Bug Bounty

Finding criticals is hard. Often, you can only target some users, need interaction or the impact isn't that high. However, there's one man that has no problem finding Criticals. It's Alex Chapman and I spoke with him in the recent episode of the podcast to...

Eldar describes his experiences with different bug bounty platforms and specifically their triage process. He definitely makes me want to spend some time on YesWeHack and Intigiriti because he wrote that the triage process is smoother than on Hackerone or Bugcrowd....

Sam Curry, one of the best hunters out there, wrote a blogpost about the topic of motivation in bug bounty. I think it’s always valuable to see words like this from someone like him because it can be puzzling of why even the best hunters out there don’t do it...

Shreyas Chavhan shared his exact roadmap for the first 8 months in bug bounty. I am a huge fan of initiatives like this that show us the real image, with the amount of time invested and not just the best parts. One of the things we can see here is the power of...

This is a very fun thing that Truffle Security has done! We all know many servers have misconfigured CORS, including internal websites. The problem with them is that from outside, we can’t reach them so so how do we exploit them? Truffle Security decided to purchase a...

I find reports like this one very satisfying. In short, in GitHub’s commit signing flow, there were two different components and one of them extracted the email of the author regardless of whether there was a username while the regex in another component only accepted...

If you are not listening to the Critical Thinking Bug Bounty Podcast, you are missing out on tons of useful, intermediate to advanced bug bounty and web security tips. I do listen to every single episode. Recently, I played the one with Frans Rosen and, at times, it...