Read on Twitter
Hello,
If you are just getting started into bug bounties and can't find enough resources, this thread might help you to find a way
If you are just getting started into bug bounties and can't find enough resources, this thread might help you to find a way
To get started into bug bounties , These two blogs are suggested to be read.
1. https://whoami.securitybreached.org/2019/06/03/guide-getting-started-in-bug-bounty-hunting/ by @KHIZER_JAVED47
and
2. https://0xprial.com/how-to-get-into-bug-bounties-part-01/
These covers a lot of the basics and will help you to get started with different bug classes.
1. https://whoami.securitybreached.org/2019/06/03/guide-getting-started-in-bug-bounty-hunting/ by @KHIZER_JAVED47
and
2. https://0xprial.com/how-to-get-into-bug-bounties-part-01/
These covers a lot of the basics and will help you to get started with different bug classes.
Learn and Practice More. These Resources are open playgrounds for learning and practicing:
1. @WebSecAcademy (My Most Favorite Free Lab)
2. @RealTryHackMe
3. @PentesterLab
Here you can learn and practice at a time.
1. @WebSecAcademy (My Most Favorite Free Lab)
2. @RealTryHackMe
3. @PentesterLab
Here you can learn and practice at a time.
And...
@BugBountyHunt3r is a standalone thing in my views, it's paid but worth every penny. It can get you from the beginning to a level where you get much confidence to get started with real world targets.
@BugBountyHunt3r is a standalone thing in my views, it's paid but worth every penny. It can get you from the beginning to a level where you get much confidence to get started with real world targets.
Wanting to deep dive into different bug classes?
1. Read Writeups from
@InfoSecComm
2. Read disclosed @Hacker0x01 reports
https://hackerone.com/hacktivity
3. @BugBountyHunt3r Has Compiled The H1 Reports and categorized them
https://www.bugbountyhunter.com/disclosed/ (1/2)
1. Read Writeups from
@InfoSecComm
2. Read disclosed @Hacker0x01 reports
https://hackerone.com/hacktivity
3. @BugBountyHunt3r Has Compiled The H1 Reports and categorized them
https://www.bugbountyhunter.com/disclosed/ (1/2)
4. @PentesterLand has a huge collection of writeups:
https://pentester.land/list-of-bug-bounty-writeups.html
(2/2)
https://pentester.land/list-of-bug-bounty-writeups.html
(2/2)
Youtube Channels?
1. @NahamSec (He Has Interviews with a lot of great hackers from the community)
2. @stokfredrik (His video will give you a lot of motivations and knowledge)
3. @InsiderPhD (Her Videos Will Help you to get started) [1/2]
1. @NahamSec (He Has Interviews with a lot of great hackers from the community)
2. @stokfredrik (His video will give you a lot of motivations and knowledge)
3. @InsiderPhD (Her Videos Will Help you to get started) [1/2]
4. @PwnFunction (He has great explained videos on different bug classes)
5. @TomNomNom also has a lot of great videos.
6. @zseano (He has great mentoring videos)
7. @0xReconless (He has a lot of great content out there)
5. @TomNomNom also has a lot of great videos.
6. @zseano (He has great mentoring videos)
7. @0xReconless (He has a lot of great content out there)
Some More In The List:
8. @codingo_ (He explains everything well
)
9. @hakluke (He Explains very well Too)
8. @codingo_ (He explains everything well
)9. @hakluke (He Explains very well Too)
Some FAQ:
1. Do I Need To Learn How To Code?
- Being able to read code is enough, get some basics and you are good to go. But Learning to code is really an advantage but not compulsory. As you will be dealing with web Knowing HTML,CSS and JS Basics are must (1/2)
1. Do I Need To Learn How To Code?
- Being able to read code is enough, get some basics and you are good to go. But Learning to code is really an advantage but not compulsory. As you will be dealing with web Knowing HTML,CSS and JS Basics are must (1/2)
2. When I have to shift to real world?
- There are no specific time for this. You have an idea how the website works and know how to look for some bugs. Just give it a try then. No one can learn anything perfectly without giving it a shot. (2/2)
- There are no specific time for this. You have an idea how the website works and know how to look for some bugs. Just give it a try then. No one can learn anything perfectly without giving it a shot. (2/2)
Still Need Some More Ways To Get Writeups?
No Tension @payloadartist Here with a solution.
Visit https://www.bugbountyhunting.com/ and Search by any Bug Name and Boom!
No Tension @payloadartist Here with a solution.
Visit https://www.bugbountyhunting.com/ and Search by any Bug Name and Boom!
Learnt some bugs?
Here you go.. You will find ways of how to hunt for them and also their bypasses :
https://github.com/KathanP19/HowToHunt
by @KathanP19 and Contributed by the Community
Here you go.. You will find ways of how to hunt for them and also their bypasses :
https://github.com/KathanP19/HowToHunt
by @KathanP19 and Contributed by the Community
