The Truth About Bug Bounties

Поділитися
Вставка
  • Опубліковано 24 гру 2024

КОМЕНТАРІ • 162

  • @NahamSec
    @NahamSec  3 місяці тому +2

    Purchase my course and learn about bug bounty hunting with over 11 hours of content, 100+ labs, and 15+ vulnerability types
    hhub.io/qrNtQmjfByo

  • @khanabdulmuhammad5625
    @khanabdulmuhammad5625 8 місяців тому +102

    00:03 Bug bounties offer opportunities despite saturation.
    01:38 Newer generation of bug bounty hunters require time and dedication
    03:01 Success in bug bounties requires consistency and realistic goals
    04:23 Bug bounties require impact to be successful.
    05:53 Bug bounties require effort and perseverance.
    07:22 Bug bounty hunting requires patience and perseverance.
    08:46 Passion is key in bug bounties
    10:08 Bug bounty programs are on the rise

  • @blablubb1234
    @blablubb1234 8 місяців тому +10

    You’re only sharing the good parts of your experience and not the negative ones. That’s what people complain about

    • @tokyotoronto6028
      @tokyotoronto6028 8 місяців тому

      the negative part is you cant get money. Is this enough ?

    • @transforgoku
      @transforgoku 7 місяців тому

      @@tokyotoronto6028 The negative part is the amount of pacience, frustration, dedication, learning curve, being stuck at a crossroad and entering downward spirals that you have to endure is not meant for most people, that's why only a few succeed and can keep on going long term with BBH...

  • @gand0rfTRZ
    @gand0rfTRZ 8 місяців тому +33

    Story!! I can't tell you how many people I have talked to that want to get into Cyber Security in general to make money. I do my best to get them to understand that you have to have a passion for it. Like you said, money is a secondary goal. I also ask them if they are willing to spend 1 month focusing on one topic to understand it. I also lay out just how broad of a filed it is. People just see the dollar signs and want to chase them.

  • @cameronribeiro9660
    @cameronribeiro9660 8 місяців тому +10

    Where there is a will, there will ALWAYS be a way! The question is: how much time, effort, and devotion is it worth to you? You can sit all day thinking of reasons why you can’t do it, or you can redirect all that energy toward making it happen! What I have learned: people My reason for all the time and effort: when I am 90, all I will have to do in 2070 to make money is sit down to a laptop. All I will need is my laptops, WiFi, my fingers and my brain.

    • @tokyotoronto6028
      @tokyotoronto6028 8 місяців тому +2

      in 2070 ai do this shit.Not you anymore

  • @DevOps691
    @DevOps691 8 місяців тому +70

    I believe the issue lies in the way all channels discuss Bug Bounty programs, portraying it as if a Senior Software Developer with 20 years of experience is telling a Junior how easy it is to find a job and earn a lot of money. However, the reality is quite different. Engaging in Bug Bounty programs could be likened to pursuing it as a hobby when you already have a steady income from your primary work. Otherwise, there's a 98% chance of being left with no money.

    • @NahamSec
      @NahamSec  8 місяців тому +17

      I don’t fully agree. It all depends on your background. I know red teamers and people with the right background making the switch and being happy but just like any other career you can’t just switch over night if you have no experience.

    • @kaafhack
      @kaafhack 8 місяців тому +1

      @@NahamSec Exactly👍

    • @karl3637
      @karl3637 8 місяців тому

      ​@@NahamSecis it realistic for someone with no coding experience to be making money in their first year of doing these "bug bounties"?

    • @DevOps691
      @DevOps691 8 місяців тому

      @@karl3637 No. You should be at least a middle full stack software developer and have a good understanding of how things work under the hood.

