Bug Bounty & Agile Pentesting Platform

Edit & Remove Messages

TL;DR Changelog 39: Communication is key  Communicating with others about a bug or vulnerability that has been found and submitted as report is one of the necessary key features for a bug bounty platform. Communication between the relevant stakeholders should be quick, easy and transparent but also provide some assurance about the follow-up and help […]

Continue reading Continue reading

Lighten up; Dark Theme is here! 

Dark theme is a popular request for every application, website, or operating system (OS) nowadays. There are many reasons for that; some are merely preferences in style, and others are accessibility and health concerns (I think most of us have gotten a headache from staring at overly bright screens for too long at some point!) […]

Continue reading Continue reading

Enhanced Reporting Experience

In this release, we focused on improving your reporting experience. A quick typo or a cluttered code block is a thing of the past with code syntax highlighting and a native spell check everywhere! New changes to your reporting experience in a nutshell: Wowowow, did I just see coloured code blocks on submissions? đź‘€ Researcher Bandjes […]

Continue reading Continue reading

Getting (back) together to hack! 

Live Hacking Events (LHEs) are something special for everyone involved. Unlike regular, continuous bug bounty programs, LHEs really focus the attention of a select group of outstanding researchers on a very limited scope with equally limited time. And while we have had some very successful remote LHEs, we are also really looking forward to being […]

Continue reading Continue reading

Changelog #35  – New insightful resources

Let’s start from the beginning! Bug Bounty, Continuous security testing… All relatively new terms and definitely the new way of improving security maturity. But how do you get started? The available information found online is often unstructured, inconsistent and the amount can be overwhelming. Therefore we decided to start from the beginning and create a […]

Continue reading Continue reading

Changelog #33 – Collaboration makes you better!

Researcher collaboration Researcher collaboration is essential to ensure the success of a bug bounty program. Quality, creativity and impact are often achieved by working together and exchanging technical know-how. Live events and live communication tools, like our Discord community, showed us the increased popularity and impact of researcher collaboration. Finding high impact and complex vulnerabilities […]

Continue reading Continue reading

Bug Bytes #53 – Exploiting a SSRF in WeasyPrint, The Bug That Exposed Your PayPal Password and 12 tricks for Burp Repeater

Hey hackers! These are our favorite resources shared by pentesters and bug hunters last week. Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The first series is curated by Mariem, better known as PentesterLand. Every week, she keeps us up to date with a comprehensive list of write-ups, tools, tutorials and […]

Continue reading Continue reading

Bug Bytes #52 – Account takeover via HTTP Request Smuggling, Lesser-known Tools for Android Application PenTesting and Hunting Credentials and Secrets in iOS Apps

Hey hackers! These are our favorite resources shared by pentesters and bug hunters last week. Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The first series is curated by Mariem, better known as PentesterLand. Every week, she keeps us up to date with a comprehensive list of write-ups, tools, tutorials and […]

Continue reading Continue reading

Bug Bytes #43 – Abusing HTTP hop-by-hop request headers, The Bug Bounty Podcast by @Regala_ & Live Bug Bounty Recon Session on Verizon Media’s Yahoo.com W/ @Securinti

Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The first series is curated by Mariem, better known as PentesterLand. Every week, she keeps us up to date with a comprehensive list of write-ups, tools, tutorials and resources. This issue covers the week from 25th of October to 1st of November. Our […]

Continue reading Continue reading