I love how this community is growing, just a year ago I didn't know what to do with my life until I discovered the bug bounty through your podcast. I am pleased to witness the growth of this community from the beginning.
At what point would you go from holding onto a 'gadget', e.g. an open redirect, or an html injection issue, to simply reporting it - probably expecting a Low - if it can't be escalated on further testing?
Great question - as a long-term hunter - pretty much never unless it's an LHE and I think I need the extra money/rep to place in a different tier (top 10, top 5, top 3).
I love how this community is growing, just a year ago I didn't know what to do with my life until I discovered the bug bounty through your podcast. I am pleased to witness the growth of this community from the beginning.
Did you have any previous knowledge? Where are you now did you find some bugs?
If the Pod opening music wasn't so sick I'd say it should be changed to the music from Inspector Gadget LMAO Great show again :)
Keep up the amazing content guys. I look forward to every new episode
At what point would you go from holding onto a 'gadget', e.g. an open redirect, or an html injection issue, to simply reporting it - probably expecting a Low - if it can't be escalated on further testing?
Great question - as a long-term hunter - pretty much never unless it's an LHE and I think I need the extra money/rep to place in a different tier (top 10, top 5, top 3).
where is php type confusion