Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
今日から始めるbugbounty
Search
kyo_ago
July 23, 2018
Programming
0
270
今日から始めるbugbounty
kyo_ago
July 23, 2018
Tweet
Share
More Decks by kyo_ago
See All by kyo_ago
フロントエンドの リソース管理の話 TechFeed Summit#1 #techfeed #techfeedsummit
kyo_ago
5
1.9k
TypeScriptでType Match的なことをする話 #すえなみチャンス暑気払い
kyo_ago
1
1.3k
WebReplayから見るWeb開発の未来 #builderscon
kyo_ago
2
940
karmaを使ったSPA向けE2Eテスト技法
kyo_ago
6
5.5k
E2Eという名称の指すもの
kyo_ago
0
2.4k
How to use Scala.js in real world?
kyo_ago
1
2k
Other Decks in Programming
See All in Programming
はじめての Go * WASM *OCR
sgash708
1
110
GoとPHPのインターフェイスの違い
shimabox
2
210
推しメソッドsource_locationのしくみを探る - はじめてRubyのコードを読んでみた
nobu09
2
330
「個人開発マネタイズ大全」が教えてくれたこと
bani24884
1
240
Serverless Rust: Your Low-Risk Entry Point to Rust in Production (and the benefits are huge)
lmammino
1
160
バッチを作らなきゃとなったときに考えること
irof
2
530
From the Wild into the Clouds - Laravel Meetup Talk
neverything
0
160
React 19アップデートのために必要なこと
uhyo
8
1.5k
クリーンアーキテクチャから見る依存の向きの大切さ
shimabox
5
1.1k
Datadog DBMでなにができる? JDDUG Meetup#7
nealle
0
150
dbt Pythonモデルで実現するSnowflake活用術
trsnium
0
260
kintone開発を効率化するためにチームで試した施策とその結果を大放出!
oguemon
0
170
Featured
See All Featured
Fashionably flexible responsive web design (full day workshop)
malarkey
406
66k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.5k
Building a Scalable Design System with Sketch
lauravandoore
461
33k
Fireside Chat
paigeccino
34
3.2k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
100
18k
Building an army of robots
kneath
303
45k
Typedesign – Prime Four
hannesfritz
40
2.5k
For a Future-Friendly Web
brad_frost
176
9.6k
Build The Right Thing And Hit Your Dates
maggiecrowley
34
2.5k
Performance Is Good for Brains [We Love Speed 2024]
tammyeverts
7
650
Designing for Performance
lara
604
68k
Rebuilding a faster, lazier Slack
samanthasiow
80
8.9k
Transcript
ࠓ͔Β࢝ΊΔ bugbounty
