Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Hunting Bugs In Real Life
Search
Sponsored
·
Ship Features Fearlessly
Turn features on and off without deploys. Used by thousands of Ruby developers.
→
akshat singhal
September 23, 2020
Technology
0
100
Hunting Bugs In Real Life
akshat singhal
September 23, 2020
Tweet
Share
Other Decks in Technology
See All in Technology
AI活用を"目的"にしたら、データの本質が見えてきた - Snowflake Intelligence実験記 / chasing-ai-finding-data
pei0804
0
460
Three-Legged OAuth in AgentCore Gateway
hironobuiga
2
190
opsmethod第1回_アラート調査の自動化にむけて
yamatook
0
280
LINEヤフーにおけるAI駆動開発組織のプロデュース施策
lycorptech_jp
PRO
0
130
欲しいを叶える個人開発の進め方 / How to Run an Indie Project That Brings Your Ideas to Life
endohizumi
0
340
NW構成図の自動描画は何が難しいのか?/netdevnight3
corestate55
2
360
30分でわかるアーキテクチャモダナイゼーション
nwiizo
7
3.5k
「OSアップデート:年に一度の「大仕事」を乗り切るQA戦略」_Mobile Tech Flex 〜4社合同!私たちのモバイル開発自慢大会〜
gu3
0
220
バイブコーディングで作ったものを紹介
tatsuya1970
0
180
AWS Bedrock Guardrails / 機密情報の入力・出力をブロックする — Blocking Sensitive Information Input/Output
kazuhitonakayama
2
170
AWS CDK の目玉新機能「Mixins」とは / cdk-mixins
gotok365
2
250
『誰の責任?』で揉めるのをやめて、エラーバジェットで判断するようにした ~感情論をデータで終わらせる、PMとエンジニアの意思決定プロセス~
coconala_engineer
0
1.7k
Featured
See All Featured
Ecommerce SEO: The Keys for Success Now & Beyond - #SERPConf2024
aleyda
1
1.8k
Designing for Performance
lara
611
70k
Digital Projects Gone Horribly Wrong (And the UX Pros Who Still Save the Day) - Dean Schuster
uxyall
0
530
Six Lessons from altMBA
skipperchong
29
4.2k
Designing Powerful Visuals for Engaging Learning
tmiket
0
250
Navigating Algorithm Shifts & AI Overviews - #SMXNext
aleyda
1
1.1k
Jamie Indigo - Trashchat’s Guide to Black Boxes: Technical SEO Tactics for LLMs
techseoconnect
PRO
0
75
Why Your Marketing Sucks and What You Can Do About It - Sophie Logan
marketingsoph
0
85
Accessibility Awareness
sabderemane
0
68
Chrome DevTools: State of the Union 2024 - Debugging React & Beyond
addyosmani
10
1.1k
Keith and Marios Guide to Fast Websites
keithpitt
413
23k
How Software Deployment tools have changed in the past 20 years
geshan
0
32k
Transcript
None
BUG BOUNTY WEBINAR
HUNTING BUGS IN REAL LIFE Akshat Singhal
Who am I • Bug crowd Top 700 Researcher –
All Time • Blogger • Bug Bounty Hunter • Speaker • Lifelong learner
@Akshat05623019 @akshat-singhal-90141716b @honeyakshat999 Get In Touch At @AkshatSinghal1 @AkshatSinghal @honeyakshat999
None
None
None
STORED DOM REFLECTED
None
None
SQL injection is a web security vulnerability that allows an
attacker to interfere with the queries that an application makes to its database.
▪ admin’—
None
None
TYPES HORIZONTAL VERTICAL
None
None
None
CSRF + XSS --> Account Takeover User enum.
+ IDOR --> All users compromise
None
None
pei0804
hironobuiga
yamatook
lycorptech_jp
endohizumi
corestate55
nwiizo
gu3
tatsuya1970
kazuhitonakayama
gotok365
coconala_engineer
aleyda
lara
uxyall
skipperchong
tmiket
techseoconnect
marketingsoph
sabderemane
addyosmani
keithpitt
geshan
