Upgrade to Pro — share decks privately, control downloads, hide ads and more …

今日から始めるbugbounty

Avatar for kyo_ago kyo_ago
July 23, 2018
Programming
0
300

 今日から始めるbugbounty

Avatar for kyo_ago

kyo_ago

July 23, 2018
Tweet

More Decks by kyo_ago

See All by kyo_ago
フロントエンドの リソース管理の話 TechFeed Summit#1 #techfeed #techfeedsummit
Avatar for kyo_ago kyo_ago
5
2k
TypeScriptでType Match的なことをする話 #すえなみチャンス暑気払い
Avatar for kyo_ago kyo_ago
1
1.3k
WebReplayから見るWeb開発の未来 #builderscon
Avatar for kyo_ago kyo_ago
2
990
karmaを使ったSPA向けE2Eテスト技法
Avatar for kyo_ago kyo_ago
6
5.6k
E2Eという名称の指すもの
Avatar for kyo_ago kyo_ago
0
2.6k
How to use Scala.js in real world?
Avatar for kyo_ago kyo_ago
1
2.1k

Other Decks in Programming

See All in Programming
Giselleで作るAI QAアシスタント 〜 Pull Requestレビューに継続的QAを
Avatar for Tadashi Shigeoka codenote
0
320
Denoのセキュリティに関する仕組みの紹介 (toranoana.deno #23)
Avatar for uki00a uki00a
0
200
リリース時」テストから「デイリー実行」へ!開発マネージャが取り組んだ、レガシー自動テストのモダン化戦略
Avatar for goataka (GOAMI Takaaki) goataka
0
150
Combinatorial Interview Problems with Backtracking Solutions - From Imperative Procedural Programming to Declarative Functional Programming - Part 2
Avatar for Philip Schwarz philipschwarz
PRO
0
130
AI 駆動開発ライフサイクル(AI-DLC):ソフトウェアエンジニアリングの再構築 / AI-DLC Introduction
Avatar for kanamsasa kanamasa
11
4.6k
Jetpack XR SDKから紐解くAndroid XR開発と技術選定のヒント / about-androidxr-and-jetpack-xr-sdk
Avatar for にー兄さん drumath2237
1
220
ELYZA_Findy AI Engineering Summit登壇資料_AIコーディング時代に「ちゃんと」やること_toB LLMプロダクト開発舞台裏_20251216
Avatar for 株式会社ELYZA elyza
2
830
AI Agent Tool のためのバックエンドアーキテクチャを考える #encraft
Avatar for izumin5210 izumin5210
5
1.5k
はじめてのカスタムエージェント【GitHub Copilot Agent Mode編】
Avatar for Satoshi Kaneyasu satoshi256kbyte
0
130
【卒業研究】会話ログ分析によるユーザーごとの関心に応じた話題提案手法
Avatar for MomokoShirakawa momok47
0
150
Navigation 3: 적응형 UI를 위한 앱 탐색
Avatar for Sungyong An fornewid
1
510
AI Agent Dojo #4: watsonx Orchestrate ADK体験
Avatar for Akira Onishi (IBM) oniak3ibm
PRO
0
120

Featured

See All Featured
Optimising Largest Contentful Paint
Avatar for Harry Roberts csswizardry
37
3.5k
VelocityConf: Rendering Performance Case Studies
Avatar for Addy Osmani addyosmani
333
24k
Dominate Local Search Results - an insider guide to GBP, reviews, and Local SEO
Avatar for Greg Gifford greggifford
PRO
0
25
The Power of CSS Pseudo Elements
Avatar for Geoffrey Crofte geoffreycrofte
80
6.1k
Why Your Marketing Sucks and What You Can Do About It - Sophie Logan
Avatar for Sophie Logan marketingsoph
0
53
The Illustrated Guide to Node.js - THAT Conference 2024
Avatar for David Neal reverentgeek
0
220
How to Build an AI Search Optimization Roadmap - Criteria and Steps to Take #SEOIRL
Avatar for Aleyda Solis aleyda
1
1.8k
What’s in a name? Adding method to the madness
Avatar for The Alliance productmarketing
PRO
24
3.8k
State of Search Keynote: SEO is Dead Long Live SEO
Avatar for Ryan Jones ryanjones
0
79
<Decoding/> the Language of Devs - We Love SEO 2024
Avatar for Nikki Halliwell nikkihalliwell
0
100
Tell your own story through comics
Avatar for letsgokoyo letsgokoyo
0
770
The Web Performance Landscape in 2024 [PerfNow 2024]
Avatar for Tammy Everts tammyeverts
12
990

