Hey hackers! Once again, we scoured the Web to bring you the latest best resources related to pentest & bug bounty.
This issue covers the week from 27 of July to 03 of August.
Our favorite 5 hacking items
1. Tip of the week
Finding domains belonging to a specific target by @edoverflow
One of the most important steps during recon is finding domains that belong to your target.
Many talks and tweets tackle the question of subdomains enumeration, but there is a lot less information out there about finding domains. So it’s nice to read these practical tips from a confirmed bug hunter.
More …
Hi, these are the notes I took while watching “The Bug Hunters Methodology v3(ish)” talk given by Jason Haddix on LevelUp 0x02 / 2018.
Links
About
This talk is about Jason Haddix’s bug hunting methodology. It is an upgrade of:
More …
Hey hackers! These are our latest favorite resources related to pentest & bug bounty.
This issue exceptionally covers two weeks, from 13 to 27 of July.
Our favorite 5 hacking items
1. Non technical item of the week
Under the Hoodie Videos: True Stories from Rapid7 Pen Testers
Under the Hoodie - Lessons from a Season of Penetration Testing
I absolutely loved watching these videos, especially “The Bank Job”!
Having only conducted technical “classic” penetration testing and never social engineering or red team engagements, I find these tales mind-blowing. It’s like watching a good action movie made by real hackers.
More …
Hi, these are the notes I took while watching the “Automation for Bug Hunters - Never send a human to do a machine’s job” talk given by Mohammed Diaa (@mhmdiaa) for Bug Bounty Talks.
Links
About
This talk is about automation for bug hunters.
More …
Hi, these are the notes I took while watching the “How to fail at bug bounty hunting” talk given by Caleb Kinney on LevelUp 2017.
Links
More …
