Artwork

Inhoud geleverd door SquareX. Alle podcastinhoud, inclusief afleveringen, afbeeldingen en podcastbeschrijvingen, wordt rechtstreeks geüpload en geleverd door SquareX of hun podcastplatformpartner. Als u denkt dat iemand uw auteursrechtelijk beschermde werk zonder uw toestemming gebruikt, kunt u het hier beschreven proces https://nl.player.fm/legal volgen.
Player FM - Podcast-app
Ga offline met de app Player FM !

With Bug Bounty Expert Niks | Be Fearless Podcast EP 10

11:30
 
Delen
 

Manage episode 440819907 series 3579095
Inhoud geleverd door SquareX. Alle podcastinhoud, inclusief afleveringen, afbeeldingen en podcastbeschrijvingen, wordt rechtstreeks geüpload en geleverd door SquareX of hun podcastplatformpartner. Als u denkt dat iemand uw auteursrechtelijk beschermde werk zonder uw toestemming gebruikt, kunt u het hier beschreven proces https://nl.player.fm/legal volgen.

"I found multiple demo versions available without any authentication. I went there, extracted all the requests, and fuzzed all the parameters for SQL injection. Then I changed the domain to the in-scope domain of the company I was hacking and ran SQL commands to dump their database."
Hear from Nikhil “Niks” Srivastava bug bounty hunter and founder of B-Sides Ahmedabad in our DEF CON 32 special episode of the Be Fearless Podcast. Hosted by SquareX Product Evangelist Dakshitaa, Niks discusses his research, bug bounty hunting experience and giving back to the cybersecurity community via conferences.
0:00 Niks’ DEF CON talk on hacking corporate banking
3:27 How AI has made bug bounty hunting easier
4:59 Bug bounty story: breaking into an e-commerce company via SQL injection
7:34 Giving back to the cybersecurity community with BSides Ahmedabad
10:13 Advice for bug bounty beginners
🔔 Follow Niks and Dakshitaa on:
https://www.linkedin.com/in/nikhilksrivastava/
https://www.linkedin.com/in/dakshitaababu/

🔥 Powered by SquareX
SquareX helps organizations detect, mitigate, and threat hunt web attacks happening against their users in real-time. Find out more about SquareX at https://sqrx.com/

  continue reading

Hoofdstukken

1. Niks’ DEF CON talk on hacking corporate banking (00:00:00)

2. How AI has made bug bounty hunting easier (00:03:27)

3. Bug bounty story: breaking into an e-commerce company via SQL injection (00:04:59)

4. Giving back to the cybersecurity community with BSides Ahmedabad (00:07:34)

5. Advice for bug bounty beginners (00:10:13)

30 afleveringen

Artwork
iconDelen
 
Manage episode 440819907 series 3579095
Inhoud geleverd door SquareX. Alle podcastinhoud, inclusief afleveringen, afbeeldingen en podcastbeschrijvingen, wordt rechtstreeks geüpload en geleverd door SquareX of hun podcastplatformpartner. Als u denkt dat iemand uw auteursrechtelijk beschermde werk zonder uw toestemming gebruikt, kunt u het hier beschreven proces https://nl.player.fm/legal volgen.

"I found multiple demo versions available without any authentication. I went there, extracted all the requests, and fuzzed all the parameters for SQL injection. Then I changed the domain to the in-scope domain of the company I was hacking and ran SQL commands to dump their database."
Hear from Nikhil “Niks” Srivastava bug bounty hunter and founder of B-Sides Ahmedabad in our DEF CON 32 special episode of the Be Fearless Podcast. Hosted by SquareX Product Evangelist Dakshitaa, Niks discusses his research, bug bounty hunting experience and giving back to the cybersecurity community via conferences.
0:00 Niks’ DEF CON talk on hacking corporate banking
3:27 How AI has made bug bounty hunting easier
4:59 Bug bounty story: breaking into an e-commerce company via SQL injection
7:34 Giving back to the cybersecurity community with BSides Ahmedabad
10:13 Advice for bug bounty beginners
🔔 Follow Niks and Dakshitaa on:
https://www.linkedin.com/in/nikhilksrivastava/
https://www.linkedin.com/in/dakshitaababu/

🔥 Powered by SquareX
SquareX helps organizations detect, mitigate, and threat hunt web attacks happening against their users in real-time. Find out more about SquareX at https://sqrx.com/

  continue reading

Hoofdstukken

1. Niks’ DEF CON talk on hacking corporate banking (00:00:00)

2. How AI has made bug bounty hunting easier (00:03:27)

3. Bug bounty story: breaking into an e-commerce company via SQL injection (00:04:59)

4. Giving back to the cybersecurity community with BSides Ahmedabad (00:07:34)

5. Advice for bug bounty beginners (00:10:13)

30 afleveringen

Tất cả các tập

×
 
Loading …

Welkom op Player FM!

Player FM scant het web op podcasts van hoge kwaliteit waarvan u nu kunt genieten. Het is de beste podcast-app en werkt op Android, iPhone en internet. Aanmelden om abonnementen op verschillende apparaten te synchroniseren.

 

Korte handleiding