3264
Talk and help about bugbounty
Depends on the company and based on the roadmap. They might have it on their list of “to-dos”. Every company assesses bugs differently and where they fall on low - critical. I’ve worked for huge companies and things we might think of as “big” in reality isn’t for them
Читать полностью…
The best way to determine it is to ask the bb team about it. In normal bb programms it's normal to define the scope, if it's not clear, you may just ask the bb managing team, if it's ok to work on the exact entity.
Читать полностью…
I have a question in the target im working on it looks like the domain is actually a subdomain. They provided it in the format of “sub.domain.gov.sa” does that mean subdomains under “domain.gov.sa” are out of the scope?
Читать полностью…
Please why is it difficult to install graphql Damn Vulnerable graphql app. Please has anyone successfully done so and how
Читать полностью…
u must be unique and think about of the box don't strictly follow someone's method or just run different scanner without understanding shit
Читать полностью…
https://www.instagram.com/reel/CwGScWAKWGt/?igshid=NjIwNzIyMDk2Mg==
New bug bounty program - Maximum bounty: $10,000
The community trusts our services to keep their information safe.
Maximum bounty: $10,000
Minor vulnerabilities: $50Low severity vulnerabilities that: $50
Moderate severity vulnerabilities: $200Lead to data corruption: $200
Lead to the disclosure: $1,000+
https://www.cyberhat.online/en/post/p-bug-bounty-programw
https://www.cyberhat.online/en/post/kraken-earn-bitcoin-by-finding-security-bugs
Читать полностью…
Does somebody know if Hackerone shows scopes (inside a program) depending from the geolocation? Today I was reviewing a program with a colleague from a different country and the in-scope asset points were different
Читать полностью…
https://twitter.com/elaminachour/status/1691133404467589120?t=pYV9oL5MqUsPwkzm18byqA&s=19
Читать полностью…
https://youtube.com/shorts/OTyHNOfdKXc?feature=share8
Читать полностью…
After XSS vulnerabilities are reported, how long does it take to fix it? There is a duplicate report from another report two months ago. Why did it take so long and it wasn't fixed??
Читать полностью…
i get 3 vulns to target cracking aws smtp for email spamming anyone inetrresent dm me to work
Читать полностью…
https://vijetareigns.medium.com/pre-account-takeover-using-oauth-misconfiguration-ebd32b80f3d3
Читать полностью…
Amazon pay balance to bank transfer
t.me/amazonpaytransfer
Hey bro i am new to bug bounty can you tell me how to learn all the parameters of finding bugs
Читать полностью…
Hey guys, I’m new to bug bounty and i was wondering is there any standards for writing the report? Or any templates i can look at
Читать полностью…
https://youtube.com/shorts/i865EpdCRHk?feature=share
Читать полностью…
The Digital Personal Data Protection Bill, 2023
The Digital Personal Data Protection Bill, 2023, introduced in India, aims to regulate processing of digital personal data. It applies to data collected online or offline and digitized, including data processing outside India for offering goods/services in India. Consent for lawful data processing is required, except for specific legitimate uses. The Bill establishes rights for individuals and a Data Protection Board, but lacks provisions for harm regulation, data portability, and the right to be forgotten. It permits data transfer outside India with restrictions. Concerns include potential privacy violations due to State exemptions and short appointment terms for Board members.
READ MORE :
https://prsindia.org/billtrack/digital-personal-data-protection-bill-2023
Anyone interested in OSCP , GPEN , OSWE , OSCE , Pentest+ , CEH certification ?
Читать полностью…
Want to dig into it?
Book it here: https://topmate.io/vijeta/486404