    • @josephseed3393
      @josephseed3393 7 місяців тому

      @@karl3637 no

  • @xerox0x1
    @xerox0x1 8 місяців тому +15

    Exactly as you said Ben, We all deal with higher highs and lower lows, But if you're passionate about it when the downs come -and they will-. You will at least have a good aspect about it. And I never forget zwink words, when it comes to the dark side about Bug Hunting, And I quote from him "Bug bounties is like playing slot machines, One program will take 6 months to respond, down grade all your issues, mark them all N/A or weasel out of paying, While others will respond in 15 minutes, pay in 30 minutes, and fix the issue in 45, Pull the lever, see if you win." I wish you all a successful journey ❤✌

  • @leghdaf
    @leghdaf 8 місяців тому +2

    Challange Accepted ; "MORE" ... Thanks for the Motivation NahamSec

  • @oneplanet2198
    @oneplanet2198 8 місяців тому +11

    all you said is true
    i am making a little money from it.. But it is really difficult
    consistency and patients is key

    • @kingbling1915
      @kingbling1915 8 місяців тому

      Brother can you teach me something ?

    • @king_dammy
      @king_dammy 6 місяців тому

      Hey how much do you make per month?

  • @CenterZero_DeadSecurity
    @CenterZero_DeadSecurity 8 місяців тому +2

    I love cyber security but not knowing how to program is now holding me back, you can only go so far before you need to catch up on that technical debt. Now I'm taking a step back and doing CS50.

    • @tokyotoronto6028
      @tokyotoronto6028 8 місяців тому

      know how to program is easy.

    • @tokyotoronto6028
      @tokyotoronto6028 8 місяців тому

      you learn some courses with some tools and think can become a hacker ?

    • @CenterZero_DeadSecurity
      @CenterZero_DeadSecurity 8 місяців тому +1

      @@tokyotoronto6028 Who said that?

    • @CenterZero_DeadSecurity
      @CenterZero_DeadSecurity 8 місяців тому +2

      @@tokyotoronto6028 So you think Assembly is easy?

    • @bufordmaddogtannen
      @bufordmaddogtannen 20 днів тому

      ​@@CenterZero_DeadSecurity. Unless you are focusing on reverse engineering and malware research, assembly is not required. Also knowing programming can be irrelevant for Web and API testing. Being able to read code to understand what it does is also more important than writing the same code from scratch. E.g. You could review a proof of concept sending an HTTP request to leverage a vulnerability and then send the same request in a different way.

  • @d4nm4c
    @d4nm4c 8 місяців тому +11

    Would love to hear your story Ben!

  • @newsexcerpts6416
    @newsexcerpts6416 8 місяців тому +6

    For me bug bounties are for gaining experience with live targets.

  • @nannyscraftbakery9560
    @nannyscraftbakery9560 7 місяців тому +1

    Your videos are consistently valuable @NahamSec. First, we must learn to identify and fix software issues. Secondly, wealth follows as you build your knowledge. It demands dedication and time, yet with passion and clear goals, attaining wealth becomes increasingly achievable. Thank you!

  • @AryanK02
    @AryanK02 8 місяців тому +5

    So should i focus on bug Bounty now or getting an entry lvl position

    • @Skaxarrat
      @Skaxarrat 8 місяців тому +3

      I don't know about what you need in your life, but get a job and do Bug Bounty on the side as a "hobby" until you can live from it. It is what I'm going to start doing in two months.

    • @NahamSec
      @NahamSec  8 місяців тому +3

      +1. Get a job and do it on the side if you have free time.

  • @abdallahasan6430
    @abdallahasan6430 8 місяців тому +2

    Thanks for the video! It's been informative! what are the books behind you?

  • @21_aries30
    @21_aries30 8 місяців тому

    You have to study it! If you think you can just find exploits by executing some pre-set steps, you are diluting yourself. You must know how the technology works.

    • @tokyotoronto6028
      @tokyotoronto6028 8 місяців тому

      everyone know that.

    • @21_aries30
      @21_aries30 8 місяців тому

      @@tokyotoronto6028 Why are people clicking on "make 1000€ with this bug" then?

  • @ЕгорБрод
    @ЕгорБрод 8 місяців тому

    Hi, @NahamSec! Please, tell us how do you orgonise your notes? Which tools do you use?

  • @CypherX-Sec
    @CypherX-Sec 8 місяців тому +3

    Hii Ben i just enjoy bug hunting. That's why I don't give up it's like game for me with curiosity.

