Upgrade to PRO for Only $50/Year—Limited-Time Offer! 🔥
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Hunting Bugs In Real Life
Search
akshat singhal
September 23, 2020
Technology
0
96
Hunting Bugs In Real Life
akshat singhal
September 23, 2020
Tweet
Share
Other Decks in Technology
See All in Technology
Data Hubグループ 紹介資料
sansan33
PRO
0
2.3k
Contract One Engineering Unit 紹介資料
sansan33
PRO
0
9.9k
名刺メーカーDevグループ 紹介資料
sansan33
PRO
0
980
Bakuraku Engineering Team Deck
layerx
PRO
11
5.7k
Oracle Database@AWS:サービス概要のご紹介
oracle4engineer
PRO
0
120
Claude Code Getting Started Guide(en)
oikon48
0
140
20251127 BigQueryリモート関数で作る、お手軽AIバッチ実行環境
daimatz
0
430
AI 時代のデータ戦略
na0
8
3.2k
MS Ignite 2025で発表されたFoundry IQをRecap
satodayo
3
230
「え?!それ今ではHTMLだけでできるの!?」驚きの進化を遂げたモダンHTML
riyaamemiya
10
4.4k
Introduction to Sansan for Engineers / エンジニア向け会社紹介
sansan33
PRO
5
48k
形式手法特論:CEGAR を用いたモデル検査の状態空間削減 #kernelvm / Kernel VM Study Hokuriku Part 8
ytaka23
1
140
Featured
See All Featured
10 Git Anti Patterns You Should be Aware of
lemiorhan
PRO
659
61k
Building a Modern Day E-commerce SEO Strategy
aleyda
45
8.3k
Leading Effective Engineering Teams in the AI Era
addyosmani
8
1.2k
The Art of Delivering Value - GDevCon NA Keynote
reverentgeek
16
1.8k
The Psychology of Web Performance [Beyond Tellerrand 2023]
tammyeverts
49
3.2k
Git: the NoSQL Database
bkeepers
PRO
432
66k
Put a Button on it: Removing Barriers to Going Fast.
kastner
60
4.1k
Visualization
eitanlees
150
16k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
666
130k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
34
2.5k
Why You Should Never Use an ORM
jnunemaker
PRO
60
9.6k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
35
3.3k
Transcript
None
BUG BOUNTY WEBINAR
HUNTING BUGS IN REAL LIFE Akshat Singhal
Who am I • Bug crowd Top 700 Researcher –
All Time • Blogger • Bug Bounty Hunter • Speaker • Lifelong learner
@Akshat05623019 @akshat-singhal-90141716b @honeyakshat999 Get In Touch At @AkshatSinghal1 @AkshatSinghal @honeyakshat999
None
None
None
STORED DOM REFLECTED
None
None
SQL injection is a web security vulnerability that allows an
attacker to interfere with the queries that an application makes to its database.
▪ admin’—
None
None
TYPES HORIZONTAL VERTICAL
None
None
None
CSRF + XSS --> Account Takeover User enum.
+ IDOR --> All users compromise
None
None
sansan33
layerx
oracle4engineer
oikon48
daimatz
na0
satodayo
riyaamemiya
ytaka23
lemiorhan
aleyda
addyosmani
reverentgeek
tammyeverts
bkeepers
kastner
eitanlees
pedronauck
jcasabona
jnunemaker
rmw
