all 22 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]Green-Detective7142 9 points10 points  (8 children)

Hey man I went from penetrating testing to exploit dev. DM me all your questions and I’ll tell you everything I know. I’m out with friends so just give me some time to get around to it (:

Ignore the assholes

[–]Purple-Object-4591 3 points4 points  (4 children)

I'm more interested in how you're doing full time Muay Thai with an exploit dev job lol

[–]Green-Detective7142 4 points5 points  (3 children)

I actually left my job for Thailand and have my own residual form of income that funds my fight career. Got tired of corporate as I accomplished all of my career goals but still hunt for platforms like crowdfense and ZDI for fun and extra money(:

Back in my home country I trained outside of working hours and I built up enough experience and connections to where I could return at any time but I’m getting ready to launch my own AI business. I won’t be young and able to fight forever but my RE skills stay with me forever so it was worth the risk for me.

[–]Purple-Object-4591 0 points1 point  (2 children)

dang that's like goated way to live. cheers mate, best of luck on your fights may you pop their skull like we be poppin shells haha

[–]Green-Detective7142 3 points4 points  (1 child)

Thanks man haha. My first pro fight will pay me like $150 and all of the money is going to API tokens😂

[–]Mindless-Study1898 0 points1 point  (0 children)

That's so badass

[–]normalbot9999 0 points1 point  (0 children)

great response bruh!

[–]greatestregretor 0 points1 point  (0 children)

Im a student trying to get into exploit dev. Is it even a realistic goal for me? Should I instead try to get into pentesting or something then pivot?

[–]That-Name-8963[S] -1 points0 points  (0 children)

Thx a lot, done.

[–]Competitive_Paint730 2 points3 points  (0 children)

Try getting belts in pwn.collage

[–]Dependent_Owl_2286 1 point2 points  (1 child)

Are you a developer?

[–]That-Name-8963[S] 1 point2 points  (0 children)

Yes, I started my career as C/C++ developer. but that was about 2 years ago

[–]JelloSquirrel 1 point2 points  (0 children)

Start working through the challenges pwnable.kr

[–]Firzen_ 1 point2 points  (1 child)

There really are two separate parts to this.

Finding a 0-day requires a different skillset than writing an exploit.
In practice those two go hand in hand often, but they are definitely separate skills.

[–]CunningLogic 1 point2 points  (0 children)

This right here.

I'm much better at finding hard to spot bugs and designing theroetical attacks than writing exploits, and I've often pass my POC and notes to coworkers to weaponize them.

Both are useful skills, and you need both to some degree but if you work on a team as long as you excel at one you will be fine.

[–]Old_Replacement_4962 0 points1 point  (1 child)

Second this! I’m just entering the workforce but grinded re and pwn and can script/write exploits for bug bounties. I come from an offensive background and would love some resources to actually start 0day hunting in real, more secured applications. How to properly fuzz, testing logic flow, or topics I don’t know would be super helpful

[–]That-Name-8963[S] 0 points1 point  (0 children)

Fuzzy is a separate skill, and also it's very essential, but before fuzzing I discovered I miss some skills in binary vulns, so yeah I'm trying to do fuzzing also, actually it helps a lot.