Our Hacker of the episode is "Vickie lii"! Vickie tells us about Bug Bounties, her new book and information security.
Tune in now!
In this episode we cover:
Background, getting into security
Getting into Bug Bounty
First Bug bounty
Hackerone, Bug crowd
Reporting Security Bugs
Coordinating bug bounties
Life as a bug bounty hunter
Interaction with engineers
Bug bounty bootcamp Book
Security as a hobby
Writing Books
How to hack web applications
Vickie's favourite types of Vulnerabilities
Template injection
IDOR
Writers block
Nostarch
Book Publishing
Bug bounty tools
Python and Bash
Make bug bounties more enjoyable
Portswinger Lab
Finding low hanging fruits
legal harbor
Caring about security researchers
Links:
https://twitter.com/vickieli7
https://en.wikipedia.org/wiki/Bug_bounty_program
https://vickieli.dev/
https://portswigger.net/web-security/all-labs
https://portswigger.net/research/server-side-template-injection
https://www.geeksforgeeks.org/insecure-direct-object-reference-idor-vulnerability/
https://nostarch.com/bug-bounty-bootcamp
Grab a copy of Vickie's book:
https://www.amazon.com/Bug-Bounty-Bootcamp-Reporting-Vulnerabilities-ebook/dp/B08YK368Y3
