14 episodios
Bug Bounty Reports Discussed Grzegorz Niedziela
-
- Tecnología
From Bug Bounty Reports Discussed podcast you can learn from the best bug bounty hunters in the world. I ask them about their methodologies, tools they use, the advice they give to beginners and many more... Subscribe to never miss an episode!
-
The secret to finding many Criticals - Alex Chapman
📧 Subscribe to BBRE Premium: https://bbre.dev/premium
✉️ Sign up for the mailing list: https://bbre.dev/nl
📣 Follow me on Twitter: https://bbre.dev/tw
📣 Follow Alex on Twitter: https://x.com/ajxchapman
In this episode I'm interviewing Alex Chapman - a full-time bug bounty hunter known for finding many high-impact bugs and very little medium and low-impact ones.
BBRD podcast is also available on most popular podcast platforms:
https://open.spotify.com/show/6tLoJ5foOoZPPELwrHPBO4
https://podcasts.google.com/feed/aHR0cHM6Ly93d3cuc3ByZWFrZXIuY29tL3Nob3cvNTA3Mzc4MS9lcGlzb2Rlcy9mZWVk
https://podcasts.apple.com/us/podcast/bug-bounty-reports-discussed/id1583400215?uo=4
Timestamps:
00:00 Intro
0:22 How did Alex start with cybersecurity and bug bounty?
3:05 Alex' uique hacking style
19:18 Source code review tips
28:37 How to write a good bug bounty report?
45:52 Finding bugs in desktop applications
52:15 LHEs
1:00:57 Live of a full-time bug bounty hunter -
How I got into cybersecurity and bug bounty?
In this episode, I'm talking about my story of getting into cybersecurity - what got me interested, how I became a pentester, what motivated my to create my channel and finally, how I became a bug bounty hunter.
-
Find more clients and improve in pentesting - Cristi Vlad
In this episode of the podcast, I'm interviewing Cristi Vlad about bug bounty and pentesting - the differences, ways to build your network of clients, continuous learning and more.
-
All you need to know about being a full-time bug bounty hunter - Justin “rhynorater” Gardner
In this episode of the podcast, I interview Justin Gardner, the host of the Critical Thinking Bug Bounty Podcast who's been a full-time hunter for about 4 years. We talk about his methodology, tooling and many more!
-
AI and hacking - opportunities and threats - Joseph “rez0” Thacker
📧 Subscribe to BBRE Premium: https://bbre.dev/premium
📖 Check out AppSecEngineer, the sponsor of today's video: https://www.appsecengineer.com
📣 Follow GUEST on Twitter: https://twitter.com/@rez0
✉️ Sign up for the mailing list: https://bbre.dev/nl
📣 Follow me on Twitter: https://bbre.dev/tw
In this interview we are discussing with rez0 a range of topics around AI - the new vulnerability opportunities it created, how can I help us in hacking and if it will replace us in the future.
Resources and people mentioned in the podcast:
https://olickel.com/everything-i-know-about-prompting-llms
https://www.anthropic.com/index/prompting-long-context
https://simonwillison.net
https://llm-attacks.org/zou2023universal.pdf
http://llm-attacks.org
BBRD podcast is also available on most popular podcast platforms:
https://open.spotify.com/show/6tLoJ5foOoZPPELwrHPBO4
https://podcasts.google.com/feed/aHR0cHM6Ly93d3cuc3ByZWFrZXIuY29tL3Nob3cvNTA3Mzc4MS9lcGlzb2Rlcy9mZWVk
https://podcasts.apple.com/us/podcast/bug-bounty-reports-discussed/id1583400215?uo=4
Timestamps:
00:00 Intro
00:32 Check out AppSecEngineer, the sponsor of this podcast
01:36 rez0's regular bug bounty hacking style
22:39 AI and hacking -
From reporting self-XSSes to improving browser security mechanisms - Michał Bentkowski
In this episode, I interview Michał Bentkowski who specializes in crazy XSS bugs and now works on improving security of the browsers at Google.