Our Hacker of the episode is "Vickie lii"! Vickie tells us about Bug Bounties, her new book and information security. 
Tune in now!

In this episode we cover:
Background, getting into security
Getting into Bug Bounty 
First Bug bounty 
Hackerone, Bug crowd
Reporting Security Bugs
Coordinating bug bounties  
Life as a bug bounty hunter
Interaction with engineers
Bug bounty bootcamp Book
Security as a hobby
Writing Books
How to hack web applications  
Vickie's favourite types of Vulnerabilities   
Template injection
IDOR
Writers block
Nostarch  
Book Publishing  
Bug bounty tools
Python and Bash   
Make bug bounties more enjoyable 
Portswinger Lab
Finding low hanging fruits  
legal harbor 
Caring about security researchers  


Links:
https://twitter.com/vickieli7   
https://en.wikipedia.org/wiki/Bug_bounty_program
https://vickieli.dev/  
https://portswigger.net/web-security/all-labs   
https://portswigger.net/research/server-side-template-injection
https://www.geeksforgeeks.org/insecure-direct-object-reference-idor-vulnerability/   
https://nostarch.com/bug-bounty-bootcamp

Grab a copy of Vickie's book:
https://www.amazon.com/Bug-Bounty-Bootcamp-Reporting-Vulnerabilities-ebook/dp/B08YK368Y3

Ver todos los episodios