Upgrade to Pro — share decks privately, control downloads, hide ads and more …

How to get started in bug bounty

Sponsored · Your Podcast. Everywhere. Effortlessly. Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
Avatar for Tushar Verma Tushar Verma
June 18, 2021
Education
500
1

How to get started in bug bounty

Learning path for Bug Bounty
Bug Bounty Platforms
Report Writing/Bug Submission

Avatar for Tushar Verma

Tushar Verma

June 18, 2021

More Decks by Tushar Verma

See All by Tushar Verma
The Power of Recon_ Leveraging Recon for Easy $$$$
Avatar for Tushar Verma e11i0t_4lders0n
0
220
AWS Cloud Forensics & Incident Response
Avatar for Tushar Verma e11i0t_4lders0n
1
720
Hacking OAuth Applications
Avatar for Tushar Verma e11i0t_4lders0n
1
2.1k
Exploiting SSRF like a Boss
Avatar for Tushar Verma e11i0t_4lders0n
2
1.1k
How to Fail at Bug Bounty Hunting
Avatar for Tushar Verma e11i0t_4lders0n
1
1.7k
The Bug Hunter’s Recon Methodology
Avatar for Tushar Verma e11i0t_4lders0n
2
800
METHODOLOGIES AND APPROACH TO START BUG BOUNTY HUNTING
Avatar for Tushar Verma e11i0t_4lders0n
0
610
Bypassing 2FA Misconfiguration
Avatar for Tushar Verma e11i0t_4lders0n
1
2.4k

Other Decks in Education

See All in Education
Lenguajes de Programacion (Ingresantes UNI 2026)
Avatar for Abraham Zamudio robintux
0
160
Analysis and Validation - Lecture 4 - Information Visualisation (4019538FNR)
Avatar for Beat Signer signer
PRO
0
2.6k
勝手にCULTIBASE で広げよう、探究の輪! - CULTIVAL 2026
Avatar for Hiroshi SAKAI hiroc_sk
1
150
Avoin jakaminen ja Creative Commons -lisenssit
Avatar for Matleena Laakso matleenalaakso
0
2.2k
理工学系 第1回大学院説明会2026|東京科学大学(Science Tokyo)
Avatar for Science Tokyo (東京科学大学) / Science Tokyo (Institute of Science Tokyo) sciencetokyo
PRO
1
1.5k
Visualisation Techniques - Lecture 8 - Information Visualisation (4019538FNR)
Avatar for Beat Signer signer
PRO
1
2.9k
Interactive Tabletops and Surfaces - Lecture 5 - Next Generation User Interfaces (4018166FNR)
Avatar for Beat Signer signer
PRO
1
2.1k
SSH公開鍵認証 / 02-b-ssh
Avatar for kaityo256 kaityo256
PRO
0
150
[2026前期火5] 論理学(京都大学文学部 前期 第3回)「形式言語と四つのキーワード:メタ・構成・意味論・ハーモニー」
Avatar for Shunsuke Yatabe yatabe
0
260
Design Guidelines and Principles - Lecture 7 - Information Visualisation (4019538FNR)
Avatar for Beat Signer signer
PRO
0
2.9k
ブランチ操作 / 02-a-branch
Avatar for kaityo256 kaityo256
PRO
0
270
コマンドラインの使い方 / 01-d-cli
Avatar for kaityo256 kaityo256
PRO
0
140

Featured

See All Featured
End of SEO as We Know It (SMX Advanced Version)
Avatar for Michael King ipullrank
3
4.1k
The Pragmatic Product Professional
Avatar for Laura Van Doore lauravandoore
37
7.2k
Bash Introduction
Avatar for André Augusto Costa Santos 62gerente
615
210k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
Avatar for Marc Duiker marcduiker
35
2.4k
Navigating the Design Leadership Dip - Product Design Week Design Leaders+ Conference 2024
Avatar for Andy Polaine apolaine
0
270
Optimising Largest Contentful Paint
Avatar for Harry Roberts csswizardry
37
3.6k
SEO in 2025: How to Prepare for the Future of Search
Avatar for Michael King ipullrank
3
3.4k
Build your cross-platform service in a week with App Engine
Avatar for Jose L jlugia
234
18k
Speed Design
Avatar for Sergey Chernyshev sergeychernyshev
33
1.6k
The browser strikes back
Avatar for Jono Alderson jonoalderson
0
970
Heart Work Chapter 1 - Part 1
Avatar for Lake Fama lfama
PRO
5
35k
Thoughts on Productivity
Avatar for Jon Yablonski jonyablonski
76
5.1k

Transcript

  1. HOW TO GET STARTED IN BUG BOUNTY BY: TUSHAR VERMA

  2. WHOAMI Bug Bounty Hunter Synack Red Team Member Infosec Trainer

  3. AGENDA • Learning path for Bug Bounty • Bug Bounty

    Platforms • Report Writing/Bug Submission

  4. WHAT IS BUG BOUNTY? Bug Bounty is a deal offered

    by many websites and software developers by which individuals can receive recognition and compensation for reporting bugs, especially those pertaining to exploits and vulnerabilities.

  5. BASIC TECHNICAL THINGS TO GET STARTED INTERNET, HTTP, TCP/IP LINUX

    AND BASH SCRIPTING LEARNING BASICS OF HTML, PHP, JAVASCRIPT

  6. CHOOSING YOUR INITIAL PATH Web application Security Testing Mobile Application

    Security Testing

  7. FOR WEB APPLICATION PENETRATION TESTING Web Application Hacker’s Handbook Web

    Hacking 101 PortSwigger Academy Pentesterlab BugBountyHunter

  8. FOR MOBILE APPLICATION PENETRATION TESTING OWASP Mobile Testing Guide Mobile

    application hacker’s handbook Mobile Security Wiki by Aditya Agrawal DIVA (Damn insecure and vulnerable App) Android & iOS

  9. BUG BOUNTY PLATFORM: • Bugcrowd • Hackerone • Hackenproof •

    Intigriti • YesWeHack • Inspectiv • Synack • Cobalt

  10. WHICH CHECKLIST TO FOLLOW??? OWASP Web Application Security Testing Checklist

    Bugcrowd Vulnerability Rating Taxonomy

  11. REPORT WRITING

  12. • Vulnerability Name: • Technical Severity: • Vulnerable URLs: •

    Vulnerability Description: • Steps to Reproduce: • Impact: • Suggested Countermeasures:

  13. GET IN TOUCH AT • Twitter: @e11i0t_4lders0n • LinkedIn: /in/tushars25

    • Instagram: @e11i0t_4lders0n__ • Email: [email protected]

  14. THANK YOU