- 42
- 55 100
YesWeHack
France
Приєднався 20 лют 2016
YesWeHack is a leading Bug Bounty and Vulnerability Management Platform. Founded by ethical hackers in 2015, YesWeHack connects organisations worldwide to tens of thousands of ethical hackers, who uncover vulnerabilities in websites, mobile apps, connected devices and digital infrastructure.
The YesWeHack platform offers a range of integrated, API-based solutions: Bug Bounty (crowdsourcing vulnerability discovery); Vulnerability Disclosure Policy (creating and managing a secure channel for external vulnerability reporting); Pentest Management (managing pentest reports from all sources); Attack Surface Management (continuously mapping online exposure and detecting attack vectors); and ‘Dojo’ and YesWeHackEDU (ethical hacking training).
YesWeHack's services have ISO 27001 and ISO 27017 certifications, and its IT infrastructure is hosted by EU-based IaaS providers, compliant with the most stringent standards: ISO 27001 (+ 27017, 27018 & 27701), CSA STAR, SOC I/II Type 2 and PCI DSS.
The YesWeHack platform offers a range of integrated, API-based solutions: Bug Bounty (crowdsourcing vulnerability discovery); Vulnerability Disclosure Policy (creating and managing a secure channel for external vulnerability reporting); Pentest Management (managing pentest reports from all sources); Attack Surface Management (continuously mapping online exposure and detecting attack vectors); and ‘Dojo’ and YesWeHackEDU (ethical hacking training).
YesWeHack's services have ISO 27001 and ISO 27017 certifications, and its IT infrastructure is hosted by EU-based IaaS providers, compliant with the most stringent standards: ISO 27001 (+ 27017, 27018 & 27701), CSA STAR, SOC I/II Type 2 and PCI DSS.
YesWeHack Hunter Interviews - #11 Pwnii: “Don't forget that a duplicate bug is a valid bug”
Like a scientist testing various hypotheses, an ethical hacker typically succeeds only after a lot of trial and error. Recognising this truth, Pwnii, a successful bug hunter on YesWeHack, advises newbie hackers to accept that failing to find bugs is very much the norm not the exception.
Pwnii - aka pwnwithlove - is a thriving female hacker and CTF player in a world that retains a significant male majority. In this interview, she also discusses how she got into Bug Bounty, her proudest bug find to date, her preferred hacking tools, her plans for deepening her hacking skills and her long-term plans beyond Bug Bounty.
Pwnii, who has steadily climbed the YesWeHack leaderboard since joining in 2022, recently launched a new video series called Talkie Pwnii, where she shares hacking tricks and tips, and offers solutions to YesWeHack’s Dojo CTF challenges: ua-cam.com/video/Rw3wWiD5Fto/v-deo.html
Join us on www.yeswehack.com
00:18 How did you become a Bug Bounty hunter?
00:57 What is your best bug discovery so far?
01:34 What are your favourite hacking tools?
02:09 Which three words best describe you as a Bug Bounty hunter?
02:17 Is there a particular aspect of hacking you want to get better at?
02:31 What is your plan over the next 10 years?
02:57 What is the most difficult aspect of Bug Bounty?
03:19 What are your top tips for newbie Bug Bounty hunters?
#bugbounty #bugbountytips #bugbountyhunter #YesWeRHackers
Pwnii - aka pwnwithlove - is a thriving female hacker and CTF player in a world that retains a significant male majority. In this interview, she also discusses how she got into Bug Bounty, her proudest bug find to date, her preferred hacking tools, her plans for deepening her hacking skills and her long-term plans beyond Bug Bounty.
Pwnii, who has steadily climbed the YesWeHack leaderboard since joining in 2022, recently launched a new video series called Talkie Pwnii, where she shares hacking tricks and tips, and offers solutions to YesWeHack’s Dojo CTF challenges: ua-cam.com/video/Rw3wWiD5Fto/v-deo.html
Join us on www.yeswehack.com
00:18 How did you become a Bug Bounty hunter?
00:57 What is your best bug discovery so far?
01:34 What are your favourite hacking tools?
02:09 Which three words best describe you as a Bug Bounty hunter?
02:17 Is there a particular aspect of hacking you want to get better at?
02:31 What is your plan over the next 10 years?
02:57 What is the most difficult aspect of Bug Bounty?
