Upgrade to Pro — share decks privately, control downloads, hide ads and more …

今日から始めるbugbounty

C2dcf3e2f7861b2ec5d84045273ed5bd?s=47 kyo_ago
July 23, 2018
Programming
0
220

 今日から始めるbugbounty

C2dcf3e2f7861b2ec5d84045273ed5bd?s=128

kyo_ago

July 23, 2018
Tweet

More Decks by kyo_ago

See All by kyo_ago
C2dcf3e2f7861b2ec5d84045273ed5bd?s=48 kyo_ago
5
1.6k
C2dcf3e2f7861b2ec5d84045273ed5bd?s=48 kyo_ago
1
760
C2dcf3e2f7861b2ec5d84045273ed5bd?s=48 kyo_ago
3
500
C2dcf3e2f7861b2ec5d84045273ed5bd?s=48 kyo_ago
6
4.4k
C2dcf3e2f7861b2ec5d84045273ed5bd?s=48 kyo_ago
0
1.8k
C2dcf3e2f7861b2ec5d84045273ed5bd?s=48 kyo_ago
1
1.6k

Other Decks in Programming

See All in Programming
15934fa2aa7b2ce21f091e9b7cffa856?s=48 manfredsteyer
PRO
0
110
2350801025b8e8592dbaa8dd98a24cbb?s=48 ewolff
1
330
De266761b955b2636e454a1bc7a99ed4?s=48 masayaaoyama
2
340
E0e036f89c14b3e59640318eedf9670b?s=48 bkuhlmann
2
350
D07d36d7d3263da869c7d030ba4a64a6?s=48 y__mattu
0
280
Df3a0444cb4726fd231a5d5ea4fe0a34?s=48 hiddenest12
0
290
D76231a2114896dfcc7b79ac69558b79?s=48 yosuke_furukawa
PRO
1
650
03d26b71500c1bf966aedbd125baee45?s=48 udaikue
0
350
706ea99a045bb3f273ab518a3db3e113?s=48 kamiokan
0
230
9d974d9df914b4540ae8febc6cb89f02?s=48 tiking76
1
150
56047a7b11797f42c2e7030d771fe803?s=48 oleur
1
100
D40b43d43c4d8307c5334f1cb1da03a2?s=48 devinjeon
1
390

Featured

See All Featured
9128d500301ae51524e887bb680f471d?s=48 caitiem20
311
17k
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
146
20k
433acaea1012b25d97ae66da9b998dad?s=48 malarkey
119
16k
A415db3ac9e9668acbc1fb36eead84ac?s=48 mthomps
40
2.4k
719435d98d452de7ac367c828266cf01?s=48 erikaheidi
17
4.6k
5f50f94346fbcb23706f0707169317a4?s=48 aarron
258
36k
F57e2136eb9895eb95ff5dc8a1c02677?s=48 zakiwarfel
88
3.4k
Dad095ea7038f89f760419ce475d5d14?s=48 michaelherold
226
8.7k
E4f5d494ebdc9e7cce1aecf3ce3e8bc1?s=48 shpigford
166
19k
32de0bd2ba869609d26fd052a4622778?s=48 cromwellryan
104
6.3k
11c84dff30266b907714802088852677?s=48 jasonvnalue
82
8.2k
B3d6434763caa0ef5dc4b792662c49f7?s=48 smashingmag
233
18k

Transcript

  1. ࠓ೔͔Β࢝ΊΔ bugbounty

  2. ಺༰ •bugbountyͱ͸ •bugbountyͷར఺ •bugbountyͷ஫ҙ •bugbountyͷ࢝Ίํ •bugbountyͷӡ༻ •FAQ •͕࣌ؒ͋Ε͹

  3. bugbountyͱ͸

  4. bugbountyͱ͸ • ͍ΘΏΔʮ੬ऑੑใࠂʹର͢Δใ঑੍ۚ౓ʯ • ੬ऑੑ৘ใΛड͚෇͚ɺͦͷ৘ใʹର͓ͯۚ͠Λ෷͏

  5. bugbountyͱ͸ • ւ֎Ͱ͸͔ͳΓҰൠతʢMicrosoftɺGoogleɺFacebookɺ MozillaɺUberɺAppleɺAdobeɺͦͷଞࢥ͍ͭ͘اۀ͸ͩ ͍͍ͨɻAmazon͸΍ͬͯͳ͍͔΋ʁʣ • ࠃ಺Ͱ͸αΠϘ΢ζ͞ΜɺLINE͞ΜɺϐΫγϒ͞Μɺ Zaim͞ΜɺChatWork౳͕࣮ࢪ