༰ •bugbountyͱ •bugbountyͷར •bugbountyͷҙ •bugbountyͷ࢝Ίํ •bugbountyͷӡ༻ •FAQ •͕࣌ؒ͋Ε
bugbountyͱ
bugbountyͱ • ͍ΘΏΔʮ੬ऑੑใࠂʹର͢Δใ੍ۚʯ • ੬ऑੑใΛड͚͚ɺͦͷใʹର͓ͯۚ͠Λ͏
bugbountyͱ • ւ֎Ͱ͔ͳΓҰൠతʢMicrosoftɺGoogleɺFacebookɺ MozillaɺUberɺAppleɺAdobeɺͦͷଞࢥ͍ͭ͘اۀͩ ͍͍ͨɻAmazonͬͯͳ͍͔ʁʣ • ࠃͰαΠϘζ͞ΜɺLINE͞ΜɺϐΫγϒ͞Μɺ Zaim͞ΜɺChatWork͕࣮ࢪ
bugbountyͷར
bugbountyͷར • αʔϏεଆͰίϯτϩʔϧ͕Ͱ͖Δ ίετɺظؒɺنΛαʔϏεଆͰίϯτϩʔϧ͢Δ͜ͱ ͕Ͱ͖Δ • අ༻0ʙແݶ • ظؒࠓ͔Β͍ͭ·ͰͰ •
ن୯Ұͷػೳ͔ΒαʔϏεશମ·Ͱ
bugbountyͷҙ
bugbountyͷҙ • ϗϫΠτϦετܗࣜͰͷνΣοΫͷΘΓͰͳ͍ ͋͘·Ͱิؔɻͨͩ͠ɺิؔͱͯ͠ඇৗʹ૬ੑ͕͍͍ • ʢҰൠతʹʮୈࡾऀػؔͷݕূʯͱͯ͠ड͚ೖΕΒΕͳ͍ͱࢥ͏ʣ • ඇެ։ঢ়ଶͰͷࣄલݕূͰ͖ͳ͍ ࣄલݕূͱͯ͠ެ։͢Δ͜ͱͰ͖Δ͚Ͳɺશඇެ։ʹͰ͖ͳ ͍
• Τϥʔϩάେྔʹ૿͑Δ ՄೳͰ͋Εઐ༻ڥΛ༻ҙͨ͠΄͏͕͍͍
bugbountyͷ࢝Ίํ
bugbountyͷ࢝Ίํ • ࣾௐ • ઌʹ͍ͱ͜ΖΛͬ͘͟Γચͬͯमਖ਼͢Δ
bugbountyͷ࢝Ίํ • ੬ऑੑड༻ͷϑΥʔϜΛ࡞Δ ઌʹࣾମ੍Λߏங͢ΔͨΊ • ϓϥοτϑΥʔϜʹΔ hackeroneɺbugbounty.jp
bugbountyͷӡ༻
bugbountyͷӡ༻ • ใࠂ͞Εͨ༰ͷτϥοΩϯά ϓϥοτϑΥʔϜʹͬͯ੬ऑੑใͷमਖ਼τϥοΩϯ ά·Ͱߦ͑ͳ͍ɻ ࣾBTSͱඥ͚ͯͷཧͰ͖ͳ͍ɻ खಈͰؤுΔ͔ɺͳΜΒ͔ͷΈ͕ඞཁ
bugbountyͷӡ༻ • ӡӦϝϯόʔͰͲ͜·ͰΧόʔ͢Δ͔ʁ ใڞ༗ͷൣғ ػೳ։ൃͱ੬ऑੑमਖ਼ͷ༏ઌͷ݉Ͷ߹͍ • ʢ͜ͷลɺ֤ࣾʹฉ͍ͯͦΕͧΕಠࣗͬΆ͍ͷͰϊϋ ͕͋ΔͬΆ͍ʣ
FAQ
͍͘Β͔͔Δʁ
ແྉͰ։࢝Մೳ ஈ֊తʹֹۚΛ্͍͚͍͍͛ͯ ֤͕͍ࣾ͘Β͙Β͍͔͚ͯΔ͔ެ։ ใ͔ΒਪଌՄೳ
੬ऑੑͬͯΑ͘Θ͔Β ͳ͍Μ͚ͩͲɻɻɻ
ࣝͳ͠Ͱग़དྷͳ͘ͳ͍ bugbounty.jpͳΒτϦΞʔδ Φϓγϣϯ͋Γ
Ͳͷ͘Β͍ใࠂ͕དྷΔʁ
ใֹۚͱαʔϏε࣍ୈ ใࠂ͕ଟ͗͢Δ߹ετοϓ͋Γ ֤ࣾͷެ։ใΛݟΔͱେମΘ͔Δ
ແྉͩͱใࠂདྷͳ͍ͷ Ͱʁ
ݱঢ়ಛʹࠃʹؔͯ͠ແྉͰ݁ߏདྷΔ ࢼ͠తͳਓͱ͔ɺϙΠϯτతͷਓ͍ΔͬΆ͍ ʢόάϋϯλʔʹରͯ͠αʔϏε͕Γͯͳ͍ҹɻͨ ͩ͠ɺΤίγεςϜతʹͪΖΜͬͨ΄͏͕͍͍ͱ
ӡ༻͢Δ্Ͱͷҙ ʁ
ʮҰൠతʹ੬ऑ͔ʁʯͰͳ͘ʮαʔ Ϗεͱͯ͠੬ऑ͔ʁʯΛߟ͑Δ ͨͩ͠ɺӡ༻ͭͭͯ͠͠ߦ͘ͷ͋Γ
͍͚ͬͯͳ͍͜ͱ ʁ
੬ऑੑใࠂܦ༝Ͱͷ߈ܸɺඃߟྀ ͢Δ͜ͱ ੬ऑੑͰͳ͍ͱஅ͢ΔͳΒɺमਖ਼· Ͱʹ૬खͷฦΛͭ͜ͱ
ୈࡾऀݕূʹൺͯ ཏੑ͕͍ͷͰʁ
ػೳతͳཏੑ͔֬ʹ͍ ͚Ͳɺ࣌ؒతͳཏੑߴ͍
͜͏͍͏ͱ͜ΖͰ͞ ΕΔͱ߈ܸ͞ΕΔͷͰʁ
͞Εͳͯ͘߈ܸ͞ΕͯΔ ίϛϡχέʔγϣϯͰ͖Δϙ ΠϯτΛ༻ҙ͢Δͱߟ͑Δ
அͰ͍͠ϙΠϯτ ʁ
ֹۚΛ͍͘Βʹ͢Δ͔͔ͳΓΉϙΠϯτ ͨͩ͠ɺ࠷ऴతʹʮαʔϏεͱ͍ͯ͘͠Β ʹ͢Δͷ͔ʁʯ࣍ୈͳͷͰɺҰൠతͳֹۚΛ ࢀߟʹͭͭͦ͠ΕͧΕͰܾΊ͍͍ͯ
ӡ༻Ͱ͍͠ϙΠϯτ ʁ
ڴҖͷ͍੬ऑੑͱ௨ৗͷ ։ൃλεΫͱͷ݉Ͷ߹͍͕ ͍͠
͕࣌ؒ͋Ε
ฐࣾͰbugbountyΛchaos engineeringతʹҐஔ͚ͮͯΔ
։ൃऀجຊbugbounty ͷIssueΛ୲͢Δ
ίϯτϩʔϧ͞Εͨ੬ऑੑใࠂΛৗʹ ड͚ଓ͚Δ͜ͱͰɺ੬ऑੑใࠂͷϋϯ υϦϯάεΩϧΛ্͍ͤͯ͘͞
Let’s bugbounty!
kyo_ago
sgash708
shimabox
nobu09
bani24884
lmammino
irof
neverything
uhyo
nealle
trsnium
oguemon
malarkey
danielanewman
lauravandoore
paigeccino
panda_program
kneath
hannesfritz
brad_frost
maggiecrowley
tammyeverts
lara
samanthasiow