  • @cipher3966
    @cipher3966 8 місяців тому +1

    I am wanting to do them for learning and experience. I never expected it to be a get rich quick plan. Money would be a bonus but with job hunting taking longer than wanted at least my reward will be things I can put on a resume

    • @NahamSec
      @NahamSec  8 місяців тому

      Love it.💯

    • @transforgoku
      @transforgoku 7 місяців тому +1

      Same, I think my probabilities of finding a critical bug are higher than finding a job right now, the job market is ridiculously screwed...

  • @hermajaystey
    @hermajaystey 8 місяців тому +3

    Yes! Please do your origin story and how you started and how you found your first bug 😊

  • @damavox
    @damavox 8 місяців тому

    What would you say to someone who is 38, new to hacking with above average IT experience, little programming experience and wants to do this as a career / make a living?

    • @tokyotoronto6028
      @tokyotoronto6028 8 місяців тому

      you can't do this. That my answere. Just do another thing. 38 is just fucking old.

    • @Ayush-xs9xw
      @Ayush-xs9xw 8 місяців тому

      @@tokyotoronto6028do you do this for a living , just want to know about your experience in this field

    • @transforgoku
      @transforgoku 7 місяців тому

      Try it, see if it fits you and then choose what to do next, whether to continue with it or going after something else, that's all...

  • @MianHizb
    @MianHizb 8 місяців тому +2

    This bg music, its surreal .I need it , can you share the name that would be appreciated. and reality is reality..

  • @alizareii8307
    @alizareii8307 7 місяців тому

    Can you talk about the future of bug bounties and is it still worth to do it for next 5 or 10 years?

  • @milanprpic482
    @milanprpic482 8 місяців тому

    You know what, I will try bug bounty path , and see where it leads me. Just need to grind it, like any other stuff in life.

    • @tokyotoronto6028
      @tokyotoronto6028 8 місяців тому

      dont waste your money.

    • @king_dammy
      @king_dammy 6 місяців тому

      how's it going dude?

    • @stain5570
      @stain5570 3 місяці тому

      @@tokyotoronto6028 did you waste your money and now regret?

  • @valtersIT
    @valtersIT 8 місяців тому

    Life stories are always interesting and in some way inspirational that lead to endorsement. Thanks

  • @DARKX_000
    @DARKX_000 8 місяців тому

    Hey master!!! I am a newbie in this world of hacking i am so confused what should i do should i get job or go for full time bug bounty

    • @xhunterx914
      @xhunterx914 2 місяці тому +1

      get job, focus on learning and becoming better instead of money

    • @DARKX_000
      @DARKX_000 2 місяці тому

      @@xhunterx914 thanks ❤

  • @pukavec_vasa
    @pukavec_vasa 8 місяців тому

    Good video. Whole story please!

  • @STREETFOODIESFINDS
    @STREETFOODIESFINDS 4 місяці тому +1

    full course for bug bounty

  • @giodevJS
    @giodevJS 8 місяців тому

    But that happens to every career you pursue, some make it some not. Even when you start your
    Own business. That’s life.

  • @1DRS
    @1DRS 8 місяців тому +1

    Thanks naham another useful video from you . really appreciate it .

  • @meh.7539
    @meh.7539 8 місяців тому +11

    Look, I'm going to be honest; at this point I'd feel pretty good about myself if I submitted a report that was marked as a 'duplicate'.
    At least I'd feel like I was making some progress...

  • @abdelhadiosama-f1q
    @abdelhadiosama-f1q 8 місяців тому

    The music that in the back is making noise

  • @00Jimmy00
    @00Jimmy00 8 місяців тому +2

    i stared doing bug bounty just for fun, did not make any money but i am learning from real experience and thats most important thing.

  • @SupreemeSteevee
    @SupreemeSteevee 8 місяців тому

    How can I convince my family

    • @transforgoku
      @transforgoku 7 місяців тому

      You can't, do it for yourself if you really want to go for this...