03:19 What are your top tips for newbie Bug Bounty hunters?
#bugbounty #bugbountytips #bugbountyhunter #YesWeRHackers
Переглядів: 318
Відео
Talkie Pwnii #1: Exploiting SQL LIKE Operator & Command Injection Regex Bypass
Переглядів 3,3 тис.14 днів тому
Welcome to the inaugural episode of Talkie Pwnii, our new series of video write-ups led by YesWeHack’s Researcher Enablement Analyst pwnwithlove aka pwnii! This first video will take you through our latest Dojo challenge, Shell Escape, and show you a couple of different ways you could have solved it, along with technical tips and tricks. By the way, if you haven’t tried solving it yet, it’s not...
YesWeHack Customer Story: L'Oréal, world’s largest cosmetics and personal care brand
Переглядів 21914 днів тому
Learn about L'Oréal’s four-year Bug Bounty journey with YesWeHack so far. Watch Jean-Jacques Mallet, Group Cybersecurity Director at L’Oréal, and Guillaume Kermarrec, in charge of the Bug Bounty Program and threat/vulnerability management at the world’s largest cosmetics and personal care company. The pair discuss L'Oréal’s security culture, the motivations for starting up a Bug Bounty Program,...
YesWeHack Hunter Interviews - #10 Blaklis: “I'm still a bit of a Cro-Magnon in the way I hack”
Переглядів 58928 днів тому
Ranked 20th on YesWeHack's leaderboard, the $2M all-time hacker Blaklis proves you don’t need a ton of tools to excel as a bug hunter. In this interview, he shares his hacking journey - from gaming hacks as a teen to becoming a full-time bug bounty hunter - and offers practical advice for newbies. Among other things, hear about how he got into hacking, why he loves it, what his typical day look...
Ferrero x YesWeHack: Italy's First-Ever Live Hacking Event at RomHack 2024
Переглядів 1,3 тис.Місяць тому
Watch highlights from Italy’s first-ever live bug bounty event, featuring targets from Ferrero, the Italian sweet-packaged food giant. The live hacking event was organised and managed by YesWeHack, the global bug bounty and vulnerability management platform. The landmark competition, which saw some of the world's most talented ethical hackers compete for points, prestige and financial rewards, ...
L’Oréal x YesWeHack: Why the cosmetics giant held a Live Bug Bounty
Переглядів 2042 місяці тому
Guillaume Kermarrec, who oversees L’Oréal’s Bug Bounty Program and threat/vulnerability management generally for the iconic cosmetics brand, discussed L’Oréal’s hopes for a live Bug Bounty it held in partnership with YesWeHack. Kermarrec, who works at L’Oréal’s CyberDefense Center, reflected on the company’s preparations for the event, which took place in the summer of 2024 during LeHACK, Franc...
YesWeHack Customer Story: ATG, Swedish betting and horseracing company
Переглядів 4592 місяці тому
A Swedish betting powerhouse that specialises in horse racing has enjoyed a rapid return on investment from running a Bug Bounty Program with YesWeHack - not least around “20 really serious reports that we would never get from a traditional pentest”. That’s according to Erik Täfvander, head of cybersecurity at ATG. In this video, Erik speaks about why ATG decided to crowdsource their security t...
YesWeHack Hunter Interviews - #9 Nagli: “When you’re a hacker you have some superpowers”
Переглядів 1,2 тис.2 місяці тому
Collaboration, curiosity and choosing targets where you already have extra privileges: discover the recipe behind Nagli's success in the ninth instalment of our bug hunter interview series. Among other things, the 26-year-old hacker (full name Gal Nagli) shares his journey into hacking, recounts his most memorable bug discovery, reveals the secrets behind his success, discusses currently produc...
L'Oréal x YesWeHack: Live Bug Bounty event at leHACK 2024
Переглядів 1,3 тис.4 місяці тому
L'Oréal became the latest illustrious brand to reap the benefits of a Live Bug Bounty with YesWeHack in July 2024. Across 20 consecutive hours in Paris, around 100 hunters probed digital assets belonging to the world’s largest cosmetics and personal care company and unearthed numerous serious vulnerabilities. Rewards at the live hacking event, which took place at the leHACK conference, went up ...