Transcript

  1. ࠓ೔͔Β࢝ΊΔ bugbounty

  2. ಺༰ •bugbountyͱ͸ •bugbountyͷར఺ •bugbountyͷ஫ҙ •bugbountyͷ࢝Ίํ •bugbountyͷӡ༻ •FAQ •͕࣌ؒ͋Ε͹

  3. bugbountyͱ͸

  4. bugbountyͱ͸ • ͍ΘΏΔʮ੬ऑੑใࠂʹର͢Δใ঑੍ۚ౓ʯ • ੬ऑੑ৘ใΛड͚෇͚ɺͦͷ৘ใʹର͓ͯۚ͠Λ෷͏

  5. bugbountyͱ͸ • ւ֎Ͱ͸͔ͳΓҰൠతʢMicrosoftɺGoogleɺFacebookɺ MozillaɺUberɺAppleɺAdobeɺͦͷଞࢥ͍ͭ͘اۀ͸ͩ ͍͍ͨɻAmazon͸΍ͬͯͳ͍͔΋ʁʣ • ࠃ಺Ͱ͸αΠϘ΢ζ͞ΜɺLINE͞ΜɺϐΫγϒ͞Μɺ Zaim͞ΜɺChatWork౳͕࣮ࢪ

  6. bugbountyͷར఺

  7. bugbountyͷར఺ • αʔϏεଆͰίϯτϩʔϧ͕Ͱ͖Δ
 ίετɺظؒɺن໛ΛαʔϏεଆͰίϯτϩʔϧ͢Δ͜ͱ ͕Ͱ͖Δ • අ༻͸0ʙແݶ • ظؒ͸ࠓ͔Β͍ͭ·ͰͰ΋ •

    ن໛͸୯Ұͷػೳ͔ΒαʔϏεશମ·Ͱ

  8. bugbountyͷ஫ҙ

  9. bugbountyͷ஫ҙ • ϗϫΠτϦετܗࣜͰͷνΣοΫͷ୅ΘΓͰ͸ͳ͍
 ͋͘·Ͱ΋ิ׬ؔ܎ɻͨͩ͠ɺิ׬ؔ܎ͱͯ͠͸ඇৗʹ૬ੑ͕͍͍ • ʢҰൠతʹʮୈࡾऀػؔͷݕূʯͱͯ͠͸ड͚ೖΕΒΕͳ͍ͱࢥ͏ʣ • ඇެ։ঢ়ଶͰͷࣄલݕূ͸Ͱ͖ͳ͍
 ࣄલݕূͱͯ͠ެ։͢Δ͜ͱ͸Ͱ͖Δ͚Ͳɺ׬શඇެ։ʹ͸Ͱ͖ͳ ͍

    • Τϥʔϩά͸େྔʹ૿͑Δ
 ՄೳͰ͋Ε͹ઐ༻؀ڥΛ༻ҙͨ͠΄͏͕͍͍

  10. bugbountyͷ࢝Ίํ

  11. bugbountyͷ࢝Ίํ • ࣾ಺ௐ੔ • ઌʹ΍͹͍ͱ͜ΖΛͬ͘͟Γચͬͯमਖ਼͢Δ

  12. bugbountyͷ࢝Ίํ • ੬ऑੑड෇༻ͷϑΥʔϜΛ࡞Δ
 ઌʹࣾ಺ମ੍Λߏங͢ΔͨΊ • ϓϥοτϑΥʔϜʹ৐Δ
 hackeroneɺbugbounty.jp

  13. bugbountyͷӡ༻

  14. bugbountyͷӡ༻ • ใࠂ͞Εͨ಺༰ͷτϥοΩϯά
 ϓϥοτϑΥʔϜʹ৐ͬͯ΋੬ऑੑ৘ใͷमਖ਼τϥοΩϯ ά·Ͱ͸ߦ͑ͳ͍ɻ
 ࣾ಺BTSͱඥ෇͚ͯͷ؅ཧ͸Ͱ͖ͳ͍ɻ
 खಈͰؤுΔ͔ɺͳΜΒ͔ͷ࢓૊Έ͕ඞཁ

  15. bugbountyͷӡ༻ • ӡӦϝϯόʔͰͲ͜·ͰΧόʔ͢Δ͔ʁ
 ৘ใڞ༗ͷൣғ
 ػೳ։ൃͱ੬ऑੑमਖ਼ͷ༏ઌ౓ͷ݉Ͷ߹͍ • ʢ͜ͷลɺ֤ࣾʹฉ͍ͯ΋ͦΕͧΕಠࣗͬΆ͍ͷͰϊ΢ϋ ΢͕͋ΔͬΆ͍ʣ

