Bug Bounty bootcamp // Get paid to hack websites like Uber, PayPal, TikTok and more
How to get experience with no experience? Have a look at bug bounty programs. Vickie Li demos Insecure Direct Object References (IDOR) and tells us how to get into bug bounty. We also discuss why her book Bug Bounty Bootcamp is a fantastic book to buy if you want to get into bug bounty. Get real world experience today.
// MENU //
00:00 - In plain text!
00:24 - Introducing//Vickie Li
00:58 - Part 1//The Interview
01:01 - Origin//Bug Bounty Bootcamp
03:37 - What are Bug Bounty Programmes?
05:26 - Part Time Bug Hunting?
05:44 - Easy Way to Get Experience
07:45 - Which Bug Bounty Programmes for B…
Watch on YouTube ↗
(saves to browser)
Chapters (36)
In plain text!
0:24
Introducing//Vickie Li
0:58
Part 1//The Interview
1:01
Origin//Bug Bounty Bootcamp
3:37
What are Bug Bounty Programmes?
5:26
Part Time Bug Hunting?
5:44
Easy Way to Get Experience
7:45
Which Bug Bounty Programmes for Beginners?
10:51
Beginners//Don't Compete with Pros
13:15
Duplicates as Valid Experience
14:23
What You Need to Start
14:59
Linux//Do You Need It?
15:55
Automate!//Which Programming Language?
18:03
Beginner Friendly Vulnerabilities
21:17
Part 2//Exploiting IDOR Vulnerability Demo
21:24
What is IDOR?
22:51
PortSwigger IDOR Lab
24:05
Live Chat IDOR
24:48
View transcript
25:12
Burp Suite Intercept
26:05
What to Look For//IDs Aren't Always Obvious
26:56
Burp Suite//Looking Through Headers
27:56
Burp Suite//Repeater
28:30
Testing View Transcript Again
29:18
GET Request//Identifying Exploitable Endpoint
30:26
Modifying GET Request
31:35
Finding the right headers to modify
33:47
Why the first attempt didn't work
34:09
IRL//What You Would Do
34:23
Password in Live Chat Transcript
35:40
How to Prevent IDORs
36:01
IDORs//Worth Pursuing?
39:57
Bug Bounties//How to Start
41:21
Learn More!//Vickie's Blog
41:38
Follow Vickie's Twitter!
41:52
Thank You & Closing
Playlist
Uploads from David Bombal · David Bombal · 0 of 60
← Previous
Next →
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
RYU SDN Controller Part 3: OpenFlow 1.3: Practical GNS3 SDN and OpenFlow
David Bombal
RYU SDN Controller Part 4: Graphical User Interface (GUI): Practical GNS3 SDN and OpenFlow
David Bombal
GNS3 Talks: IOSvL2 switching appliance import & configuration
David Bombal
HPE Network Protector SDN Application Part 1 - Introduction
David Bombal
HPE Network Protector SDN Application Part 2 : DNS Interception using OpenFlow
David Bombal
HPE Network Protector SDN Application Part 3 - Lab Setup using Physical Switches
David Bombal
HPE Network Protector SDN Application Part 4 - Demo of malicious websites blocked
David Bombal
HPE Network Protector SDN Application Part 5 - Demo OpenFlow table interception flows
David Bombal
HPE Network Protector SDN Application Part 6 - Demo of Physical Switch configuration
David Bombal
GNS3 Talks: IOSv Appliance - get IOS 15.X on GNS3
David Bombal
HPE Network Protector SDN Application Part 7 - Demo Service Insertion Tunnel / GRE Tunnel
David Bombal
HPE Network Protector SDN Application Part 8 - Demo SDN OpenFlow Reporting
David Bombal
HPE Network Protector SDN Application Part 9 - Demo switches interception of DNS traffic
David Bombal
GNS3 Talks: GNS3 version 1.5.X Appliance Tips
David Bombal
CCNA 200-125 Exam: AAA demo: TACACS+ with GNS3
David Bombal
CCNA 200-125 Exam: PPPoE Server Demo with GNS3
David Bombal
CCNA VLOG #001: Troubleshooting OSPF for the CCNA 120-125 exam
David Bombal
CCNA VLOG #002: Q&A: Loopback? What? Why? CCNA 120-125 questions
David Bombal
