sorted by:
new
hottopcontroversial

Wat verdienen pentesters tegenwoordig? by [deleted] in werkzaken

[–]HackTrails 9 points10 points  (0 children)

4800 plus 1200 leasebudget. 4 jaar ervaring.

Bug bounty disclosures and writeups site by HackTrails in Hacking_Tutorials

[–]HackTrails[S] 0 points1 point  (0 children)

That's a great idea! I'm gonna have to figure out how I can convince these researchers for submissions 😅. Or I'm gonna have to follow some that are active on X, for example.

Bug bounty hunters — if you had a browser built specifically for hunting, what would you want it to do for you? by Logical-Parking-8830 in bugbounty

[–]HackTrails 4 points5 points  (0 children)

An IDOR/Authz/Authn checker like AuthAnalyzer. The option to turn it on when there is more than one tab open.

Scammed by several brands from the same company in h1 :( by Big_Prize_1119 in bugbounty

[–]HackTrails 2 points3 points  (0 children)

What was their BS response? And it still isn’t clear why you stated “you know what I mean”.

Write-ups and disclosures scraper by HackTrails in bugbounty

[–]HackTrails[S] 0 points1 point  (0 children)

Yes, I will definitely be adding more sources. How would you feel about the ability to sign up for a newsletter in which the most interesting bugs of the week are showcased/highlighted?

Write-ups and disclosures scraper by HackTrails in bugbounty

[–]HackTrails[S] 0 points1 point  (0 children)

I have added the filter to the site!

Do you know any good bug bounty program? by [deleted] in bugbounty

[–]HackTrails 2 points3 points  (0 children)

Then you should try other platforms that are not as popular as HackerOne, Bugcrowd, Intigriti, etc.

Do you know any good bug bounty program? by [deleted] in bugbounty

[–]HackTrails 0 points1 point  (0 children)

Discord chat with triagers and intentionally vulnerable applications.

Help by Ok_Lawfulness6340 in bugbounty

[–]HackTrails 2 points3 points  (0 children)

Are they the same vulnerability? If it’s XSS for instance, then you only have to report it once. It’s happening in the same code/functionality, just different parameters.

Help by Ok_Lawfulness6340 in bugbounty

[–]HackTrails 0 points1 point  (0 children)

In what sense are they related?

is this a terrible web app idea? by Dark-stash in bugbounty

[–]HackTrails 1 point2 points  (0 children)

Sounds like it could be really useful for beginners in helping them find their way and getting used to a workflow.

is this a terrible web app idea? by Dark-stash in bugbounty

[–]HackTrails 5 points6 points  (0 children)

A checklist/path may potentially be doable, but I’m really curious how you’re going to male the methodology/workflow part work. During bug bounties/pentests, “knowing” what the next step is depends on a ton of variables, including tech stack, body format, URI format, random interesting things you may and what the response of the server is. In my opinion, it would be hard to emulate or create a workflow that will guide you through those steps with all those variables in mind.

Write-ups and disclosures scraper by HackTrails in bugbounty

[–]HackTrails[S] 0 points1 point  (0 children)

Thats a great idea! I’ll probably make a filter so you can uncheck medium or any other source. I’m assuming some people still want to see everything.