lørdag, august 29, 2020

How Do I Get Started With Bug Bounty ?

How do I get started with bug bounty hunting? How do I improve my skills?



These are some simple steps that every bug bounty hunter can use to get started and improve their skills:

Learn to make it; then break it!
A major chunk of the hacker's mindset consists of wanting to learn more. In order to really exploit issues and discover further potential vulnerabilities, hackers are encouraged to learn to build what they are targeting. By doing this, there is a greater likelihood that hacker will understand the component being targeted and where most issues appear. For example, when people ask me how to take over a sub-domain, I make sure they understand the Domain Name System (DNS) first and let them set up their own website to play around attempting to "claim" that domain.

Read books. Lots of books.
One way to get better is by reading fellow hunters' and hackers' write-ups. Follow /r/netsec and Twitter for fantastic write-ups ranging from a variety of security-related topics that will not only motivate you but help you improve. For a list of good books to read, please refer to "What books should I read?".

Join discussions and ask questions.
As you may be aware, the information security community is full of interesting discussions ranging from breaches to surveillance, and further. The bug bounty community consists of hunters, security analysts, and platform staff helping one and another get better at what they do. There are two very popular bug bounty forums: Bug Bounty Forum and Bug Bounty World.

Participate in open source projects; learn to code.
Go to https://github.com/explore or https://gitlab.com/explore/projects and pick a project to contribute to. By doing so you will improve your general coding and communication skills. On top of that, read https://learnpythonthehardway.org/ and https://linuxjourney.com/.

Help others. If you can teach it, you have mastered it.
Once you discover something new and believe others would benefit from learning about your discovery, publish a write-up about it. Not only will you help others, you will learn to really master the topic because you can actually explain it properly.

Smile when you get feedback and use it to your advantage.
The bug bounty community is full of people wanting to help others so do not be surprised if someone gives you some constructive feedback about your work. Learn from your mistakes and in doing so use it to your advantage. I have a little physical notebook where I keep track of the little things that I learnt during the day and the feedback that people gave me.


Learn to approach a target.
The first step when approaching a target is always going to be reconnaissance — preliminary gathering of information about the target. If the target is a web application, start by browsing around like a normal user and get to know the website's purpose. Then you can start enumerating endpoints such as sub-domains, ports and web paths.

A woodsman was once asked, "What would you do if you had just five minutes to chop down a tree?" He answered, "I would spend the first two and a half minutes sharpening my axe."
As you progress, you will start to notice patterns and find yourself refining your hunting methodology. You will probably also start automating a lot of the repetitive tasks.