  6. bugbountyͷར఺

  7. bugbountyͷར఺ • αʔϏεଆͰίϯτϩʔϧ͕Ͱ͖Δ
 ίετɺظؒɺن໛ΛαʔϏεଆͰίϯτϩʔϧ͢Δ͜ͱ ͕Ͱ͖Δ • අ༻͸0ʙແݶ • ظؒ͸ࠓ͔Β͍ͭ·ͰͰ΋ •

    ن໛͸୯Ұͷػೳ͔ΒαʔϏεશମ·Ͱ

  8. bugbountyͷ஫ҙ

  9. bugbountyͷ஫ҙ • ϗϫΠτϦετܗࣜͰͷνΣοΫͷ୅ΘΓͰ͸ͳ͍
 ͋͘·Ͱ΋ิ׬ؔ܎ɻͨͩ͠ɺิ׬ؔ܎ͱͯ͠͸ඇৗʹ૬ੑ͕͍͍ • ʢҰൠతʹʮୈࡾऀػؔͷݕূʯͱͯ͠͸ड͚ೖΕΒΕͳ͍ͱࢥ͏ʣ • ඇެ։ঢ়ଶͰͷࣄલݕূ͸Ͱ͖ͳ͍
 ࣄલݕূͱͯ͠ެ։͢Δ͜ͱ͸Ͱ͖Δ͚Ͳɺ׬શඇެ։ʹ͸Ͱ͖ͳ ͍

    • Τϥʔϩά͸େྔʹ૿͑Δ
 ՄೳͰ͋Ε͹ઐ༻؀ڥΛ༻ҙͨ͠΄͏͕͍͍

  10. bugbountyͷ࢝Ίํ

  11. bugbountyͷ࢝Ίํ • ࣾ಺ௐ੔ • ઌʹ΍͹͍ͱ͜ΖΛͬ͘͟Γચͬͯमਖ਼͢Δ

  12. bugbountyͷ࢝Ίํ • ੬ऑੑड෇༻ͷϑΥʔϜΛ࡞Δ
 ઌʹࣾ಺ମ੍Λߏங͢ΔͨΊ • ϓϥοτϑΥʔϜʹ৐Δ
 hackeroneɺbugbounty.jp

  13. bugbountyͷӡ༻

  14. bugbountyͷӡ༻ • ใࠂ͞Εͨ಺༰ͷτϥοΩϯά
 ϓϥοτϑΥʔϜʹ৐ͬͯ΋੬ऑੑ৘ใͷमਖ਼τϥοΩϯ ά·Ͱ͸ߦ͑ͳ͍ɻ
 ࣾ಺BTSͱඥ෇͚ͯͷ؅ཧ͸Ͱ͖ͳ͍ɻ
 खಈͰؤுΔ͔ɺͳΜΒ͔ͷ࢓૊Έ͕ඞཁ

  15. bugbountyͷӡ༻ • ӡӦϝϯόʔͰͲ͜·ͰΧόʔ͢Δ͔ʁ
 ৘ใڞ༗ͷൣғ
 ػೳ։ൃͱ੬ऑੑमਖ਼ͷ༏ઌ౓ͷ݉Ͷ߹͍ • ʢ͜ͷลɺ֤ࣾʹฉ͍ͯ΋ͦΕͧΕಠࣗͬΆ͍ͷͰϊ΢ϋ ΢͕͋ΔͬΆ͍ʣ