GNS3 Talks: Install GNS3 1.5.X on a Mac with GNS3 VM
David Bombal
CCNA VLOG #003: What's your name? That won't work! CCNA Troubleshooting
David Bombal
CCNA VLOG #004: IP default gateway versus default route
David Bombal
CCNA VLOG #005: Why is the network broken? CCNA 200-125 Troubleshooting
David Bombal
CCNA VLOG #006: Troubleshoot Telnet issues in preparation for the CCNA 200-125 exam
David Bombal
CCNA VLOG #007: BGP configuration and verification for the CCNA 200-125 exam
David Bombal
CCNA VLOG #008: BGP troubleshooting for the CCNA 200-125 exam
David Bombal
CCNA VLOG #009: BGP troubleshooting 2 - lost BGP route - CCNA 200-125 exam
David Bombal
GNS3 2.0.0 beta 2 install
David Bombal
CCNA VLOG #010: Q&A: Loopbacks? Another good reason to use loopbacks! CCNA 120-125
David Bombal
CCNA VLOG #011: BGP troubleshooting 3 - Neighbor down! CCNA 200-125 exam
David Bombal
CCNA #012: Learn SNMP with GNS3, Wireshark and Solarwinds NPM - CCNA 200-125 exam
David Bombal
CCNA #013: Spanning Tree CCNA Exam Questions: Know the answer? CCNA 200-125 exam
David Bombal
CCNA #014: Routing decisions? OSPF or EIGRP? CCNA 200-125 exam questions
David Bombal
CCNA #015: DHCP Server and client configuration using Cisco IOS: CCNA 200-125 exam
David Bombal
CCNA #016: OSPF, EIGRP, RIP or Static Routes? Routing decisions? CCNA 200-125 exam
David Bombal
GNS3 2.0.0 beta : GNS3 VM integration with GNS3 GUI
David Bombal
CCNA #017: What is a RIB Failure? EBGP versus IBGP? CCNA 200-125 exam questions
David Bombal
CCNA #018: Routing exam questions: Who wins? OSPF, EIGRP or RIP? Sure? CCNA 200-125 exam
David Bombal
CCNA #019: Spanning Tree CCNA Exam Questions: Root Bridge, Root Port and more: CCNA 200-125 exam
David Bombal
CCNA #020: Static NAT Demo: CCNA 200-125 exam
David Bombal
GNS3 Talks: GNS3 and Physical device OSPF route exchange
David Bombal
GNS3 Download, installation and configuration - GNS3 1.5.3 and Windows 10
David Bombal
ESXi Part 1: GNS3, VMware ESXi and the GNS3 VM
David Bombal
CCNA VLOG #021 EIGRP Neighbor Troubleshooting: Debugs show not common Subnet: CCNA 200-125 Exam
David Bombal
ESXi Part 2: GNS3, VMware ESXi and the GNS3 VM
David Bombal
ESXi Part 3: GNS3, VMware ESXi and the GNS3 VM
David Bombal
ESXi Part 4: GNS3, VMware ESXi and the GNS3 VM
David Bombal
CCNA #022 EIGRP Neighbor Troubleshooting for the CCNA 200-125 Exam
David Bombal
GNS3 VM Integration: GNS3 1.5.3, VMware and Windows 10 with GNS3 Talks
David Bombal
GNS3 GUI and VM upgrade on Windows: How to upgrade to 1.5.3 (includes GNS3 VM upgrade process)
David Bombal
CCNA #023 EIGRP Neighbor Troubleshooting (DUAL Issues) for the CCNA 200-125 Exam
David Bombal
CCNA #024 EIGRP Retransmission retry limit exceeded? EIGRP Neighbor Troubleshooting CCNA
David Bombal
GNS3 Talks: Integrate Windows Virtual Machine with GNS3 = GNS3+GNS3 VM + Windows 10 VM + Cisco
David Bombal
GNS3 GUI and VM upgrade on Mac OS X: How to upgrade to 1.5.3 (includes GNS3 VM upgrade process)
David Bombal
CCNA #025 EIGRP Neighbor Troubleshooting for the CCNA 200-125 Exam
David Bombal
CCNA #026 EIGRP Neighbor Troubleshooting (no neighbors) for the CCNA 200-125 Exam
David Bombal
GNS3 2.0 Architecture and schema Part 1: What is the GNS3 Controller?
David Bombal
GNS3 2.0 Architecture and schema Part 2: Emulators and virtualization
David Bombal
CCNA #027 200-125 Exam: MAC OS Simulator - are you ready for exam sims?
David Bombal
GNS3 Talks: Mac OS with Windows 10 Virtual Machine = Mac+GNS3+GNS3 VM+Windows 10 VM+Cisco
David Bombal
GNS3 2.0 New Features: Smart packet capture and capture on any link
David Bombal
DeepCamp AI