Related word


  1. Hackrf Tools
  2. Hacker Tools Linux
  3. Easy Hack Tools
  4. Hacker Tools Free Download
  5. Pentest Tools For Ubuntu
  6. Hacker Tools For Pc
  7. Pentest Tools Framework
  8. Hack Tools For Windows
  9. Hacking Tools 2019
  10. Hacker Tools For Mac
  11. Tools For Hacker
  12. Hacking Apps
  13. Pentest Tools Download
  14. Hacker Tools Github
  15. Hacker Tools For Ios
  16. Hacker Tools 2020
  17. Pentest Tools Port Scanner
  18. Github Hacking Tools
  19. Hack And Tools
  20. Pentest Tools Android
  21. New Hacker Tools
  22. Game Hacking
  23. Hack Tool Apk No Root
  24. Hacker Tools For Pc
  25. Hacking Apps
  26. Hacker Tools Apk
  27. Hacker Tools Online
  28. How To Install Pentest Tools In Ubuntu
  29. Hacker Tools Online
  30. Pentest Tools Find Subdomains
  31. Hacking Tools 2020
  32. Hacking Tools
  33. Growth Hacker Tools
  34. Pentest Tools Url Fuzzer
  35. Pentest Tools Linux
  36. Pentest Tools Framework
  37. Hacker Tools For Mac
  38. Hack Tools Github
  39. Pentest Tools Free
  40. Github Hacking Tools
  41. Hacking Tools Pc
  42. Hack Tools For Mac
  43. Hacking Apps
  44. Game Hacking
  45. Hacker Tools Apk Download
  46. Pentest Tools Free
  47. Pentest Tools Free
  48. Pentest Tools Website
  49. Hacker Techniques Tools And Incident Handling
  50. Pentest Tools Linux
  51. Hacking Tools For Mac
  52. Hacking Tools For Kali Linux
  53. Hacking Tools Github
  54. Growth Hacker Tools
  55. Pentest Tools Website Vulnerability
  56. Hacking Tools And Software
  57. Nsa Hacker Tools
  58. Nsa Hack Tools Download
  59. Pentest Tools For Ubuntu
  60. Pentest Tools Free
  61. Underground Hacker Sites
  62. Hack Tool Apk
  63. Hacker Tools Hardware
  64. Github Hacking Tools
  65. Black Hat Hacker Tools
  66. Hacker Tools 2019
  67. Hacker Tools 2020
  68. Hacker Hardware Tools
  69. Hacker Tools Apk Download
  70. Tools For Hacker
  71. Hacker Tools Free Download
  72. Pentest Tools Nmap
  73. Hacker Search Tools
  74. Best Hacking Tools 2019
  75. Hacker Tools For Ios
  76. Hacker Tools Apk Download
  77. Blackhat Hacker Tools
  78. Hack Tools For Ubuntu
  79. Hacking Tools Github
  80. Usb Pentest Tools
  81. Android Hack Tools Github
  82. Hacker Techniques Tools And Incident Handling
  83. Hacker Techniques Tools And Incident Handling
  84. Pentest Tools List
  85. Pentest Tools
  86. Hacking Tools Free Download
  87. Hack Tools For Games
  88. Pentest Tools Url Fuzzer
  89. Hacking Tools Download
  90. Pentest Tools Alternative
  91. Bluetooth Hacking Tools Kali
  92. Pentest Tools Tcp Port Scanner
  93. Hack Apps
  94. Hacking Tools For Windows
  95. Pentest Tools Subdomain
  96. Pentest Tools Android
  97. Hacking Tools Online
  98. Hacking Tools For Kali Linux
  99. Hacking Tools For Windows
  100. Bluetooth Hacking Tools Kali
  101. Pentest Tools Free
  102. Hacker Tools Linux
  103. Hacker Tools For Pc
  104. Hacking Tools 2019
  105. Hack Tools
  106. Pentest Reporting Tools
  107. Android Hack Tools Github
  108. Pentest Tools Tcp Port Scanner
  109. Hack Tools For Mac
  110. Pentest Tools Alternative
  111. Hacking Tools For Windows
  112. Pentest Automation Tools
  113. Ethical Hacker Tools
  114. Hak5 Tools
  115. Hacker Tools 2019
  116. Tools For Hacker
  117. Hack Website Online Tool
  118. Hacker Tools For Ios
  119. How To Hack
  120. Pentest Tools Review
  121. World No 1 Hacker Software
  122. Top Pentest Tools
  123. Top Pentest Tools
  124. Bluetooth Hacking Tools Kali
  125. Hack Tool Apk No Root
  126. Hacking Tools Free Download
  127. Kik Hack Tools
  128. Ethical Hacker Tools
  129. Hacking Tools Name
  130. Tools 4 Hack
  131. Hacker
  132. Hacker Tools Hardware
  133. Pentest Tools For Ubuntu
  134. Hack Tools Download
  135. Hacking Tools For Mac
  136. Pentest Recon Tools
  137. Hacker Tools For Ios
  138. Hacker Tools 2020
  139. What Is Hacking Tools
  140. Best Hacking Tools 2020
  141. Pentest Tools Alternative
  142. Hacker Tools 2020
  143. Nsa Hack Tools Download
  144. New Hack Tools
  145. Pentest Recon Tools
  146. Hack Tools Download
  147. Hacking Tools Pc
  148. Black Hat Hacker Tools
  149. Hacker Search Tools
  150. Pentest Box Tools Download
  151. Hacker Tools 2019
  152. Hacking Tools 2019
  153. Hacker Tools Free Download
  154. Hacker Tools Github
Lagt inn av kl.

Ingen kommentarer:

Legg inn en kommentar

Abonner på: Legg inn kommentarer (Atom)