Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Hunting Bugs In Real Life

Avatar for akshat singhal akshat singhal
September 23, 2020
Technology
100
0

Hunting Bugs In Real Life

Avatar for akshat singhal

akshat singhal

September 23, 2020

Other Decks in Technology

See All in Technology
Gaussian Splattingの実用化 - 映像制作への展開
Avatar for GPU UNITE gpuunite_official
0
150
オライリーイベント登壇資料「鉄リサイクル・産廃業界におけるAI技術実応用のカタチ」
Avatar for Takumi Karasawa takarasawa_
0
380
20260507-ACL-seminar
Avatar for Satoshi5884 satoshi5884
0
110
2026-05-14 要件定義からソース管理まで!IBM Bob基礎ハンズオン
Avatar for YutaNonaka yutanonaka
0
140
Sociotechnical Architecture Reviews: Understanding Teams, not just Artefacts
Avatar for Eberhard Wolff ewolff
1
160
SREの仕事は「壊さないこと」ではなくなった 〜自律化していくシステムに、責任と判断を与えるという価値〜 / 20260515 Naoki Shimada
Avatar for SHIFT EVOLVE shift_evolve
PRO
1
130
「背中を見て育て」からの卒業 〜専門技術としてのテスト設計を軸に、品質保証のバトンを繋ぐ〜 #genda_tech_talk
Avatar for nihonbuson nihonbuson
PRO
3
1.2k
エージェント時代の UIとAPI、CLI戦略
Avatar for coincheck coincheck_recruit
0
170
AI時代に、 データアナリストがデータエンジニアに異動して
Avatar for jackojacko_ jackojacko_
0
730
フロントエンドの相手が変わった - AIが加わったWebの新しいインターフェース設計
Avatar for azukiazusa azukiazusa1
33
11k
Forget technical debt
Avatar for Uwe Friedrichsen ufried
0
180
AI時代の品質はテストプロセスの作り直し #scrumniigata
Avatar for kyonmm kyonmm
PRO
4
1.5k

Featured

See All Featured
Helping Users Find Their Own Way: Creating Modern Search Experiences
Avatar for Dan Newman danielanewman
31
3.2k
Leo the Paperboy
Avatar for Maya Tellez mayatellez
7
1.7k
A brief & incomplete history of 
UX Design for the World Wide Web: 1989–2019
Avatar for Jason CranfordTeague jct
1
370
Why You Should Never Use an ORM
Avatar for John Nunemaker jnunemaker
PRO
61
9.8k
Docker and Python
Avatar for Tania Allard trallard
47
3.8k
GraphQLとの向き合い方2022年版
Avatar for Yosuke Kurami quramy
50
15k
BBQ
Avatar for Matthew Crist matthewcrist
89
10k
Jamie Indigo - Trashchat’s Guide to Black Boxes: Technical SEO Tactics for LLMs
Avatar for Tech SEO Connect techseoconnect
PRO
0
130
Building Flexible Design Systems
Avatar for Yesenia Perez-Cruz yeseniaperezcruz
330
40k
How to Grow Your eCommerce with AI & Automation
Avatar for Katarina Dahlin katarinadahlin
PRO
1
180
How to audit for AI Accessibility on your Front & Back End
Avatar for davetheseo davetheseo
0
360
New Earth Scene 8
Avatar for Sydney Stone popppiees
3
2.2k

Transcript

  1. None

  2. BUG BOUNTY WEBINAR

  3. HUNTING BUGS IN REAL LIFE Akshat Singhal

  4. Who am I • Bug crowd Top 700 Researcher –

    All Time • Blogger • Bug Bounty Hunter • Speaker • Lifelong learner

  5. @Akshat05623019 @akshat-singhal-90141716b @honeyakshat999 Get In Touch At @AkshatSinghal1 @AkshatSinghal @honeyakshat999

  6. None
  7. None
  8. None

  9. STORED DOM REFLECTED

  10. None
  11. None

  12. SQL injection is a web security vulnerability that allows an

    attacker to interfere with the queries that an application makes to its database.

  13. ▪ admin’—

  14. None
  15. None

  16. TYPES HORIZONTAL VERTICAL

  17. None
  18. None
  19. None

  20.  CSRF + XSS --> Account Takeover  User enum.

    + IDOR --> All users compromise
  21. None

  22.          

  23. None