    • @SupreemeSteevee
      @SupreemeSteevee 7 місяців тому

      @@transforgoku i don't have a laptop that's why

    • @RIMAN_JN
      @RIMAN_JN Місяць тому

      Abe laptop nhi hai toh kya huwa mobile to hai.​@@SupreemeSteevee

  • @matrixploit
    @matrixploit 8 місяців тому +3

    Can you guys rate Ben's Udemy Bug Bounty course from 0-9?

    • @bughunter9766
      @bughunter9766 8 місяців тому +2

      7

    • @MianHizb
      @MianHizb 8 місяців тому

      6

    • @DevRawal-vn1vp
      @DevRawal-vn1vp 8 місяців тому +4

      2 Because it only covers the basics. That course will take you nowhere and teach you how to make money.
      Not being rude, but I'm on a level where I need to feed myself with more advanced stuff.

    • @tokyotoronto6028
      @tokyotoronto6028 8 місяців тому +1

      trash

  • @nope4377
    @nope4377 8 місяців тому

    Thank you and I will go back to my laptop and do continue learning spring boot

  • @HuntrOffSec
    @HuntrOffSec 2 місяці тому

    waiting for that origins video, digital ocean vps 2024 update tools and stuff and bbh course videos! a lot to be made ben!

  • @alirazm5724
    @alirazm5724 8 місяців тому

    Tell us more Behrooz. As always great content

  • @angrydog4379
    @angrydog4379 8 місяців тому

    Appreciate the underlining truth.

  • @DigDugDuff
    @DigDugDuff 8 місяців тому

    Would love to hear your origin story

  • @tajsec
    @tajsec 8 місяців тому

    great video Ben thanks, tell us more stories.

  • @NatteeSetobol
    @NatteeSetobol 8 місяців тому

    I really learned bash scripting thanks to learning how to hunt bugs!

  • @mmmr5048
    @mmmr5048 3 місяці тому

    Thanks Very Much, Ben. ❤❤❤
    helped me a lot.
    love u.

  • @JoseSanchez-ue9wk
    @JoseSanchez-ue9wk 8 місяців тому +1

    Story, tell us more!

  • @testeverything0
    @testeverything0 8 місяців тому

    playing sad 😔 music in the background.. very discouraging but will keep trying

  • @jsmith85151
    @jsmith85151 8 місяців тому +1

    I really don't see a point until I get to the level of white box pentesting to waste my time on this crap. Black box seems pointless at this point without a great deal of experience.
    Bug bounties are dumb.

  • @philippedelteil2489
    @philippedelteil2489 8 місяців тому

    So, he also have issues with the platforms but only now he describes them a little bit. There are a lot of things to talk about the dark side of bug bounty hunting.

    • @NahamSec
      @NahamSec  8 місяців тому

      It’s so people understand the issues are across the board and some of us have different ways to communicate and get past it

  • @dylanknight8100
    @dylanknight8100 8 місяців тому +1

    Tell us more!

  • @angela_rivers
    @angela_rivers 8 місяців тому +1

    Tell us more! Tell us everything.

  • @mystiquegirl2023
    @mystiquegirl2023 8 місяців тому

    I would love to hear your story

  • @shaneormond7128
    @shaneormond7128 8 місяців тому +1

    Tell us more.

  • @saulgoodman_esq
    @saulgoodman_esq 8 місяців тому

    We want to hear your story

  • @riazrabia
    @riazrabia 5 місяців тому

    i want to know your bug hunting story

  • @Doc1670
    @Doc1670 8 місяців тому +1

    Story, tell us more

  • @rctech1237
    @rctech1237 8 місяців тому +1

    Cool i wasn't knowing about it 😮

  • @amirfa4330
    @amirfa4330 5 місяців тому

    Tell us more please!

  • @davegagne2005
    @davegagne2005 8 місяців тому +1

    this video made me uninstall every video games left on my PC .

    • @AryanK02
      @AryanK02 8 місяців тому +1

      Why

    • @ged9925
      @ged9925 8 місяців тому

      Why

    • @davegagne2005
      @davegagne2005 8 місяців тому

      @@AryanK02 cuz wasting time playing them?

