You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
My talk will be about Bug Bounty, also k/a Web Application Penetration Testing.
About
My talk will be totally about bug bounty or professionally known as "Web Application Penetration Testing". I will be explaining the OWASP Top 10 vulnerabilities and show live demo of how to find and exploit them. Apart from this, I will also be explaining various tools used frequently in bug bounty process and demonstrate them, if time permits. Sharing all the resources I have used and I would prefer any beginner to, I will try to fill the audience with as much value as I will be able to in that particular time frame.
Pre-requisites
Required skills
Basic understanding of web technologies such as HTML, CSS, JS.
Exposure of Linux will be a plus.
Required setups
One projector.
Extension board for audience to plug their system, if required.
I am Mrigendra Soni from Amity University Rajasthan. I have been into penetration testing for the past 7 months. I have worked in iOS Application Penetration Testing during my first year of college and after that I began working in web application penetration testing -OR- Bug Bounty. I have reported bugs to companies such as AngelList, DELL Technologies, StudyTonight and recently I reported my first ever bug to the Indian Government. I have also had the wonderful opportunity to speak at the Gurugram Cyber Police Internship Program 2019 about "Bug Bounty" and met some very amazing people there.
Currently I'm working as a Cyber Security Intern at StoryXpress, where my day to day task involve conducting penetration tests on their internal infrastructure and all their web applications.
Abstract
My talk will be about Bug Bounty, also k/a Web Application Penetration Testing.
About
My talk will be totally about bug bounty or professionally known as "Web Application Penetration Testing". I will be explaining the OWASP Top 10 vulnerabilities and show live demo of how to find and exploit them. Apart from this, I will also be explaining various tools used frequently in bug bounty process and demonstrate them, if time permits. Sharing all the resources I have used and I would prefer any beginner to, I will try to fill the audience with as much value as I will be able to in that particular time frame.
Pre-requisites
Required skills
Basic understanding of web technologies such as HTML, CSS, JS.
Exposure of Linux will be a plus.
Required setups
One projector.
Extension board for audience to plug their system, if required.
Expected duration
1.5 hours.
Level
Beginner to Intermediate
Resources
https://medium.com/@sangeeta.igit/resources-for-web-application-penetration-testing-95f64bb8333f
https://blog.sucuri.net/2019/01/owasp-top-10-security-risks-part-v.html
https://medium.com/@ehsahil/getting-started-in-bug-bounty-7052da28445a
Speaker Bio
I am Mrigendra Soni from Amity University Rajasthan. I have been into penetration testing for the past 7 months. I have worked in iOS Application Penetration Testing during my first year of college and after that I began working in web application penetration testing -OR- Bug Bounty. I have reported bugs to companies such as AngelList, DELL Technologies, StudyTonight and recently I reported my first ever bug to the Indian Government. I have also had the wonderful opportunity to speak at the Gurugram Cyber Police Internship Program 2019 about "Bug Bounty" and met some very amazing people there.
Currently I'm working as a Cyber Security Intern at StoryXpress, where my day to day task involve conducting penetration tests on their internal infrastructure and all their web applications.
- Can be done after the talk/workshop -
Include link to slides here
Include link to the video here
The text was updated successfully, but these errors were encountered: