![rs0n_live](/img/default-banner.jpg)
- 49
- 389 165
rs0n_live
Приєднався 9 січ 2023
I've worked in Cyber Security for almost 10 years and done Bug Bounty hunting for 5 of those years. I'm here to share what I've learned and help others start Bug Bounty Hunting and/or break into Application Security!
Ask Yourself These Four Questions When Bug Bounty Hunting for IDORs
When bug bounty hunting for IDORs, these questions will help you identify code patterns that can lead to finding bugs faster and easier! If you've seen my video on Access Controls and IDORs (Part 1), this video expands on some of the core topics. I hope it helps!
Hire Me! - ars0nsecurity.com
Watch Live! - twitch.tv/rs0n_live
Free Tools! - github.com/R-s0n
Connect! - www.linkedin.com/in/harrison-richardson-cissp-oswe-msc-7a55bb158/
Hire Me! - ars0nsecurity.com
Watch Live! - twitch.tv/rs0n_live
Free Tools! - github.com/R-s0n
Connect! - www.linkedin.com/in/harrison-richardson-cissp-oswe-msc-7a55bb158/
Переглядів: 1 261
Відео
Bug Bounty Hunting | Find Bugs in Hidden React Source Code!! ⏰ QUICK TIP ⏰
Переглядів 3,2 тис.2 місяці тому
Find XSS bugs (and more!) in client-side React Code! Developers often forget to obfuscate and properly serialize their React code before shipping it to production. In this video, I show you how I find applications with this misconfiguration, download the raw React files, and use a Static Code Analysis tool to find vulnerabilities! I've been working on my editing and pacing, let me know what you...
I'm Back! What to Expect Moving Forward...
Переглядів 1,3 тис.2 місяці тому
00:00 - Quick Recap 00:18 - HUGE thank you to the community! 01:23 - What happened to the Discord Server? 04:08 - What's going on with the Framework? 08:52 - What about Livestreams and Recorded Videos? 10:25 - FloQast Authenticated Bug Bounty Program 13:25 - Wrap Up
I need a break...
Переглядів 3,6 тис.5 місяців тому
The endless stream of demands and harassment around my Bug Bounty Hunting Framework has finally gotten to me, so I've decided to take a break from developing, as well as streaming and recording, for a few months. Thank you all for the love and support! I just need a few months to get my head right and figure out how I want to drive these projects moving forward.
New Fiverr Pro Gig!! Attack Surface Vulnerability Scanning -- 👀🎯 See How Attackers See You
Переглядів 9425 місяців тому
Learn More: www.fiverr.com/s/xg3WvZ I will conduct a thorough vulnerability assessment using a collection of automated tools to enumerate the client's attack surface, identify valid targets in that attack surface, and test those targets for a wide range of known vulnerabilities. Attackers often chose their targets based on who they believe will be an "Easy Target". This testing will simulate th...
New Fiverr Pro Gig!! Web Application & Cloud Infrastructure Penetration Test
Переглядів 7085 місяців тому
Learn More: www.fiverr.com/s/KG8Nez I will conduct thorough penetration testing on a target web application, as well as the cloud infrastructure hosting that application. This testing includes a significant amount of manual testing and is designed to simulate the experience of being targeted by an Advanced Persistent Threat (APT) group with the goal of gaining a foothold in an organization thro...