  16. FAQ

  17. ͍͘Β͔͔Δʁ

  18. ແྉͰ։࢝Մೳ ஈ֊తʹֹۚΛ্͍͚͛ͯ͹͍͍ ֤͕͍ࣾ͘Β͙Β͍͔͚ͯΔ͔͸ެ։ ৘ใ͔ΒਪଌՄೳ

  19. ੬ऑੑͬͯΑ͘Θ͔Β ͳ͍Μ͚ͩͲɻɻɻ

  20. ஌ࣝͳ͠Ͱ΋ग़དྷͳ͘͸ͳ͍ bugbounty.jpͳΒτϦΞʔδ Φϓγϣϯ͋Γ

  21. Ͳͷ͘Β͍ใࠂ͕དྷΔʁ

  22. ใ঑ֹۚͱαʔϏε࣍ୈ ใࠂ͕ଟ͗͢Δ৔߹ετοϓ΋͋Γ ֤ࣾͷެ։৘ใΛݟΔͱେମΘ͔Δ

  23. ແྉͩͱใࠂདྷͳ͍ͷ Ͱ͸ʁ

  24. ݱঢ়͸ಛʹࠃ಺ʹؔͯ͠͸ແྉͰ΋݁ߏདྷΔ ࿹ࢼ͠తͳਓͱ͔ɺϙΠϯτ໨తͷਓ΋͍ΔͬΆ͍ ʢόάϋϯλʔʹରͯ͠αʔϏε͕଍Γͯͳ͍ҹ৅ɻͨ ͩ͠ɺΤίγεςϜతʹ͸΋ͪΖΜ෷ͬͨ΄͏͕͍͍ͱ

  25. ӡ༻͢Δ্Ͱͷ஫ҙ఺ ͸ʁ

  26. ʮҰൠతʹ੬ऑ͔ʁʯͰ͸ͳ͘ʮαʔ Ϗεͱͯ͠੬ऑ͔ʁʯΛߟ͑Δ ͨͩ͠ɺӡ༻ͭͭ͠௚ͯ͠ߦ͘ͷ΋͋Γ

  27. ΍ͬͯ͸͍͚ͳ͍͜ͱ ͸ʁ

  28. ੬ऑੑใࠂܦ༝Ͱͷ߈ܸɺඃ֐΋ߟྀ ͢Δ͜ͱ ੬ऑੑͰͳ͍ͱ൑அ͢ΔͳΒɺमਖ਼· Ͱʹ૬खͷฦ౴Λ଴ͭ͜ͱ

  29. ୈࡾऀݕূʹൺ΂ͯ໢ ཏੑ͕௿͍ͷͰ͸ʁ

  30. ػೳతͳ໢ཏੑ͸͔֬ʹ௿͍ ͚Ͳɺ࣌ؒతͳ໢ཏੑ͸ߴ͍

  31. ͜͏͍͏ͱ͜ΖͰ஫໨͞ ΕΔͱ߈ܸ͞ΕΔͷͰ͸ʁ

  32. ͞Εͳͯ͘΋߈ܸ͞ΕͯΔ ίϛϡχέʔγϣϯͰ͖Δϙ ΠϯτΛ༻ҙ͢Δͱߟ͑Δ

  33. ൑அͰ೉͍͠ϙΠϯτ ͸ʁ

  34. ֹۚΛ͍͘Βʹ͢Δ͔͸͔ͳΓ೰ΉϙΠϯτ ͨͩ͠ɺ࠷ऴతʹ͸ʮαʔϏεͱ͍ͯ͘͠Β ʹ͢Δͷ͔ʁʯ࣍ୈͳͷͰɺҰൠతͳֹۚΛ ࢀߟʹͭͭͦ͠ΕͧΕͰܾΊ͍͍ͯ

  35. ӡ༻Ͱ೉͍͠ϙΠϯτ ͸ʁ

  36. ڴҖ౓ͷ௿͍੬ऑੑͱ௨ৗͷ ։ൃλεΫͱͷ݉Ͷ߹͍͕೉ ͍͠

  37. ͕࣌ؒ͋Ε͹

  38. ฐࣾͰ͸bugbountyΛchaos engineeringతʹҐஔ͚ͮͯΔ

  39. ։ൃऀ͸جຊ௚઀bugbounty ͷIssueΛ୲౰͢Δ

  40. ίϯτϩʔϧ͞Εͨ੬ऑੑใࠂΛৗʹ ड͚ଓ͚Δ͜ͱͰɺ੬ऑੑใࠂͷϋϯ υϦϯάεΩϧΛ޲্͍ͤͯ͘͞

  41. Let’s bugbounty!