How Do I Get Started With Bug Bounty ?

How do I get started with bug bounty hunting? How do I improve my skills?



These are some simple steps that every bug bounty hunter can use to get started and improve their skills:

Learn to make it; then break it!
A major chunk of the hacker's mindset consists of wanting to learn more. In order to really exploit issues and discover further potential vulnerabilities, hackers are encouraged to learn to build what they are targeting. By doing this, there is a greater likelihood that hacker will understand the component being targeted and where most issues appear. For example, when people ask me how to take over a sub-domain, I make sure they understand the Domain Name System (DNS) first and let them set up their own website to play around attempting to "claim" that domain.

Read books. Lots of books.
One way to get better is by reading fellow hunters' and hackers' write-ups. Follow /r/netsec and Twitter for fantastic write-ups ranging from a variety of security-related topics that will not only motivate you but help you improve. For a list of good books to read, please refer to "What books should I read?".

Join discussions and ask questions.
As you may be aware, the information security community is full of interesting discussions ranging from breaches to surveillance, and further. The bug bounty community consists of hunters, security analysts, and platform staff helping one and another get better at what they do. There are two very popular bug bounty forums: Bug Bounty Forum and Bug Bounty World.

Participate in open source projects; learn to code.
Go to https://github.com/explore or https://gitlab.com/explore/projects and pick a project to contribute to. By doing so you will improve your general coding and communication skills. On top of that, read https://learnpythonthehardway.org/ and https://linuxjourney.com/.

Help others. If you can teach it, you have mastered it.
Once you discover something new and believe others would benefit from learning about your discovery, publish a write-up about it. Not only will you help others, you will learn to really master the topic because you can actually explain it properly.

Smile when you get feedback and use it to your advantage.
The bug bounty community is full of people wanting to help others so do not be surprised if someone gives you some constructive feedback about your work. Learn from your mistakes and in doing so use it to your advantage. I have a little physical notebook where I keep track of the little things that I learnt during the day and the feedback that people gave me.


Learn to approach a target.
The first step when approaching a target is always going to be reconnaissance — preliminary gathering of information about the target. If the target is a web application, start by browsing around like a normal user and get to know the website's purpose. Then you can start enumerating endpoints such as sub-domains, ports and web paths.

A woodsman was once asked, "What would you do if you had just five minutes to chop down a tree?" He answered, "I would spend the first two and a half minutes sharpening my axe."
As you progress, you will start to notice patterns and find yourself refining your hunting methodology. You will probably also start automating a lot of the repetitive tasks.