YesWeHack Hunter Interviews - #8 HakuPiku: “Bug hunting makes me feel like a detective”
Переглядів 1,3 тис.4 місяці тому
Swedish bug hunter Eldar Zeynalli, aka ‘HakuPiku’, discusses life as a Bug Bounty hunter. Among other things, he talks about how Capture-the-Flag competitions (CTFs) got him hooked on hacking, the fun aspects of Bug Bounty in comparison to pentesting, his preferred targets, his favourite bug and its wide-ranging impact, and which (non-IT related) profession bug hunting is most similar to. Watch...
YesWeHack Hunter Interviews - #7 drak3hft7: “Soft skills are as important as technical skills”
Переглядів 9445 місяців тому
Passion, persistence and curiosity are as important to success in Bug Bounty as technical hacking skills, according to one of YesWeHack’s most prolific hunters. Seventeenth on YesWeHack’s all-time leaderboard at the time of writing, ‘drak3hft7’ kindly sat down to discuss how he became an ethical hacker, his best bug discovery to date and his preferred hacking tools. Watch our latest interview t...
Hack Me I’m Famous #2 - Live Hacking Event with Louis Vuitton
Переглядів 4,5 тис.6 місяців тому
On April 4-5, YesWeHack had the absolute pleasure of hosting the second edition of Hack Me I’m Famous with no other than the prestigious luxury brand Louis Vuitton. Held at Louis Vuitton's Parisian headquarters, the live hacking event brought together forty of Europe's most skilled hackers for an exclusive two-day session dedicated to uncovering vulnerabilities in the luxury group's information...
Attack Surface Management Demonstration - YesWeHack
Переглядів 7037 місяців тому
REDUCE YOUR GROWING ATTACK SURFACE EFFICIENTLY WITH A RISK-BASED APPROACH With digital transformation driving the expansion of attack surfaces, InfoSec teams are struggling to secure their internet-facing assets. Increasingly complex tech stacks and rapid development cycles are fuelling a proliferation of vulnerabilities. Strategising testing and remediation in this environment is a daunting ta...
YesWeHack Customer Story: Bancolombia Group, Latin American financial institution
Переглядів 8839 місяців тому
How did Bancolombia scale up its private Bug Bounty Program to strengthen the security of its more than 16 million customers? In this enlightening interview, Lucas Zuluaga Pérez, Red Team Engineer at the Colombia-based banking group, delves into the key success factors behind this initiative. He also outlines what impressed him most about Bug Bounty, the reasons why his company chose the YesWeH...
Introducing The YesWeHack Advent Calendar: 24 Days Of Challenges And Festive Fun!
Переглядів 43411 місяців тому
In the spirit of festive fun, we're excited to unveil the YesWeHack Advent Calendar, brimming with surprises, Christmas-themed trivia and insightful Bug Bounty tips and highlights. Best of all: we've packed it with a variety of challenges, catering not only to our dedicated hackers but to all our cherished followers. Don’t worry, dear hackers, a separate, special DOJO challenge, exclusively des...
YesWeHack Customer Story: European Community of Alsace, regional government body
Переглядів 407Рік тому
YesWeHack Customer Story: European Community of Alsace, regional government body
YesWeHack Customer Story: Doctolib, leading European e-health company
Переглядів 556Рік тому
YesWeHack Customer Story: Doctolib, leading European e-health company
Wisdom of the crowd: What ethical hackers think about the YesWeHack Bug Bounty platform
Переглядів 1,1 тис.Рік тому
Wisdom of the crowd: What ethical hackers think about the YesWeHack Bug Bounty platform
YesWeHack Hunter Interviews - #6 RL: “Documentation is a goldmine of information”
Переглядів 1,4 тис.Рік тому
YesWeHack Hunter Interviews - #6 RL: “Documentation is a goldmine of information”
YesWeHack Hunter Interviews - #5 Serizao & Chackal: “Sharing is caring” when it comes to hacking
Переглядів 981Рік тому
YesWeHack Hunter Interviews - #5 Serizao & Chackal: “Sharing is caring” when it comes to hacking
YesWeHack Hunter Interviews - #4 Brumens: “Hunters should adapt payloads to their targets”
Переглядів 1,4 тис.Рік тому
YesWeHack Hunter Interviews - #4 Brumens: “Hunters should adapt payloads to their targets”
YesWeHack Hunter Interviews - #3 Icare: “Be curious and persistent”
Переглядів 1,3 тис.Рік тому
YesWeHack Hunter Interviews - #3 Icare: “Be curious and persistent”
YesWeHack Customer Story: Les Mousquetaires Group, retail distribution giant
Переглядів 378Рік тому
YesWeHack Customer Story: Les Mousquetaires Group, retail distribution giant
Live Bug Bounty event with Les Mousquetaires and the French Red Cross - leHACK Paris 2023
Переглядів 1,1 тис.Рік тому
Live Bug Bounty event with Les Mousquetaires and the French Red Cross - leHACK Paris 2023
YesWeHack Customer Story: Withings, pioneer in connected health
Переглядів 288Рік тому
YesWeHack Customer Story: Withings, pioneer in connected health
YesWeHack Hunter Interviews - #2 Xel: “I could have taken control of about 50 firewalls!”
