The Bug Hunter's Methodology - Application Analysis

The Bug Hunter's Methodology - Application Analysis | Jason Haddix

Рет қаралды 103,499

Күн бұрын

Пікірлер: 56

@AnthonyMcqueen1987 10 ай бұрын

Unlike most top researchers out there who do nothing but flex their bounties and give cryptic generic advise or how they got those bugs to me those people add nothing to the community. But people like Haddix who doesnt show off how much he has made or flex his bounties actually explains in detail what he does. He also updates his style and methodology and its not for everyone but he does give detail to how he finds bugs and does his recon unlike most out there and i respect that. Researchers who flex their bounties offer nothing to the community Researchers like Haddix offer a lot to the community.

@auwalsalisu7889 10 ай бұрын

you said nothing but pure 100% truth, you literally spoke my mind

@AnthonyMcqueen1987 10 ай бұрын

@auwalsalisu7889 I am just sick of researchers out there who do nothing and show off their bounties. These people make the profession worse IMO and add nothing. Haddix on the other hand I respect.

@shiiswii4136 9 ай бұрын

@@AnthonyMcqueen1987look up Ryan John and ippsec, these guys are pure fundamentals and no nonsense in the videos

@Denis-xl8jx 26 күн бұрын

Necro thread but what else do you guys watch? I've been putting off watching these talks because 95% of them are literally just people saying nothing whilst flexing bounties, like "we did some recon, found a subdomain, found XSS, escaped some defenses, and boom 10k bounty", 15 mins video. No techniques, payloads, nothing

@TheZenOfWeb3 2 күн бұрын

I'll focus on Jason Haddix's teaching and repeat them all over till I find my first bounty and I'll update here. 🤞

@skysunset877 Жыл бұрын

I'm deeply grateful that you explained this specific procedure for bugbounty. As a beginner, it helped me a lot with my studies.

@goohaver 9 ай бұрын

same here. good luck homie

@madcane13 2 жыл бұрын

json headache... utterly... no words can explain how brilliant he is... you rock

@rynomas4948 2 жыл бұрын

He is haddix bro, not headache. 😆

@viralledshow7079 2 жыл бұрын

@@rynomas4948might be auto correct error brother....!😂

@wk8173 Жыл бұрын

@@rynomas4948 grateful he didn't go for json headless💀

@SankizTime Жыл бұрын

Lmao😂

@iqyou-gw4kd 2 жыл бұрын

Thank you everyone for helping the community evolve

@eyephpmyadmin6988 Жыл бұрын

Took notes on everything, every tool, all the methodology

@MdMilonHossainNil 2 жыл бұрын

❤❤Oh my God, this is what I've been waiting for!! It looks beautiful!!❤❤

@popo_hack Жыл бұрын

Thank you Jason for this amazing presentation, it was very fruitful with alot of knowledge. I think it's very important to know where to start testing and what are the tools that can help you doing that😀

@AlecMaly 2 жыл бұрын

Great presentation! Thank you for sharing your expertise!

@AmineAb Жыл бұрын

Really informative talk, but at the end he wasn’t using Notion for the note-taking part as stated, it was Obsidian.

@esamlasheen453 Жыл бұрын

hhh i see it too

@nathanbolen7624 2 ай бұрын

i love these talks, still relevant today

@Suckit-b6k 2 ай бұрын

8:30 is an incredible moment

@emanuelepicariello Жыл бұрын

Great video thanks, it’s time to build a proper methodology now 🕵🏽‍♂️

@fp1036 8 ай бұрын

Thank you for your passionate sharing Sir!

@william_ade 2 жыл бұрын

how can we get the slides ??

@0xfsec 2 жыл бұрын

Can I get the slide presentation?

@godzab 2 жыл бұрын

I second this!

@william_ade 2 жыл бұрын

This is brilliant !

@sapienshack1711 11 ай бұрын

Jason Haddix you are awesome

@4liraah Жыл бұрын

Thanks for the talk! Any chance we can get a link to the slides?

@Booom1444-_- 11 ай бұрын

Slides?

@actuallyclover 9 ай бұрын

I went to college with Corben! Super smart guy

@wise.wanderer.00 2 жыл бұрын

Very informative talk

@سامرسعيد-ي1ب 4 ай бұрын

“There are bugs in every single aplication”

@aalekhmotani3877 4 ай бұрын

Thanks a lot for all this

@Khal_Rheg0 10 ай бұрын

Thank you!

@esamlasheen453 Жыл бұрын

45:36 Jason It's obsidian not notion!

@bugs-lk3jf Жыл бұрын

Great Content , like a Boss

@anasshaikh5778 Жыл бұрын

Rustscan might not be helpful Since most of the programs have speed limitations like 10 req/s etc..

@hamidrahamaabakar7995 Жыл бұрын

Good morning I'm very appreciate you

@bountyproofs 8 ай бұрын

if you don't CREATE your own METHODOLOGY this is worth NOTHING for YOU

@samgold9151 2 жыл бұрын

Thank you

@reactivicky Жыл бұрын

Nice tips.

@mariarahelvarnhagen2729 Жыл бұрын

The Financial Instruments Game

@thehackr. 2 жыл бұрын

nyc one

@ExploitDeveloper Жыл бұрын

thats good

@TheCyberWarriorGuy 2 жыл бұрын

Legend :)

@shantanusharma5624 Жыл бұрын

Woah!! I'm the 1Kth liker of this video

@garywilburn7384 Жыл бұрын

I'll give you a dollar if you learn to pronounce "obligatory" properly 😂

@ll-ruby..gloom-ll Жыл бұрын

he did

@CaseyStrouse Жыл бұрын

jsnice is the best tool I've found for making sense of obfuscated js. Definitely check it out.

@abd9273ndhHN Жыл бұрын

where to find the slides file ?

@awanakb4867 2 жыл бұрын

how can i find these word lists

@AmineAb Жыл бұрын

Everthing is on the talk.. if you can’t find those wordlists, I don’t know how you will find bugs

@awanakb4867 Жыл бұрын

@@AmineAb i found them already. it just needed some attention.