Biscuit's Bug Bounty Playbook

Ctrlk

👋Introduction to Biscuit's Bug Bounty Playbook
Mains
🟧Learn to Use Burp Suite
Learn Android Bug Bounty
- 🎥Video Tutorials
❤️YouTube Channels
📰Bug Bounty Reports
📚Blogs & Writeups
🏹GitHub Repository
👨‍👨‍👧Conference Talks
🖨️Automated Scanners
⚙️Intentionally Vulnerable Apps
🎱Learn Drozer For Android Pentesting
🪀Learn Frida For Android Pentesting
🏈Bypassing Security Protections in APKs via Objection and Frida
🪁Security Tools For Android Pentesting
😼PIDCAT for Android Bug Bounty Logging
🎹CLI Commands & Shortcuts
My Android Bug Bounty Lab Setup
Learn Thick Client Pentesting
- 🟥Introduction Videos
📑Introduction Articles
✅Pentesting Checklist
📚Bug Bounty Writeups
🐞Thick Client Vulnerabilities
🥼Intentionally vulnerable labs
🛠️Tools for Thick Client Pentesting
🏠Bug Bounty Programs with Thick Client Scope
💵Paid Udemy Course
Bug Bounty Reports & Articles
4️Forced Browsing
5️RCE
6️OSINT
Bug Bounty Platforms
Exploiting Technologies

Powered by GitBook

On this page

Bug Bounty Reports & Articles

1️Low Hanging Fruits

Weblate disclosed on HackerOne: Old password can be new passwordHackerOne

How to Report DMARC Vulnerabilities Efficiently To Earn Bounties EasilyMedium

Weblate disclosed on HackerOne: Weak password policyHackerOne

https://medium.com/@sangamahesh650/finding-a-easy-p3-bug-05b54f70e14cmedium.com

https://medium.com/@sangamahesh650/how-to-find-a-easy-bug-it-worth-100-7485f9bf638fmedium.com

https://www.freedium.cfd/https://medium.com/@loyalonlytoday/finding-a-easy-p3-bug-05b54f70e14cwww.freedium.cfd

GitLab disclosed on HackerOne: EXIF metadata not stripped from JPG...HackerOne

P4 bug’s and their POC steps | Part 1Medium

P4 bug’s and their POC steps | Part 2Medium

P4 bug’s and their POC steps | Part 3Medium

P4 bug’s and their POC steps | Part 4Medium

P4 bug’s and their POC steps | Part 5Medium

P4 bug’s and their POC steps | Part 6Medium

P4 bug’s and their POC steps | Part 7 | $Easy Money$Medium

PreviousAWS S3 NextCache Vulnerabilities

Last updated 6 months ago