    • @R53Hole
      @R53Hole 8 місяців тому

      @@AryanK02 they were all infected with worms and RATs

    • @tokyotoronto6028
      @tokyotoronto6028 8 місяців тому

      wasting time or what not a problem.

  • @genxploit
    @genxploit 8 місяців тому

    We want your story !

  • @lucianjohr5569
    @lucianjohr5569 7 місяців тому

    Tell me more Naham please💪

  • @DerkBOllie
    @DerkBOllie 8 місяців тому

    nice omega swatch. Ive got the same one ;)

    • @NahamSec
      @NahamSec  8 місяців тому +1

      I love it!

  • @kukrejaaman8012
    @kukrejaaman8012 8 місяців тому

    Tell us more

  • @s.nikolic497
    @s.nikolic497 8 місяців тому

    Story baby / mandatory 😅

  • @N4G_Arthur
    @N4G_Arthur 8 місяців тому

    We want to know your story

  • @mandooooooo781
    @mandooooooo781 8 місяців тому

    100k subscribers later makes this video

  • @mango-gu5xo
    @mango-gu5xo 8 місяців тому

    Hello, could you add subtitle for your video? you speak too fast so i can't keep pace with you.😅

  • @0xftz7w99o
    @0xftz7w99o 8 місяців тому +1

    STORY!

  • @PrajwalPrajwal-c3y
    @PrajwalPrajwal-c3y 8 місяців тому

    Story

  • @mohammadrezaabbasi4841
    @mohammadrezaabbasi4841 8 місяців тому

    Tell us more, dude

  • @huncking
    @huncking 8 місяців тому

    Story boss🎉

  • @VutoKadzamira
    @VutoKadzamira 6 місяців тому

    Origin story

  • @xeurek4
    @xeurek4 8 місяців тому

    story / next part

  • @brebreezy4995
    @brebreezy4995 8 місяців тому

    tells more please

  • @علیرضااحمدی-ع8خ
    @علیرضااحمدی-ع8خ 8 місяців тому

    tell us more ben

  • @vexed3185
    @vexed3185 4 місяці тому

    Story!

  • @user-wm1do5ob8u
    @user-wm1do5ob8u 8 місяців тому

    Can I get the Hoodie details !! loooks dope

  • @j0hnc0nn0r-sec
    @j0hnc0nn0r-sec 8 місяців тому

    Why so sad ?

    • @NahamSec
      @NahamSec  8 місяців тому +1

      Been a rough week 🫠

    • @PentesterPlaybook
      @PentesterPlaybook 8 місяців тому

      Sir what is your Original Name ?
      Behrooz ?
      i following you from 2021 but i didn't get you

  • @GhostNongs
    @GhostNongs 8 місяців тому

    Story❤

  • @hacklikeAgbaby
    @hacklikeAgbaby 8 місяців тому

    Ok, first

  • @rahmat_qurishi
    @rahmat_qurishi 8 місяців тому

    ❤❤

  • @mdatheeb
    @mdatheeb 8 місяців тому

    Story

  • @Cyber10791
    @Cyber10791 8 місяців тому

    🤟🏻

  • @manbeats6702
    @manbeats6702 8 місяців тому

    story

  • @BugbountyPOCs41
    @BugbountyPOCs41 8 місяців тому +1

    2

  • @ChrisCaliber-ue2bo
    @ChrisCaliber-ue2bo 8 місяців тому

    Tell us more!

  • @markfuentes3666
    @markfuentes3666 8 місяців тому

    Tell us more.

  • @SiNiC875
    @SiNiC875 8 місяців тому

    Tell us more

  • @MuhammedAli-pf8gv
    @MuhammedAli-pf8gv 8 місяців тому

    Story

  • @aquatester
    @aquatester 8 місяців тому

    story

  • @AmirhosseinShg
    @AmirhosseinShg 8 місяців тому

    Tell us more

  • @preparationoftheelect2023
    @preparationoftheelect2023 8 місяців тому

    Story

  • @alndhkurdi
    @alndhkurdi 8 місяців тому

    story

  • @beastjuniorfans
    @beastjuniorfans 7 місяців тому

    Story

  • @embededmind418
    @embededmind418 8 місяців тому

    story