Hunting Bugs In Real Life

September 23, 2020

96

Hunting Bugs In Real Life

akshat singhal

September 23, 2020

Tweet

Other Decks in Technology

See All in Technology

Master Dataグループ紹介資料

PRO

1

4k

Oracle Database@Google Cloud：サービス概要のご紹介

oracle4engineer

PRO

0

640

研究開発部メンバーの働き⽅ / Sansan R&D Profile

PRO

3

21k

【５分でわかる】セーフィーエンジニア向け会社紹介

0

37k

Ryzen NPUにおけるAI Engineプログラミング

0

210

こがヘンだよ！Snowflake?サービス名称へのこだわり

0

110

私のRails開発環境

0

180

段階的に進める、挫折しない自宅サーバ入門

5

2.2k

useEffectってなんで非推奨みたいなこと言われてるの？

maguroalternative

9

6.2k

.NET 10 のパフォーマンス改善

2

4.7k

eBPFとwaruiBPF

PRO

2

920

なぜ使われないのか？──定量×定性で見極める本当のボトルネック

PRO

1

760

Featured

See All Featured

Refactoring Trust on Your Teams (GOTO; Chicago 2020)

35

3.3k

Embracing the Ebb and Flow

88

4.9k

Save Time (by Creating Custom Rails Generators)

PRO

32

1.8k

Performance Is Good for Brains [We Love Speed 2024]

12

1.3k

The World Runs on Bad Software

PRO

72

12k

Automating Front-end Workflow

1371

200k

RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub

140

34k

Evolution of real-time – Irina Nazarova, EuRuKo, 2024

9

1.1k

I Don’t Have Time: Getting Over the Fear to Launch Your Podcast

34

2.5k

[RailsConf 2023 Opening Keynote] The Magic of Rails

31

9.8k

GraphQLとの向き合い方2022年版

50

14k

YesSQL, Process and Tooling at Scale

174

15k

Transcript

None
BUG BOUNTY WEBINAR
HUNTING BUGS IN REAL LIFE Akshat Singhal
Who am I • Bug crowd Top 700 Researcher –
All Time • Blogger • Bug Bounty Hunter • Speaker • Lifelong learner
@Akshat05623019 @akshat-singhal-90141716b @honeyakshat999 Get In Touch At @AkshatSinghal1 @AkshatSinghal @honeyakshat999
None
None
None
STORED DOM REFLECTED
None
None
SQL injection is a web security vulnerability that allows an
attacker to interfere with the queries that an application makes to its database.
▪ admin’—
None
None
TYPES HORIZONTAL VERTICAL
None
None
None
 CSRF + XSS --> Account Takeover  User enum.
+ IDOR --> All users compromise
None
         
None