[Part III] Bug Bounty Hunting for IDORs & Access Controls
Переглядів 9 тис.6 місяців тому
[Part III] Bug Bounty Hunting for IDORs & Access Controls
Live Bug Bounty Hunting | Authenticated Testing the Client-Side & Server-Side on Figma's Core App
Переглядів 7 тис.6 місяців тому
Live Bug Bounty Hunting | Authenticated Testing the Client-Side & Server-Side on Figma's Core App
Bug Bounty Hunting for Client-Side Injection Vulnerabilities | Part I
Переглядів 20 тис.6 місяців тому
Bug Bounty Hunting for Client-Side Injection Vulnerabilities | Part I
Live Bug Bounty Hunting | Client-Side Injection Testing on Starbucks Japan (Plus Q&A)
Переглядів 15 тис.6 місяців тому
Live Bug Bounty Hunting | Client-Side Injection Testing on Starbucks Japan (Plus Q&A)
My Bug Bounty Hunting Framework | New Collaboration Features Out Now!!! -- Alpha 0.0.2 Release
Переглядів 3,1 тис.6 місяців тому
My Bug Bounty Hunting Framework | New Collaboration Features Out Now!!! Alpha 0.0.2 Release
[Part II] Bug Bounty Hunting for IDORs and Access Control Violations
Переглядів 14 тис.7 місяців тому
[Part II] Bug Bounty Hunting for IDORs and Access Control Violations
[Part I] Bug Bounty Hunting for IDORs and Access Control Violations
Переглядів 30 тис.7 місяців тому
[Part I] Bug Bounty Hunting for IDORs and Access Control Violations
This Update to my Bug Bounty Hunting Framework is a GAMECHANGER!!!
Переглядів 1,7 тис.7 місяців тому
This Update to my Bug Bounty Hunting Framework is a GAMECHANGER!!!
A Complete Guide to My Bug Bounty Hunting Framework
Переглядів 13 тис.7 місяців тому
A Complete Guide to My Bug Bounty Hunting Framework
Everything You Need To Know About Burp Suite For Bug Bounty Hunting!
Переглядів 14 тис.8 місяців тому
Everything You Need To Know About Burp Suite For Bug Bounty Hunting!
I'm Exhausted.....but my Bug Bounty Framework (Alpha Version) is FINALLY READY!!!
Переглядів 2,8 тис.8 місяців тому
I'm Exhausted.....but my Bug Bounty Framework (Alpha Version) is FINALLY READY!!!
LIve Bug Bounty Hunting | Unauthenticated Testing on Front.com
Переглядів 73 тис.8 місяців тому
LIve Bug Bounty Hunting | Unauthenticated Testing on Front.com
Live Bug Bounty Recon & Enumeration (Raw Stream) | HackerOne Public Program Starbucks
Переглядів 8 тис.9 місяців тому
Live Bug Bounty Recon & Enumeration (Raw Stream) | HackerOne Public Program Starbucks
Bug Bounty Tip | Do This Exercise Every Day to Get Better at Finding XSS Bugs!
Переглядів 11 тис.9 місяців тому
Bug Bounty Tip | Do This Exercise Every Day to Get Better at Finding XSS Bugs!
Bug Bounty Tip | How to Set Up Testing Requirements for Public HackerOne Program
Переглядів 2,1 тис.9 місяців тому
Bug Bounty Tip | How to Set Up Testing Requirements for Public HackerOne Program
Live Bug Bounty Recon (Raw Stream) | HackerOne Public Program - Hilton
Переглядів 42 тис.9 місяців тому
Live Bug Bounty Recon (Raw Stream) | HackerOne Public Program - Hilton
Bug Bounty Hunting for Server-Side Request Forgery - Who, What, When, Where, How, and Why?
Переглядів 1,1 тис.9 місяців тому
Bug Bounty Hunting for Server-Side Request Forgery - Who, What, When, Where, How, and Why?
Bug Bounty Hunting for Reflected XSS - Who, What, When, Where, Why, and How???
Переглядів 1,8 тис.10 місяців тому
Bug Bounty Hunting for Reflected XSS - Who, What, When, Where, Why, and How???
Bug Bounty Tip | Test Hidden API's From Desktop Applications!
Переглядів 2 тис.10 місяців тому
Bug Bounty Tip | Test Hidden API's From Desktop Applications!
WHAT have I been DOING for the last SIX MONTHS???
Переглядів 86510 місяців тому
WHAT have I been DOING for the last SIX MONTHS???
Install my NEW Bug Bounty Framework on Kali Linux | The Ars0n Framework -- (No Audio)
Переглядів 7 тис.Рік тому
Install my NEW Bug Bounty Framework on Kali Linux | The Ars0n Framework (No Audio)
Bug Bounty Hunting | Deep Dive -- Part II
Переглядів 6 тис.Рік тому
Bug Bounty Hunting | Deep Dive Part II
Bug Bounty Hunting | Deep Dive -- Part 1
Переглядів 29 тис.Рік тому
Bug Bounty Hunting | Deep Dive Part 1
Bug Bounty Hunting | Shopify is paying $200,000 to ANYONE who can hack them!!!