Continue reading

1. Hackrf Tools
2. Hack Tools For Windows
3. Hack Tools For Games
4. Pentest Tools Alternative
5. Hacking Tools Windows 10
6. Hacking Tools Name
7. Pentest Tools Android
8. Hacks And Tools
9. Free Pentest Tools For Windows
10. Pentest Reporting Tools
11. Hack And Tools
12. Hacking Tools Software
13. Easy Hack Tools
14. Pentest Tools Bluekeep
15. Hacking Tools And Software
16. How To Hack
17. Easy Hack Tools
18. Pentest Tools Tcp Port Scanner
19. Pentest Tools For Windows
20. Wifi Hacker Tools For Windows
21. Hacking Tools For Windows 7
22. Hacker Search Tools
23. Hacker Tools Free Download
24. Pentest Tools For Ubuntu
25. Hacking Tools Online
26. Usb Pentest Tools
27. Growth Hacker Tools
28. Pentest Tools Download
29. Ethical Hacker Tools
30. Pentest Automation Tools
31. Hack Rom Tools
32. Hacker Tools Online
33. Hacking Tools And Software
34. Hack Tools For Windows
35. Hacker Tools 2019
36. Hacking Tools Name
37. Blackhat Hacker Tools
38. Hack Tools Mac
39. Hack App
40. Pentest Tools For Android
41. Pentest Automation Tools
42. Tools 4 Hack
43. Pentest Automation Tools
44. Nsa Hack Tools
45. Pentest Tools Website Vulnerability
46. Hacker Tools Linux
47. Blackhat Hacker Tools
48. Hacking Tools Download
49. Best Hacking Tools 2020
50. Hacking Tools Name
51. Hak5 Tools
52. Pentest Tools Port Scanner
53. Usb Pentest Tools
54. Pentest Tools Open Source
55. Install Pentest Tools Ubuntu
56. Hacking Tools For Windows Free Download
57. Pentest Box Tools Download
58. Best Hacking Tools 2019
59. Hacking Tools Name
60. Hacking Tools Kit
61. Best Hacking Tools 2019
62. Nsa Hack Tools Download
63. Pentest Tools List
64. Hacking Tools For Kali Linux
65. Hacking Tools For Windows Free Download
66. Hacking Tools For Games
67. Hackers Toolbox
68. Ethical Hacker Tools
69. Nsa Hack Tools
70. Pentest Tools For Ubuntu
71. What Are Hacking Tools
72. Hack Tools Mac
73. How To Make Hacking Tools
74. Hacking Tools Mac
75. Hack Rom Tools
76. Github Hacking Tools
77. Hacker Tools For Ios
78. Hack And Tools
79. Hack And Tools
80. Pentest Tools Url Fuzzer
81. Hack Tools For Windows
82. Beginner Hacker Tools
83. Hacker Tools Mac
84. Hacker Tools Linux
85. Blackhat Hacker Tools
86. Top Pentest Tools
87. Hack Tools 2019
88. Hacker Tools Github
89. Pentest Automation Tools
90. Hacking Tools Online
91. Hack Tools 2019
92. Hacker Tools Apk
93. Hacking Tools
94. Hacker Tools Hardware
95. Hack Tools Online
96. Hacking Tools For Windows Free Download
97. Hacking Tools For Pc
98. Hacker Security Tools
99. Hack Apps
100. Best Pentesting Tools 2018
101. Hacker Tools Software
102. Hack Tools For Mac
103. Nsa Hacker Tools
104. Hacker
105. Hacking Tools Software
106. Hacking Tools For Windows Free Download
107. Hack Tools 2019
108. Hack Tools Mac
109. Hacker Search Tools
110. Underground Hacker Sites
111. Pentest Tools Android
112. Hack Tools For Pc
113. Pentest Tools Github
114. Hacker Tools For Windows
115. New Hacker Tools
116. Hacking Tools Pc
117. Hacker Tools
118. Hack Website Online Tool
119. Pentest Tools For Windows
120. Nsa Hacker Tools
121. Tools Used For Hacking
122. Hacker Tools For Pc
123. Github Hacking Tools
124. Hack Tools For Ubuntu
125. Pentest Tools Port Scanner
126. Hacking Tools For Windows
127. Pentest Tools Url Fuzzer
128. Hacking Tools For Kali Linux
129. Hacking Tools
130. Hacking Apps
131. Best Hacking Tools 2019
132. Pentest Tools Kali Linux
133. Hack Apps
134. Hacker Tools 2019
135. Nsa Hack Tools
136. Black Hat Hacker Tools
137. Hacker Tools List
138. Hack Tools For Ubuntu
139. Black Hat Hacker Tools
140. Hacking Tools
141. New Hack Tools
142. Pentest Tools Open Source
143. Hack Tools
144. Hacking Tools For Kali Linux
145. Ethical Hacker Tools
146. Install Pentest Tools Ubuntu
147. Hacker Tools For Ios
148. Android Hack Tools Github
149. Hacker Tools For Windows
150. Growth Hacker Tools
151. Pentest Tools Linux
152. Pentest Tools Tcp Port Scanner
153. Hack Tools Download
154. Pentest Tools Website Vulnerability
155. Hacking Tools For Beginners
156. New Hack Tools
157. Hackrf Tools
158. Best Hacking Tools 2019
159. Hacking Tools Kit
160. Hacking Tools Name
161. Pentest Tools Subdomain
162. How To Hack
163. Hacker Tools Mac
164. Hacking Tools For Windows Free Download
165. Hack App
166. Pentest Tools Linux
167. Usb Pentest Tools
168. Hack Tools 2019