Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
The Bug Hunter’s Recon Methodology
Search
Tushar Verma
August 08, 2021
Technology
800
2
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
The Bug Hunter’s Recon Methodology
Tushar Verma
August 08, 2021
More Decks by Tushar Verma
See All by Tushar Verma
The Power of Recon_ Leveraging Recon for Easy $$$$
e11i0t_4lders0n
0
230
AWS Cloud Forensics & Incident Response
e11i0t_4lders0n
1
730
Hacking OAuth Applications
e11i0t_4lders0n
1
2.1k
Exploiting SSRF like a Boss
e11i0t_4lders0n
2
1.1k
How to Fail at Bug Bounty Hunting
e11i0t_4lders0n
1
1.7k
METHODOLOGIES AND APPROACH TO START BUG BOUNTY HUNTING
e11i0t_4lders0n
0
620
Bypassing 2FA Misconfiguration
e11i0t_4lders0n
1
2.4k
How to get started in bug bounty
e11i0t_4lders0n
1
510
Other Decks in Technology
See All in Technology
AIAU_UMEMOGU_ninomiya_slide
ninomiya_ii
0
240
あなたの知らないPDFのアクセシビリティ
lycorptech_jp
PRO
0
220
Kubernetesにおける学習基盤とLLMOpsの概要
ry
1
320
徹底討論!ECS vs EKS!
daitak
0
230
不要なレビューをAIにまかせて AIコーディングの環境改善を加速した
shoota
1
230
秘密度ラベル初心者が第1歩でつまづかないための「設計・運用」ポイント
seafay
PRO
0
210
フィジカル版Github Onshapeの紹介
shiba_8ro
0
290
就職⽀援サービスにおけるキャリアアドバイザーのシフトスケジューリング
recruitengineers
PRO
1
150
GitHub Copilot app最速の発信の裏側
tomokusaba
1
190
アンオフィシャルな、オフィシャルからのお願い
wyamazak_devrel
0
140
AIのReact習熟度を測る
uhyo
2
650
データサイエンスを価値につなげるプロジェクト設計 〜 DS一年目が現場で得た気づき 〜
ysd113
1
280
Featured
See All Featured
Claude Code のすすめ
schroneko
67
230k
Fashionably flexible responsive web design (full day workshop)
malarkey
408
66k
Building Applications with DynamoDB
mza
96
7.1k
Raft: Consensus for Rubyists
vanstee
141
7.5k
A better future with KSS
kneath
240
18k
Everyday Curiosity
cassininazir
0
230
The Illustrated Guide to Node.js - THAT Conference 2024
reverentgeek
1
390
The Illustrated Children's Guide to Kubernetes
chrisshort
51
52k
How GitHub (no longer) Works
holman
316
150k
The Director’s Chair: Orchestrating AI for Truly Effective Learning
tmiket
1
200
JAMstack: Web Apps at Ludicrous Speed - All Things Open 2022
reverentgeek
1
480
Measuring & Analyzing Core Web Vitals
bluesmoon
9
870
Transcript
The Bug Hunter’s Recon Methodology By: Tushar Verma
Whoami Application Security Engineer Synack Red Team Member Bug Bounty
Hunter Infosec Trainer & Speaker
Agenda Scope Review for any program Before Recon After Recon
Scope- based Recon Basic Methodolog y Tools and Automation frameworks
Scope review for any program • Assets • No of
reports resolved • Payout • Time to triage and Time to Bounty
Before Recon • Company name • Available scope • Overview
about the company business • Information from program page related to security purposes
After recon • Service info • Backend technology used •
Interesting Endpoints • Juicy links which may be vulnerable • More and more
Scope based recon • Small Scope Target-Single URL like domain
and subdomain(Ex. evil.com , info.evil.com • Medium Scope Target-Lists of subdomains(Ex. *.evil.com) • Large Scope Target-All website related to company is in scope
Basic Methodology Target : *.evil.com
Tools and Automation Framework ReconF TW Project Bheem Osmed eus
Get in touch at • Twitter: @e11i0t_4lders0n • LinkedIn: /in/tushars25
• Instagram: @e11i0t_4lders0n__ • Email:
[email protected]
Thank you
e11i0t_4lders0n
ninomiya_ii
lycorptech_jp
ry
daitak
shoota
seafay
shiba_8ro
recruitengineers
tomokusaba
wyamazak_devrel
uhyo
ysd113
schroneko
malarkey
mza
vanstee
kneath
cassininazir
reverentgeek
chrisshort
holman
tmiket
bluesmoon
