No Open Bug Bounty videos yet. You could help us improve this page by suggesting one.
Based on our record, Burp Suite should be more popular than Open Bug Bounty. It has been mentiond 13 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
If someone has reported a potential exploit via openbugbounty.org and has contacted you saying you must disclose this issue, how must you go about that to be compliant? Source: almost 2 years ago
Also depending on where you're at (e.g. Which country), it may be perfectly legal for you to test for non-instrusive vulns (I.e. xss/csrf/redirects) legally without permission, as long as you aren't actually weaponizing them.. So I used to test for that stuff against live sites in the wild and then report it via projects like https://openbugbounty.org/ just as a way to get some practice in against live targets. Source: over 2 years ago
I used Open Bug Bounty quite a lot, but to be honest, most of it was just sending e-mails to the affected company. I suppose you could call it cold calling. Source: almost 3 years ago
In addition, tools such as snyk or burp can be used to control the dependencies of a project. - Source: dev.to / 3 days ago
Check https://portswigger.net, they have learning material and labs about this topic. Source: over 1 year ago
I ask about serving websites because understanding how a web server works (very basically) with a browser or any client is a huge step in understanding HTTP, host headers, and even host header attacks (if you're into that sort of thing.. As an aside I did a quick google search and https://portswigger.net/ showed up.. Apparently they have interactive labs and very informative documentation on various attack... Source: almost 2 years ago
As you are quite new to the hobby, I would definitely recommend you go to portswigger.net academy. They give you a quite thorough understanding in all the fundamentals and they have labs set up where you can practice everything you learn at each step. The best part is you can learn at your own pace and it's all free. Source: almost 2 years ago
Connect your PC (with Burp Suite installed) and Android to the same network. > Note — Here my PC’s IP is 192.168.43.20 and Android’s IP is 192.168.43.180. - Source: dev.to / almost 2 years ago
HackerOne - HackerOne provides a platform designed to streamline vulnerability coordination and bug bounty program by enlisting hackers.
Nessus - Nessus Professional is a security platform designed for businesses who want to protect the security of themselves, their clients, and their customers.
YesWeHack - Global Bug Bounty & Vulnerability Management Platform
Qualys - Qualys helps your business automate the full spectrum of auditing, compliance and protection of your IT systems and web applications.
Intigriti - Intigriti offers bug bounty and agile penetration testing solutions powered by Europe's #1 leading network of ethical hackers.
OpenVAS - The Open Vulnerability Assessment System (OpenVAS) is a framework of several services and tools...