎉 Thank you so much for taking the time. I also appreciate the quality, it was nice and clear. ☺️
@lilyrosestracke4591 2 жыл бұрын
Great content as always Jason. Many thanks
@AshleyEhSMR Жыл бұрын
I’m fairly certain I’ve listened to this video 4 or more times while bug hunting, just because it’s so useful and filled with reminders 🎉
@alexparakan Жыл бұрын
@@abdonito8254 Hunting bugs duh
@GrimComix 2 жыл бұрын
These are such great videos. Jason explains things so well
@homeofcreation 2 жыл бұрын
Super great Video. Made me think back of this: When my Statistics Professor retired, in his good bye speech, he compared western researchers with someone who was searching for his car keys in the light of a street light. And when you asked were exactly he had lost them, he would say "over there", pointing 20 yards down the road. On asking him why then was searching here and not over there, he would say because here I can see what I am doing.
@akloskikoblansk2698 Жыл бұрын
What does this mean though?
@samfisher8426 Жыл бұрын
hmmmmmmmmm
@DeLFeTube 2 жыл бұрын
That was an absolutely sick presentation Jason!
@ashleypursell9702 2 жыл бұрын
super good talk jason alot of valuable tips in here, your a legend
@shincheem753 2 жыл бұрын
Literally enjoyed alot! thanks everyone
@jessicaadkins9994 Жыл бұрын
Enjoyed the content and its very encouraging big ups to you professor.
@rajeshsagar3912 2 жыл бұрын
thanq so much...i was eagerly waiting for this
@encryptedmind6952 Жыл бұрын
lots of useful tips,Thank You, please do more tutorials and walkthroughs on using the tools.
@jorgevilla6523 2 жыл бұрын
Thanks for all the content!! love it!
@meh.7539 Жыл бұрын
Blind XSS payload -> "vehicle breakdown" -> exploit delivery and execution is *chefs kiss*.
@skytechbits Жыл бұрын
Thank you Jason for sharing so many real-world details. Is the Heatmap Mindmap file available to download please since the font is a bit small in the video? I love flow charts like that. Thanks so much.
@Unhacker Жыл бұрын
Excellent presentation sir!
@haroonrehman8156 2 жыл бұрын
Very Serious Guy Ma Sha ALLAH
@gameforme6007 2 жыл бұрын
was waiting for it
@TheBashir007 Жыл бұрын
O funk i visit this video every day I think its pure gold if u want to learn
@jayncube568 Жыл бұрын
It's working thanks my friend
@ianirungu2129 Жыл бұрын
great work bro,
@marksnyder5219 Жыл бұрын
Fantastic talk! especially loved the tips on wordlists. Big Question I had.. You mentioned it being critical to know how the app passes data weather it's via params or via REST routes and how that affects where / how you fuzz or place your payload. But I didn't hear you explain that. I'd love to hear more about that.
@effsixteenblock50 5 ай бұрын
@marksnyder5219 His point was that you just need to know the difference because, for example, if an app is passing data via params but you are throwing URLs at it that just consist of pathnames & endpoints (REST style), then you're wasting your time. You'll never find anything because that stuff just doesn't exist.
@oshkit Жыл бұрын
great content 👍🏼😌
@tundeakinbisodun1035 Жыл бұрын
Hi, Jason. You released a bug bounty methodology earlier??
@abdullahasif5992 Жыл бұрын
Is naabu better than rustscan in speed? Because sometimes you have to scan like 100 of subdomains and speed really matters
@janekmachnicki2593 9 ай бұрын
Asif how did i missed it .Great tutorial as usual .Thanks
@nokotable Жыл бұрын
great content
@josesuazo4340 4 ай бұрын
Second question: the order of topics would be, so to speak, the steps to follow to carry out the application analysis???
@samindunimsara 2 жыл бұрын
Thank ❤️
@josesuazo4340 4 ай бұрын
query: the difference between Recon and Application Analysis, what would it be specifically??? I am new to this topic.
@akashdeepnandi 2 жыл бұрын
Can we get the slides of the presentation?
@pr0xy_ 2 жыл бұрын
I am so glad I ordered pizza! let's go
@defyteryt2452 2 жыл бұрын
Cool
@samratgupta8487 2 жыл бұрын
Can you please share the ppt
@cursory_views Жыл бұрын
Can anyone tell me which tool he was using to create dynamic mind map? It’s super cool.
@0ckh4m38 Жыл бұрын
The tool name is Xmind
@cursory_views Жыл бұрын
@@0ckh4m38 Thanks!
@balramrexwal 2 жыл бұрын
Please uploads others talks also... 😇
@kevinl.9657 2 жыл бұрын
7:15 Stok's handle is wrong.
@reubenroyal4234 2 жыл бұрын
What was the book on APIs that you're reading?
@effsixteenblock50 Жыл бұрын
I think it's called "Hacking APIs" but it won't be officially released until July.
@Mohsinkhan-bh7py 2 жыл бұрын
first like and comment
@shreerammallick5434 2 жыл бұрын
😍😍
@chiragartani 2 жыл бұрын
Starting the video...
@D.sNutssss 3 ай бұрын
1:02:08 Personal Bookmark
@hasskoelhadi9638 2 жыл бұрын
1#
@walkwithhackers 2 жыл бұрын
I think I'm the first viewer.
@NahamSec 2 жыл бұрын
Guess we'll never know
@walkwithhackers 2 жыл бұрын
@@NahamSec hahaa....aha
@TheConstantLearnerGuy 2 жыл бұрын
:)
@omarbaatout2472 Жыл бұрын
great vedio and great man @jhaddix 👈❤❤❤❤
@MufaExplores 2 ай бұрын
Really this is Super Great Content for all Newbie like me. Thank You so much "TheCyberMentor" for your recommended. And also Thanks NahamSec and JasonHaddix. May Allah bless you all.
@elite_fitness 2 жыл бұрын
Awesome talk as usual from the legend #jhaddix .#hakluke Hakrawler gives more results usually | wc -l . Damn I had to come edit my comment. This is very valuable info . Gets the wheels spining
Bug Bounty Reports Explained
Рет қаралды 21 М.
Андрей Флор
Рет қаралды 2,3 МЛН
Apple_calls РЕПЛИКА №1 В РФ
Рет қаралды 21 М.