Переглядів 1 тис.Рік тому
YesWeHack Hunter Interviews - #2 Xel: “I could have taken control of about 50 firewalls!”
YesWeHack Hunter Interviews - #1 GoDiego: "Post-auth vulnerabilities are the future of Bug Bounty"
Переглядів 1,5 тис.Рік тому
YesWeHack Hunter Interviews - #1 GoDiego: "Post-auth vulnerabilities are the future of Bug Bounty"
‘Start small - but start now!’ Inside Orange’s Bug Bounty journey with YesWeHack
Переглядів 905Рік тому
‘Start small - but start now!’ Inside Orange’s Bug Bounty journey with YesWeHack
Live Bug Bounty event with OTTO - Nullcon Berlin 2023
Переглядів 1,6 тис.Рік тому
Live Bug Bounty event with OTTO - Nullcon Berlin 2023
Open My Heart - Live Bug Bounty event with Lazada - HITB Singapore
Переглядів 1,2 тис.2 роки тому
Open My Heart - Live Bug Bounty event with Lazada - HITB Singapore
❤Nice
TOP 👍
Nice 🙂👍
THE GOAAAAT
Good looking forward to more upcoming videos and do not worry about the English it's alright. The technical part is top notch 😁
developerzer
Pourrais-tu faire les mêmes vidéos en Français SVP?
En anglais, c'est pas mal non plus, elle touche plus d'audience. Et puis entre français on se comprend plutot bien en anglais 😂
@@ElShadoweee Oui en Anglais c'est bien, je ne dis pas de ne pas le faire en Anglais non plus. Mais les Québecois ne comprennent pas L'anglais des Français! :D Je suis bilingue, ce n'est pas ça le problème, puis de l'excellent contenu en Anglais il y en as déjà des masses! ;)
Yeah
My mom is telling me to hack loreal company and ask them for free cosmetics 😅
2nd comment 🎉
1stt comment pls pin
❤ Cousin / T
Thomas Kenneth Wilson Jennifer Lopez Linda
Bro, You're the Best Hacker 😎
How to Join 😊
Yes we hack ❤
We need more informative video like that because they are inspiring us ❤
Aceptan reportes en español? Soy de México
Cool
Three years ago, I went a long way in cyber security, But now I have forgotten everything due to lack of practice. Is anyone here to guide me?
no one will forget the concepts
@@itsm3dud39 I really forget
Once I fully understand how to detect vulnerabilities, it will be game on
so ur trying to be cool like the famous ones
insane !!!
Very interesting event, saluti dall'Italia
C'étais un super event !
❤ SHOW
TBH A lot of the programs which I see don't allow automation but it seems to be the first stop for a lot of people. For me, I prefer a deep dive and just see how things work and what might have been rushed during development.
🔥🔥🔕
Beautiful to watch more of this thanks ❤
❤
the best explanation video I have seen on this topic on this
The more I explore the more I get. These guys are the demigods of modern world.
I love these insights!
I find your approach to staff training quite intriguing. By incorporating real company bugs into the training environment, you are able to increase the acceptance and engagement of the developers, which is a fascinating aspect of your methodology.
cool interview from a cool guy. keep up the good work. Not many people are lucky enough to be good at what they do and have fun at the same time.
Nice presentation 👏
Looking forward to doing this again with you guys next year! ❤
C'était trop cool ! J'ai pu apprendre tellement de choses,merci beaucoup!
:)
ρяσмσѕм
Well done <3
great presentation tho
Wow, Whatta Video! And Thanks for the info, even I was confused for the same!