This course is the follow-up to one of my previous courses – Start Hacking and Making Money Today at HackerOne. We will continue our bug hunting journey and you will learn about the next 5 bugs that have been successful for me for years!
HackerOne is a big opportunity for you. At HackerOne you can legally hack some of the biggest companies (Twitter, Uber, Yahoo, Coinbase, Slack, etc.), and you can get paid for your findings. You can earn for example $100, $1,000 or $10,000 per one bug. It’s just amazing. All you need are Internet connection and knowledge.
Yes, you need knowledge and this is exactly what I’m going to give you in this course. I’m one of the top hackers at HackerOne (among more than 100,000 registered hackers), and I really know how to make money out there. If you want to keep hacking and making money at HackerOne, then this course is just for you.
You will learn about the next 5 bugs that I recommend you to play with (these bugs have been successful for me for years). Here are these bugs:
1. How to Impersonate a User via Insecure Log In
2. Sensitive Information in Metadata
3. Disclosure of Credentials
4. Insecure Password Change
5. Dictionary Attack
For every single bug there is a DEMO so that you can see how to find these bugs step-by-step in practice.
Do you want to make money in bug bounty programs? Let’s enroll to this course and continue our exciting journey. What's more – don’t forget to subscribe to my newsletter to receive FREE hacking resources.
I’m listed among Top 10 Hackers (HackerOne). I found security vulnerabilities in Google, Yahoo, Mozilla, Microsoft, Twitter and other companies, and due to the severity of many bugs, I received numerous awards for my findings.
I happily share my security bug hunting experience in hands-on trainings “Hacking Web Applications – Case Studies of Award-Winning Bugs in Google, Yahoo, Mozilla and More” and “Bug Hunting Millionaire: Mastering Web Attacks with Full-Stack Exploitation”. I had the pleasure to deliver security training courses at key industry conferences such as Hack In The Box (Amsterdam), CanSecWest (Vancouver), 44CON (London), Hack In Paris (Paris), DeepSec (Vienna), HITB GSEC (Singapore), BruCON (Ghent) and for many corporate clients. My students include security specialists from Oracle, Adobe, ESET, ING, Red Hat, Trend Micro, Philips and the government sector (recommendations: https://silesiasecuritylab.com/services/training/#opinions).
I’m the founder and CEO at Silesia Security Lab – a company which delivers specialized security testing and training services. To find out about my latest work, subscribe to my newsletter and follow me on Twitter (@dawidczagan).