I did a trip to LA, San Francisco, San Jose, Las Vegas and New York. Too much to mention, but overall I loved it a lot. Nice cities, nice people everywhere.
Highlights of my trip were the visit to Paypal in San Jose, Defcon and the skydiving session in Vegas.
Just sharing some photos, hard to do massive upload of high quality photos..
You may want to start testing for bug bounty programs, you have a couple of hours, but not that many ideas in the beginning.
One tip that I recommend is to decide what BB you wanna approach and then get a list of bugs that you know were rewarded in the past. Then try to find similarities between these bugs and write it down. It’s good to take two bb programs so you can de-focus, get different perspectives. Also it will reduce the frustration when you don’t find any bug if you focus only in one area/BB.
So for what I described above I do for example:
1) Get a list of 10 bugs (as recent as possible) rewarded by Paypal (make sure these bugs are in scope too, because changes in the rules are often). In this particular case I sent often bugs to Paypal therefore I will use bugs from my own submissions
2)Get a list of 10 bugs from Google. Although I was rewarded a couple of times by Google is not my most comfortable BB program. So here I just Google it or look in other people’s blogs
Only these simple steps will help because:
I see many examples of rewarded bugs with final POC, or some description on a tool or some article on how someone found a bug etc, but not discussions about approaches in security bug bounties.
Like WHERE do you start from in looking for a vulnerability, WHEN do you try certain stuff and other stuff, WHAT do you look in a certain area, WHY do you do a specific action?
The final POC might be enough for the submission report, but it doesn’t tell that much on how you find it. You can get some ideas, but vague ones.
I don’t think it’s only that all bug hunters want to keep all their secrets. I believe they wanna share, but don’t know how. Also they don’t care about that much about the approach or identify it as a vital part. And even if you wanna keep some stuff, which is normal in any field, you still have a need to discuss with others about something you are not so sure about.
Here are some topics I would propose to look at:
And there would be more topics, but the examples given hopefully should give an idea on what I wanna say.
Very happy to be listed in the top 10 Paypal Wall of Fame – first quarter 2013. I think Paypal is the best bug bounty program and I am glad I participated in it from the first days of its launching.