Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Hunting Bugs In Real Life

Avatar for akshat singhal akshat singhal
September 23, 2020
Technology
0
92

Hunting Bugs In Real Life

Avatar for akshat singhal

akshat singhal

September 23, 2020
Tweet

Other Decks in Technology

See All in Technology
社内 Web システムのフロントエンド技術刷新: React Router v7 vs. TanStack Router
Avatar for Shuntaro Murakami musasabibyun
0
140
MySQL InnoDB Data Recovery - The Last Resort
Avatar for lefred lefred
0
110
Kaigi Effect 2025 #rubykaigi2025_after
Avatar for sue445 sue445
0
110
AIにおけるソフトウェアテスト_ver1.00
Avatar for fumisuke fumisuke
1
370
Simplify! 10 ways to reduce complexity in software development
Avatar for Uwe Friedrichsen ufried
2
240
経済メディア編集部の実務に小さく刺さるAI / small-ai-with-editorial
Avatar for Yukiya Nakagawa nkzn
2
260
グループ ポリシー再確認 (2)
Avatar for Murachi Akira murachiakira
0
230
newmo の創業を支える Software Architecture と Platform Engineering
Avatar for Yuki Ito 110y
2
400
Previewでもここまで追える! Azure AI Foundryで始めるLLMトレース
Avatar for Tomodo_ysys tomodo_ysys
2
630
Compose におけるパスワード自動入力とパスワード保存
Avatar for tonionagauzzi tonionagauzzi
0
210
Why Platform Engineering? - マルチプロダクト・少人数 SRE の壁を越える挑戦 -
Avatar for 株式会社ヌーラボ nulabinc
PRO
4
380
Serverlessだからこそコードと設計にはこだわろう
Avatar for Ken'ichirou Kimura kenichirokimura
2
950

Featured

See All Featured
A designer walks into a library…
Avatar for Paul Jervis Heath pauljervisheath
205
24k
Sharpening the Axe: The Primacy of Toolmaking
Avatar for Bryan Cantrill bcantrill
41
2.3k
Done Done
Avatar for chrislema chrislema
184
16k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
Avatar for Joe Casabona jcasabona
32
2.3k
How to Think Like a Performance Engineer
Avatar for Harry Roberts csswizardry
23
1.6k
What's in a price? How to price your products and services
Avatar for Michael Herold michaelherold
245
12k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
Avatar for Eileen M. Uchitelle eileencodes
137
33k
A Modern Web Designer's Workflow
Avatar for Chris Coyier chriscoyier
693
190k
The Invisible Side of Design
Avatar for Vitaly Friedman smashingmag
299
50k
Rails Girls Zürich Keynote
Avatar for Gregor Martynus gr2m
94
13k
Unsuck your backbone
Avatar for Amy Palamountain ammeep
671
58k
Chrome DevTools: State of the Union 2024 - Debugging React & Beyond
Avatar for Addy Osmani addyosmani
5
600

Transcript

  1. None

  2. BUG BOUNTY WEBINAR

  3. HUNTING BUGS IN REAL LIFE Akshat Singhal

  4. Who am I • Bug crowd Top 700 Researcher –

    All Time • Blogger • Bug Bounty Hunter • Speaker • Lifelong learner

  5. @Akshat05623019 @akshat-singhal-90141716b @honeyakshat999 Get In Touch At @AkshatSinghal1 @AkshatSinghal @honeyakshat999

  6. None
  7. None
  8. None

  9. STORED DOM REFLECTED

  10. None
  11. None

  12. SQL injection is a web security vulnerability that allows an

    attacker to interfere with the queries that an application makes to its database.

  13. ▪ admin’—

  14. None
  15. None

  16. TYPES HORIZONTAL VERTICAL

  17. None
  18. None
  19. None

  20.  CSRF + XSS --> Account Takeover  User enum.

    + IDOR --> All users compromise
  21. None

  22.          

  23. None