Скачать с ютуб The OG Bug Bounty King - Frans Rosen (Ep. 45) в хорошем качестве
The OG Bug Bounty King - Frans Rosen (Ep. 45)
7 месяцев назад
Скачать бесплатно The OG Bug Bounty King - Frans Rosen (Ep. 45) в качестве 4к (2к / 1080p)
У нас вы можете посмотреть бесплатно The OG Bug Bounty King - Frans Rosen (Ep. 45) или скачать в максимальном доступном качестве, которое было загружено на ютуб. Для скачивания выберите вариант из формы ниже:
Загрузить музыку / рингтон The OG Bug Bounty King - Frans Rosen (Ep. 45) в формате MP3:
Если кнопки скачивания не
загрузились
НАЖМИТЕ ЗДЕСЬ или обновите страницу
Если возникают проблемы со скачиванием, пожалуйста напишите в поддержку по адресу внизу
страницы.
Спасибо за использование сервиса savevideohd.ru
The OG Bug Bounty King - Frans Rosen (Ep. 45)
In this episode of Critical Thinking - Bug Bounty Podcast, we're thrilled to welcome Frans Rosén, an OG bug bounty hunter and co-founder of Detectify. We kick off with Frans sharing his journey bug bounty and security startups, before diving headfirst into a host of his blog posts. We also cover the value of pseudo-code for bug exploitation, understanding developer terminology, the challenges of collaboration and delegating tasks, and balancing hacking with parenting. If you're interested in bug bounty or entrepreneurship, you won't want to miss it! Follow us on twitter at: / ctbbpodcast We're new to this podcasting thing, so feel free to send us any feedback here: [email protected] Shoutout to YTCracker for the awesome intro music! ====== Ways to Support CTBB Podcast ====== Follow us on twitter: / ctbbpodcast Follow your hosts Rhynorater & Teknogeek on twitter: - / rhynorater - / 0xteknogeek Sign up for Caido using the referral code CTBBPODCAST for a 10% discount. Join our Discord! https://ctbb.show/discord ====== Links ====== Today's Guest: / fransrosen Detectify: https://labs.detectify.com/ Discovering s3 subdomain takeovers: https://labs.detectify.com/writeups/h... Bucket Disclose: https://gist.github.com/fransr/a155e5... A deep dive into AWS S3 access controls: https://labs.detectify.com/writeups/a... Attacking Modern Web Technologies: https://www.slideshare.net/OWASP_Pola... Live Hacking like a MVH: https://speakerdeck.com/fransrosen/li... Account hijacking using Dirty Dancing in sign-in OAuth flows: https://labs.detectify.com/2022/07/06... ====== Timestamps ====== (00:00:00) Introduction (00:04:50) Franz Rosen's Bug Bounty Journey and the creation of Detectify (00:13:30) Benefits of pseudo-code, typing, and thinking like a developer (00:20:20) Hunter Methodologies (00:35:40) Time on targets, Iteration vs. Ideation, and tips for standing out (00:51:10) S3 subdomain takeovers (01:05:02) Blog posting and hosting motivations (01:13:30) Detectify and entrepreneurial endeavors (01:29:50) Attacking Modern Web Technologies (01:46:00) postMessage and MessagePort (01:58:09) Live Hacking and Collaboration (02:13:50) Account Hijacking and OAuth Flows (02:28:48) Hacking/Parenting
Comments
