Hack Like a Pro: Bug Bounties, Web Vulnerabilities & More! • Ben @NahamSec & Julian Wood • GOTO 2022
About this talk
This interview was recorded at GOTO Copenhagen for GOTO Unscripted. #GOTOcon #GOTOunscripted #GOTOcph https://gotopia.tech Read the full transcription of this interview here: https://gotopia.tech/articles/236/Ben-Sadeghipour-bug-bounties-and-web-vulnerabilities Ben Sadeghipour - VP of Research at Hadrian Security Julian Wood - Developer Advocate at AWS@julian_wood RESOURCES https://tryhackme.com https://www.hackthebox.com https://pentesterlab.com https://ctfchallenge.com https://www.bugbountyhunter.com https://portswigger.net/burp Ben https://nahamsec.com http://twitter.com/nahamsec http://twitch.tv/nahamsec http://instagram.com/nahamsec Julian https://twitter.com/julian_wood http://www.wooditwork.com https://www.linkedin.com/in/julianrwood DESCRIPTION Join us for an engaging conversation between Ben Sadegiphour, VP of Research at Hadrian Security, and Julian Wood, Developer Advocate at AWS. In this conversation, we will explore a range of captivating topics, such as: Bug bounties, ethical hacking, Skills, Resources, tips and much more. Whether you're an aspiring ethical hacker or simply interested in the fascinating world of cybersecurity, this video is packed with knowledge and practical advice. Get ready to hack like a pro and join us on this exciting journey! TIMECODES 00:00 Intro 01:29 Bug bounties: Exploring opportunities & best practices in ethical hacking 07:33 Unveiling web vulnerabilities: From cross-site scripting to SSRF & IDOR 11:04 API security unveiled: From authentication to cloud complexity 14:24 How to start & learn ethical hacking 18:20 Hacking: Red vs Blue - ethical boundaries & personal security 23:10 Password management: Tips for creating unique & strong passwords 31:02 Exploring ethical hacking: Insights & bug bounty tips 32:44 Outro RECOMMENDED BOOKS Peter Yaworski • Real-World Bug Hunting • https://amzn.to/3Y0368p Vickie Li • Bug Bounty Bootcam • https://amzn.to/3IAExdE Carlos A. Lozano & Shahmeer Amir • Bug Bounty Hunting Essential • https://amzn.to/3XIx2Wo Sanjib Sinha • Bug Bounty Hunting for Web Security • https://amzn.to/3YO44Wu Jim Manico & August Detlefsen • Iron-Clad Java • https://amzn.to/3qGqwBw Liz Rice • Container Security • https://amzn.to/3oU4iJe Liz Rice • Kubernetes Security • https://www.oreilly.com/library/view/kubernetes-security/9781492039075 Aaron Parecki • OAuth 2.0 Simplified • https://amzn.to/2A3IMOf Aaron Parecki • OAuth 2.0 Servers • https://amzn.to/3ecHEsz Aaron Parecki • The Little Book of OAuth 2.0 RFCs • https://amzn.to/3i7qnlC Erdal Ozkaya • Cybersecurity: The Beginner's Guide • https://amzn.to/2T6OIj3 https://twitter.com/GOTOcon https://www.linkedin.com/company/goto- https://www.instagram.com/goto_con https://www.facebook.com/GOTOConferences #EthicalHacking #Hacker #Hacking #Hack #WhiteHat #WhiteHatHacker #Security #Cybersecurity #CybersecurityTutorial #WebSecurity #Vulnerabilities #Vulnerability #HackerOne #HadrianSecurity #BenSadeghipour #JulianWood #BugBounty #BugBountyTips #HackerOneElite #CTF #SSRF #IDOR CHANNEL MEMBERSHIP BONUS Join this channel to get early access to videos & other perks: https://www.youtube.com/channel/UCs_tLP3AiwYKwdUHpltJPuA/join Looking for a unique learning experience? Attend the next GOTO conference near you! Get your ticket at https://gotopia.tech Sign up for updates and specials at https://gotopia.tech/newsletter SUBSCRIBE TO OUR CHANNEL - new videos posted almost daily. https://www.youtube.com/user/GotoConferences/?sub_confirmation=1
Topics covered
Stay Updated
Get notified about new features and conference additions.
