This content highlights the journey and methodology of a bug bounty hunter, emphasizing the importance of developer mindset, tool selection, and persistence in discovering vulnerabilities.
Mind Map
Cliquer pour agrandir
Cliquez pour explorer la carte mentale interactive complète
Hello, I'm Atlau. I'm from France. I'm
25 years old and I'm currently 35 on Yes React.
The fact that you know that there are a
lot of bugs everywhere, but you don't
know where to start and [music] where to
find bugs. So, it can be challenging at
first, but when you start finding the
first bug, after that, you can find a
I'm primarily looking at target that I
already use like an everyday basis. So
mainly app that I use everyday [music]
an app that I love to use. So I know
that if I found bug on them I can use it
or not after that because if I found a
lot of bugs on the target like that I
My favorite taking tool is Kaido, which
is [music] underrated at the moment and
I love using it instead of B because
it's lightweight and pretty nice. As I
was a developer before that, I love to
develop my own tool and be able to find
bugs like that. So, I'm developing
plugins for Kaido or maybe some script
for myself to help [music] me find more bugs.
Yeah, a lot. Because by being a
developer before, I have the mindset of
how people trait new tools and how
people create websites. So I know where
I can find bugs and how it can happen.
I love Yes because the traging is
perfect. So it's very fast to get triage
and I love the platform. The people
[music] are pretty good. The bugs are
pretty good there and the program is
That was a bug when I was able to reset
the password of every account in a big
uh medical company. So that was pretty
huge. That was a full chain. So it was
different bugs chained together. So that
was mainly idols and improper access
control bugs. And at the end it was the
result of resetting every password of
We did a hacker house with some friends
mainly on Yesak [music] and it was very
fun because we were like a lot of
friends just doing bunch together having
I would say persistent, creative and
communitydriven mainly because I'm
writing a lot of blog posts so sharing
my experience and all the stuff I'm
>> [music]
>> being persistent on the target and take
a lot of time because at the first time
you will not find any bugs but you can
find one maybe a week later or maybe a
month later. So just being persistent
and still continue [music] to look at
Cliquez sur n'importe quel texte ou horodatage pour accéder directement à ce moment de la vidéo
Partager :
La plupart des transcriptions sont prêtes en moins de 5 secondes
Copie en un clicPlus de 125 languesRechercher dans le contenuAller aux horodatages
Collez une URL YouTube
Entrez le lien de n'importe quelle vidéo YouTube pour obtenir la transcription complète
Formulaire d'extraction de transcription
La plupart des transcriptions sont prêtes en moins de 5 secondes
Installez notre extension Chrome
Obtenez les transcriptions instantanément sans quitter YouTube. Installez notre extension Chrome et accédez en un clic à la transcription de n'importe quelle vidéo directement depuis la page de lecture.
