The 5 Hacking NewsLetter 1

T5HN1.png

Hi, I’m very happy to present you the first edition of The 5 Hacking NewsLetter! The idea behind it is to share with you every week the 5 coolest things related to hacking/pentest/bug bounty that I came across and enjoyed. I got the idea from Tim Ferris’s 5 bullet friday email newsletter.

Also, this is a newsletter that I’m posting directly on the blog. If you prefer to receive it in your inbox, I invite you to subscribe to this blog. I’ll then notify you when any article is out.

Without further ado, here are the 5 items of this week!

1. Web Hacking YouTube channel

Web Hacking 101: Pro Tips

I’ve been following Peter Yaworski for a while (since he published his book Web Hacking 101: How to Make Money Hacking Ethically). But I’ve only discovered this week his Web Hacking Pro Tips interviews.
They’re a must watch! He brings on big names of the Web hacking scene.

2. Bug bounty write-up (very motivating)

Bypassing Google’s authentication to access their Internal Admin panels — Vishnu Prasad P G

I loved reading this write-up! It shows that there are still easy-to-find, high rewarding bugs (13337$!) on big targets such as Google.
Doesn’t it motivate you to start bug bounty yesterday?

3. Article of the week

Analyzing 100,000 Security.txt Files

Security.txt is a new standard that’s a game changer for anyone who finds a security bug on a website and doesn’t known whether to report it or not (in the absence of a bug bounty program).
This initiative is in its infancy: the author found that only 62 sites from the Alexa Top 100,000 Websites have implemented security.txt files.

4. Quote I’m pondering

I’d rather be a failure in something that I love than a success in something that I hate - George Burns

George Burns was a comedian, actor, singer and writer who died in 1996. So he surely was not talking about IT security, but I find that his principle applies perfectly to penetration testing and especially bug bounty.
I’d easily spend hours training, learning about vulnerabilities, attempting to find valid and unique bug bounty bugs (even if I fail), rather than work an uninteresting corporate job that’d bring me security and “success” but no enjoyment.

5. Music I enjoy listening to while hacking

Vexento Youtube channel

I love listening to Vexento while working. Check him out if you don’t known him and like electro music, or if you’re looking for inspiring beats to help you focus on work.


See you next time!

If you enjoyed reading this, please consider sharing it, leaving a comment, suggestions…


Comments