Monday, April 14, 2014

Bug Bounty Workshop @n|u Hyderabad

I happen to be a part of Bug Bounty workshop taken by Abhijeth Dugginapeddi (@abhijeth) at n|u hyderabad which motivated me to start hunting for bugs and eventually adding more significance to my alias 'bugasur' :) Hereby I am listing down my learning from the workshop.

Bug Bounty is about targeting a domain which nobody else probably has found out !

Following are some tips / information-
  • Finding a sub domain using techniques such as reverse ip, sites DNS, google dorks, netcraft.com, whois.net, pentest-tools.com/reconnaissance, myip.ms, yougetsignal.com or using knock tool. As per Abhijeth Bing has proven good for sub domain search !
  • Using combination of IronWASP & Xenotix XSS Exploit Framework for low hanging fruits. Throttle the speed / threads and be sure not to violate bug bounty terms and conditions.
  • Bugcrowd, HackerOne, CrowdCurity are some of bug hunting portals you can try out but as the crowd goes higher, you may get duplicates or find less bugs. Therefore you could use Google dorks such as inurl:/security or bug bounty or responsible disclosure or intitle:/hall of fame, change the search settings by searching for past hour or week and participate in new latest bug bounty programs which are not yet listed on portals such as bug crowd ! Some new bounty programs at the time of writing this post are magento, flodesk, soundcloud, mega.co.nz, gostorego.
  • Bugcrowd comes to know about bug bounty programs when researchers tweet about it !
  • Bitcoin Websites can pay you huge bounties ! 1 bitcoin value can go up to 40-50K $ !
  • Target Mobile Applications when the world is running after web applications !
To be continued...

1 comment :