Переглядів 9 тис.Рік тому
Bug Bounty Hunting | Shopify is paying $200,000 to ANYONE who can hack them!!!
35:01 "Is this a cloud...? I've been out in the sun today...." lolol, had me dying. Just discovered your channel man, keep at it! Good luck with the framework!
i recently discovered this channel and i would like to say that as a knew person to cybersecurity you motivate me and give me alot of knew information to keep going
I love your videos man 🦝
Thx a lot master! Ur videos was really helpful for many guys))
but it needs to look like that 'X-Bug-Bounty:HackerOne-{UName}'. so you still got it wrong
Read about Islam and take a look in the Quran, then decide. This world has darkness and puts a lot of stress on people. When you carry all this in your heart, you need to get it out of your body through prayer, reading the Quran, and talking to Allah. Listen to or read the story of Prophet Muhammad and how he faced the people in Makkah, even his cousins, and managed to deal with it with the help of Allah, the Greatest. Go to the gym, listen to the Quran while you are driving, and see the changes. search about azkar of morning and night and sleeping (وفقك الله)
Yo thanks for this video's also your parts for idors and broken access help me lot to create notes and work accordingly 🙏. Looking for live streams again :)
Hello rson are you still doing 1on1 coaching
OMG please make video about semgrep I have one week and I'm trying to learn it it's little challenging like didn't find someone explain it good 😊 so plz if u can make video because that will help me in my bug bounty 😅
Welcome back, Sir
very nice
Good To See You Back Sir 🎉
welcome back champ
thanks a lot 🙏
:)
Great to see you back buddy
Hey glad to see you back
Need more videos for Idor pleasseeee
Welcome back, need video like that for broken access control 😊
This channel never disappoints 😁
Welcome back man.
Thank you! I've been here, work has just been crazy so I haven't had time to make videos. After DEFCON I should have a *lot*more time, and especially through the winter. I'm very exited to get back to it!
Awesome ❤🎉 We need one stream for taking notes when testing with checklist
Very informative. Missing your streams
Streams are coming back after DEFCON, I promise! I've been so busy, just trying to find time for everything.
Welcome back man 🎉, we need your lessons on business logic bugs and more videos how to look for access control bugs, i like when your videos are very long like the IDOR one@@rs0n_live
Welcome back
awesome
thanks a lot!!
dudeee your content is amezing, just fix your camera.
This is gold!
youre making great vids man <3
Teşekkürler.
Teşekkürler.
After taking some courses online, learning about IDORs with stuff like /account/6789. I found precisely zero url structures like that in the wild. I watched this video last night and found my first 3 IDORs this morning.
This is so much better than course videos with super unrealistic flaws
thx for this awesome lesson. It's a greate idea to combine webdev process with bug bounty.
Amazing video🔥
this video is very motivating thanks man ...
Keep doing bro, you are doing amazing work for the community ❤.
New into cyber. Learning on THM and enjoying that. Just came across you not to long ago and really enjoy the content.
Hey it only for http but not capture https i changet the network proxy to 127.0.0.1 is there is any ssl then how come to bypass there is not enough information related to proxy desktop app im using ubuntu linux
thx lord
hey bro, what's the service on your localhost:3000, seems to be a recon tool.
Love these video's. Only thing i would change is keeping the microphone a little closer to yourself, because now your keyboard is really loud for me. Keep up the good work
really hate captcha
Thank you sir. You are my best youtuber
This is fantastic for beginner's
getting mangodb error
rewatched some of the videos, i'm not a guy that comments but i have to say : much respect to you, you are the one that got me back into pentesting when i was on the break of giving up, it was also you that helped so many people as well with the software and videos. keep up the good work and i always look forward seeying the live stream. thanks for giving me this push
How to hack Aviator
Hi R-s0n. I hope all is well. Just checking on you and eagerly waiting for your next streaming.
Can this be installed on a vps?