  16. FAQ

  17. ͍͘Β͔͔Δʁ

  18. ແྉͰ։࢝Մೳ ஈ֊తʹֹۚΛ্͍͚͛ͯ͹͍͍ ֤͕͍ࣾ͘Β͙Β͍͔͚ͯΔ͔͸ެ։ ৘ใ͔ΒਪଌՄೳ

  19. ੬ऑੑͬͯΑ͘Θ͔Β ͳ͍Μ͚ͩͲɻɻɻ

  20. ஌ࣝͳ͠Ͱ΋ग़དྷͳ͘͸ͳ͍ bugbounty.jpͳΒτϦΞʔδ Φϓγϣϯ͋Γ

  21. Ͳͷ͘Β͍ใࠂ͕དྷΔʁ

  22. ใ঑ֹۚͱαʔϏε࣍ୈ ใࠂ͕ଟ͗͢Δ৔߹ετοϓ΋͋Γ ֤ࣾͷެ։৘ใΛݟΔͱେମΘ͔Δ

  23. ແྉͩͱใࠂདྷͳ͍ͷ Ͱ͸ʁ

  24. ݱঢ়͸ಛʹࠃ಺ʹؔͯ͠͸ແྉͰ΋݁ߏདྷΔ ࿹ࢼ͠తͳਓͱ͔ɺϙΠϯτ໨తͷਓ΋͍ΔͬΆ͍ ʢόάϋϯλʔʹରͯ͠αʔϏε͕଍Γͯͳ͍ҹ৅ɻͨ ͩ͠ɺΤίγεςϜతʹ͸΋ͪΖΜ෷ͬͨ΄͏͕͍͍ͱ

  25. ӡ༻͢Δ্Ͱͷ஫ҙ఺ ͸ʁ

  26. ʮҰൠతʹ੬ऑ͔ʁʯͰ͸ͳ͘ʮαʔ Ϗεͱͯ͠੬ऑ͔ʁʯΛߟ͑Δ ͨͩ͠ɺӡ༻ͭͭ͠௚ͯ͠ߦ͘ͷ΋͋Γ

  27. ΍ͬͯ͸͍͚ͳ͍͜ͱ ͸ʁ

  28. ੬ऑੑใࠂܦ༝Ͱͷ߈ܸɺඃ֐΋ߟྀ ͢Δ͜ͱ ੬ऑੑͰͳ͍ͱ൑அ͢ΔͳΒɺमਖ਼· Ͱʹ૬खͷฦ౴Λ଴ͭ͜ͱ

  29. ୈࡾऀݕূʹൺ΂ͯ໢ ཏੑ͕௿͍ͷͰ͸ʁ

  30. ػೳతͳ໢ཏੑ͸͔֬ʹ௿͍ ͚Ͳɺ࣌ؒతͳ໢ཏੑ͸ߴ͍

  31. ͜͏͍͏ͱ͜ΖͰ஫໨͞ ΕΔͱ߈ܸ͞ΕΔͷͰ͸ʁ

  32. ͞Εͳͯ͘΋߈ܸ͞ΕͯΔ ίϛϡχέʔγϣϯͰ͖Δϙ ΠϯτΛ༻ҙ͢Δͱߟ͑Δ

  33. ൑அͰ೉͍͠ϙΠϯτ ͸ʁ

  34. ֹۚΛ͍͘Βʹ͢Δ͔͸͔ͳΓ೰ΉϙΠϯτ ͨͩ͠ɺ࠷ऴతʹ͸ʮαʔϏεͱ͍ͯ͘͠Β ʹ͢Δͷ͔ʁʯ࣍ୈͳͷͰɺҰൠతͳֹۚΛ ࢀߟʹͭͭͦ͠ΕͧΕͰܾΊ͍͍ͯ

  35. ӡ༻Ͱ೉͍͠ϙΠϯτ ͸ʁ

  36. ڴҖ౓ͷ௿͍੬ऑੑͱ௨ৗͷ ։ൃλεΫͱͷ݉Ͷ߹͍͕೉ ͍͠

  37. ͕࣌ؒ͋Ε͹

  38. ฐࣾͰ͸bugbountyΛchaos engineeringతʹҐஔ͚ͮͯΔ

  39. ։ൃऀ͸جຊ௚઀bugbounty ͷIssueΛ୲౰͢Δ

  40. ίϯτϩʔϧ͞Εͨ੬ऑੑใࠂΛৗʹ ड͚ଓ͚Δ͜ͱͰɺ੬ऑੑใࠂͷϋϯ υϦϯάεΩϧΛ޲্͍ͤͯ͘͞

  41. Let’s bugbounty!