Upgrade to Pro — share decks privately, control downloads, hide ads and more …

How to get started in bug bounty

156a7b659a9b4aba83a8c0a33515a06f?s=47 Tushar Verma
June 18, 2021
Education
1
250

How to get started in bug bounty

Learning path for Bug Bounty
Bug Bounty Platforms
Report Writing/Bug Submission

156a7b659a9b4aba83a8c0a33515a06f?s=128

Tushar Verma

June 18, 2021
Tweet

More Decks by Tushar Verma

See All by Tushar Verma
156a7b659a9b4aba83a8c0a33515a06f?s=48 e11i0t_4lders0n
2
670
156a7b659a9b4aba83a8c0a33515a06f?s=48 e11i0t_4lders0n
1
1.3k
156a7b659a9b4aba83a8c0a33515a06f?s=48 e11i0t_4lders0n
1
240
156a7b659a9b4aba83a8c0a33515a06f?s=48 e11i0t_4lders0n
0
250
156a7b659a9b4aba83a8c0a33515a06f?s=48 e11i0t_4lders0n
1
1.5k

Other Decks in Education

See All in Education
Cc87daece866c4362b554863a797a38c?s=48 takaakiouchi
0
750
21c2e17b9d4b34aafa4b2722d23dd4d3?s=48 todayuya
0
140
4e437713540d4a32369b9c9f1b624e9c?s=48 arumakan
0
280
A2d9ec58f2ff15667223d25faf00f651?s=48 shimoyou1
1
150
A9e9d643a6a182f8ef1ce2cb95373ed2?s=48 hiramine
1
230
Bac20b7719109838d6be162a560272a0?s=48 uranoken
0
150
21c2e17b9d4b34aafa4b2722d23dd4d3?s=48 todayuya
0
130
A97eee01397705443a72a48ce29d3e19?s=48 cybozuinsideout
0
5.4k
A10e41b0a61d59f2258d7f6172c33479?s=48 kaityo256
2
780
874ff503a00697a857e198a0ebb8f55f?s=48 ailaboocu
0
180
0a403ddfb8d5081529fbf8623ef8d073?s=48 classijp
6
24k
229ad6eff9eb349dd3a38111c8dd545e?s=48 nozomikasuya
0
190

Featured

See All Featured
0bce06bd06ee7a2c4f5500f25dcf7f18?s=48 paulrobertlloyd
72
3.9k
168ccec72eee0530b818d44f3fedaacf?s=48 shlominoach
177
8.1k
B83d5b590577969ee79a5ad845411a7d?s=48 ammeep
660
54k
79acae287842acf29084005533a7fb3b?s=48 hursman
111
9.5k
20bfe76b3d6105641f879fe45cfc9272?s=48 bkeepers
PRO
324
54k
282d599b414022eba5096510f675b6e2?s=48 chrislema
231
16k
E4f5d494ebdc9e7cce1aecf3ce3e8bc1?s=48 shpigford
167
19k
E6c6e133e74c3b83f04d2861deaa1c20?s=48 searls
207
38k
719435d98d452de7ac367c828266cf01?s=48 erikaheidi
27
5k
1519587b1a0febb658c36c94f6272b0d?s=48 roundedbygravity
248
21k
C44e1f7e22c3f23cff7bc130871047ef?s=48 eileencodes
118
26k
462dad0dd24c568a32dcdb0ae895ae1b?s=48 rasmusluckow
318
19k

Transcript

  1. HOW TO GET STARTED IN BUG BOUNTY BY: TUSHAR VERMA

  2. WHOAMI Bug Bounty Hunter Synack Red Team Member Infosec Trainer

  3. AGENDA • Learning path for Bug Bounty • Bug Bounty

    Platforms • Report Writing/Bug Submission

  4. WHAT IS BUG BOUNTY? Bug Bounty is a deal offered

    by many websites and software developers by which individuals can receive recognition and compensation for reporting bugs, especially those pertaining to exploits and vulnerabilities.

  5. BASIC TECHNICAL THINGS TO GET STARTED INTERNET, HTTP, TCP/IP LINUX

    AND BASH SCRIPTING LEARNING BASICS OF HTML, PHP, JAVASCRIPT

  6. CHOOSING YOUR INITIAL PATH Web application Security Testing Mobile Application

    Security Testing

  7. FOR WEB APPLICATION PENETRATION TESTING Web Application Hacker’s Handbook Web

    Hacking 101 PortSwigger Academy Pentesterlab BugBountyHunter

  8. FOR MOBILE APPLICATION PENETRATION TESTING OWASP Mobile Testing Guide Mobile

    application hacker’s handbook Mobile Security Wiki by Aditya Agrawal DIVA (Damn insecure and vulnerable App) Android & iOS

  9. BUG BOUNTY PLATFORM: • Bugcrowd • Hackerone • Hackenproof •

    Intigriti • YesWeHack • Inspectiv • Synack • Cobalt

  10. WHICH CHECKLIST TO FOLLOW??? OWASP Web Application Security Testing Checklist

    Bugcrowd Vulnerability Rating Taxonomy

  11. REPORT WRITING

  12. • Vulnerability Name: • Technical Severity: • Vulnerable URLs: •

    Vulnerability Description: • Steps to Reproduce: • Impact: • Suggested Countermeasures:

  13. GET IN TOUCH AT • Twitter: @e11i0t_4lders0n • LinkedIn: /in/tushars25

    • Instagram: @e11i0t_4lders0n__ • Email: tushar.infosec@gmail.com

  14. THANK YOU