This content highlights the journey and methodology of a bug bounty hunter, emphasizing the importance of developer mindset, tool selection, and persistence in discovering vulnerabilities.
Mind Map
클릭해서 펼치기
클릭해서 인터랙티브 마인드맵 전체 보기
Hello, I'm Atlau. I'm from France. I'm
25 years old and I'm currently 35 on Yes React.
The fact that you know that there are a
lot of bugs everywhere, but you don't
know where to start and [music] where to
find bugs. So, it can be challenging at
first, but when you start finding the
first bug, after that, you can find a
I'm primarily looking at target that I
already use like an everyday basis. So
mainly app that I use everyday [music]
an app that I love to use. So I know
that if I found bug on them I can use it
or not after that because if I found a
lot of bugs on the target like that I
My favorite taking tool is Kaido, which
is [music] underrated at the moment and
I love using it instead of B because
it's lightweight and pretty nice. As I
was a developer before that, I love to
develop my own tool and be able to find
bugs like that. So, I'm developing
plugins for Kaido or maybe some script
for myself to help [music] me find more bugs.
Yeah, a lot. Because by being a
developer before, I have the mindset of
how people trait new tools and how
people create websites. So I know where
I can find bugs and how it can happen.
I love Yes because the traging is
perfect. So it's very fast to get triage
and I love the platform. The people
[music] are pretty good. The bugs are
pretty good there and the program is
That was a bug when I was able to reset
the password of every account in a big
uh medical company. So that was pretty
huge. That was a full chain. So it was
different bugs chained together. So that
was mainly idols and improper access
control bugs. And at the end it was the
result of resetting every password of
We did a hacker house with some friends
mainly on Yesak [music] and it was very
fun because we were like a lot of
friends just doing bunch together having
I would say persistent, creative and
communitydriven mainly because I'm
writing a lot of blog posts so sharing
my experience and all the stuff I'm
>> [music]
>> being persistent on the target and take
a lot of time because at the first time
you will not find any bugs but you can
find one maybe a week later or maybe a
month later. So just being persistent
and still continue [music] to look at
텍스트나 타임스탬프를 클릭하면 동영상의 해당 장면으로 바로 이동합니다
공유:
대부분의 자막은 5초 이내에 준비됩니다
원클릭 복사125개 이상의 언어내용 검색타임스탬프로 이동
YouTube URL 붙여넣기
YouTube 동영상 링크를 입력하면 전체 자막을 가져옵니다
자막 추출 양식
대부분의 자막은 5초 이내에 준비됩니다
Chrome 확장 프로그램 설치
YouTube를 떠나지 않고 자막을 즉시 가져오세요. Chrome 확장 프로그램을 설치하면 동영상 시청 페이지에서 바로 자막에 원클릭으로 접근할 수 있습니다.
