#NahamCon2022
Вставка
- Опубліковано 9 тра 2022
- Purchase my Bug Bounty Course here 👉🏼 bugbounty.nahamsec.training
#NahamCon2022 is a virtual offensive security. This year's event was hosted by Jason Haddix & STOK!
Big thank you to all of our sponsors for making this event possible.
----
Hadrian - hadrian.io
Android - google.com
HackTheBox - hackthebox.eu
The Yahoo Paranoids - The Paranoids.com
Zero Point Security - zeropointsecurity.co.uk
Intel - projectcircuitbreaker.com/
AWSSecurity - AmazonAWS.com
HackerOne - Hacker101.com
Intigriti - intigriti.com
Bugcrowd - bugcrowd.com
Truffle Security - trufflesec.com
Snyk - snyk.io
Offensive Security - offensive-security.com
AssetNote - AssetNote,io
YesWeHack - yeswehack.com
PureVPN - purevpn.com
Immunefi - immunefi.com
NetworkChuck - networkchuck.com
haksec - hacksec.io
PentesterLab - Pentesterlab.com
Live Every Sunday on Twitch:
/ nahamsec
Free $100 DigitalOcean Credit:
m.do.co/c/3236319b9d0b
Follow me on social media:
/ nahamsec
/ nahamsec
twitch.com/nahamsec
hackerone.com/nahamsec
/ nahamsec1 - Наука та технологія
These are such great videos. Jason explains things so well
Wow, what an abundant collection of tools and info 🎉 Thank you so much for taking the time. I also appreciate the quality, it was nice and clear. ☺️
Great content as always Jason. Many thanks
super good talk jason alot of valuable tips in here, your a legend
That was an absolutely sick presentation Jason!
Enjoyed the content and its very encouraging big ups to you professor.
Thanks for all the content!! love it!
Literally enjoyed alot! thanks everyone
thanq so much...i was eagerly waiting for this
lots of useful tips,Thank You, please do more tutorials and walkthroughs on using the tools.
Blind XSS payload -> "vehicle breakdown" -> exploit delivery and execution is *chefs kiss*.
I’m fairly certain I’ve listened to this video 4 or more times while bug hunting, just because it’s so useful and filled with reminders 🎉
@@abdonito8254 Hunting bugs duh
Super great Video. Made me think back of this: When my Statistics Professor retired, in his good bye speech, he compared western researchers with someone who was searching for his car keys in the light of a street light. And when you asked were exactly he had lost them, he would say "over there", pointing 20 yards down the road. On asking him why then was searching here and not over there, he would say because here I can see what I am doing.
What does this mean though?
hmmmmmmmmm
Very Serious Guy Ma Sha ALLAH
Excellent presentation sir!
was waiting for it
O funk i visit this video every day
I think its pure gold if u want to learn
It's working thanks my friend
great content 👍🏼😌
great work bro,
Thank you Jason for sharing so many real-world details. Is the Heatmap Mindmap file available to download please since the font is a bit small in the video? I love flow charts like that. Thanks so much.
Thank ❤️
Fantastic talk! especially loved the tips on wordlists.
Big Question I had.. You mentioned it being critical to know how the app passes data weather it's via params or via REST routes and how that affects where / how you fuzz or place your payload. But I didn't hear you explain that. I'd love to hear more about that.
@marksnyder5219 His point was that you just need to know the difference because, for example, if an app is passing data via params but you are throwing URLs at it that just consist of pathnames & endpoints (REST style), then you're wasting your time. You'll never find anything because that stuff just doesn't exist.
great content
Asif how did i missed it .Great tutorial as usual .Thanks
Is naabu better than rustscan in speed? Because sometimes you have to scan like 100 of subdomains and speed really matters
Hi, Jason. You released a bug bounty methodology earlier??
query: the difference between Recon and Application Analysis, what would it be specifically??? I am new to this topic.
Second question: the order of topics would be, so to speak, the steps to follow to carry out the application analysis???
Can we get the slides of the presentation?
I am so glad I ordered pizza! let's go
Cool
Can you please share the ppt
Please uploads others talks also... 😇
7:15 Stok's handle is wrong.
😍😍
Can anyone tell me which tool he was using to create dynamic mind map? It’s super cool.
The tool name is Xmind
@@0ckh4m38 Thanks!
What was the book on APIs that you're reading?
I think it's called "Hacking APIs" but it won't be officially released until July.
first like and comment
Starting the video...
1:02:08
Personal Bookmark
1#
:)
I think I'm the first viewer.
Guess we'll never know
@@NahamSec hahaa....aha
great vedio and great man @jhaddix 👈❤❤❤❤
Really this is Super Great Content for all Newbie like me. Thank You so much "TheCyberMentor" for your recommended. And also Thanks NahamSec and JasonHaddix. May Allah bless you all.
Awesome talk as usual from the legend #jhaddix .#hakluke Hakrawler gives more results usually | wc -l . Damn I had to come edit my comment. This is very valuable info . Gets the wheels spining