0:08 Hello, I'm Atlau. I'm from France. I'm
0:10 25 years old and I'm currently 35 on Yes React.
0:17 The fact that you know that there are a
0:18 lot of bugs everywhere, but you don't
0:20 know where to start and [music] where to
0:22 find bugs. So, it can be challenging at
0:23 first, but when you start finding the
0:25 first bug, after that, you can find a
0:32 I'm primarily looking at target that I
0:36 already use like an everyday basis. So
0:38 mainly app that I use everyday [music]
0:40 an app that I love to use. So I know
0:42 that if I found bug on them I can use it
0:44 or not after that because if I found a
0:46 lot of bugs on the target like that I
0:53 My favorite taking tool is Kaido, which
0:55 is [music] underrated at the moment and
0:57 I love using it instead of B because
0:59 it's lightweight and pretty nice. As I
1:01 was a developer before that, I love to
1:03 develop my own tool and be able to find
1:05 bugs like that. So, I'm developing
1:08 plugins for Kaido or maybe some script
1:10 for myself to help [music] me find more bugs.
1:17 Yeah, a lot. Because by being a
1:19 developer before, I have the mindset of
1:22 how people trait new tools and how
1:24 people create websites. So I know where
1:26 I can find bugs and how it can happen.
1:33 I love Yes because the traging is
1:36 perfect. So it's very fast to get triage
1:37 and I love the platform. The people
1:39 [music] are pretty good. The bugs are
1:41 pretty good there and the program is
1:47 That was a bug when I was able to reset
1:50 the password of every account in a big
1:52 uh medical company. So that was pretty
1:55 huge. That was a full chain. So it was
1:57 different bugs chained together. So that
2:00 was mainly idols and improper access
2:02 control bugs. And at the end it was the
2:04 result of resetting every password of
2:11 We did a hacker house with some friends
2:14 mainly on Yesak [music] and it was very
2:16 fun because we were like a lot of
2:18 friends just doing bunch together having
2:27 I would say persistent, creative and
2:29 communitydriven mainly because I'm
2:31 writing a lot of blog posts so sharing
2:33 my experience and all the stuff I'm
2:40 >> [music]
2:42 >> being persistent on the target and take
2:44 a lot of time because at the first time
2:46 you will not find any bugs but you can
2:48 find one maybe a week later or maybe a
2:50 month later. So just being persistent
2:52 and still continue [music] to look at
