In my two years doing this the easiest bugs are the informational and low-hanging fruit that most companies do not care about. You report them and get nothing for it not even point just a pad on the back and nothing. The critical bugs like Command Injection, SQL Injection, Remote Code Execution, and Cross-Site Scripting are the only ones worth pursuing these days, but the competition is out of control. - Server bugs is where the gold is just bypassing those WAFs is a bitch.
Pretty cool to see David Bombal follows you on Twitter, I've been watching you for quite a while not knowing that but it says a lot abut your knowledge or skills i could say :-)
Broken Link Hijacking is also one of the easiest bugs or also known as low hanging fruit bugs.
In my two years doing this the easiest bugs are the informational and low-hanging fruit that most companies do not care about. You report them and get nothing for it not even point just a pad on the back and nothing. The critical bugs like Command Injection, SQL Injection, Remote Code Execution, and Cross-Site Scripting are the only ones worth pursuing these days, but the competition is out of control.
- Server bugs is where the gold is just bypassing those WAFs is a bitch.
so true
what do you think of IDOR
Such an underrated channel.
You'll reach great heights in a short span of time.
So excited to see you offer coaching! I need to rebuild my VM attack box. After which I will be signing up for coaching sessionS!
Thanks sir, can you make a live recon on real target ?
Plz do video about background alot of people like me dont know what we must learn to enter bug bounty
and thank you alot for this epic content :)
Pretty cool to see David Bombal follows you on Twitter, I've been watching you for quite a while not knowing that but it says a lot abut your knowledge or skills i could say :-)
It is also called "low hanging fruit"
Good job PhD!
how can i learn web fundamentals for web hacking?
Please Make video on Metasploit Framework Detail Step by step
Hey thank you for these Videos i appreciate the info.
Sir can you tell us were u learn thing to get upto date in this field.
Please explain, how can we install OpenVas on Kali Linux 2022? Because it has problem. For example: " SCAP Error" and "Database can't Find" 🙏🙏🙏🙏
Sir can you please tell the proper road map step by step for bug bounty please, Thank You
bro just pick a bug to study and practice him
Thanks man