This is my talk about being a Bug Bounty Hunter at HITCON Community 2016. It shared some of my views on finding bugs and some case studies, such as
- Facebook Remote Code Execution… more details
- Uber Remote Code Execution… more details
- developer.apple.com Remote Code Execution
- abs.apple.com Remote Code Execution
- b.login.yahoo.com Remote Code Execution… more details
- eBay SQL Injection
- www.google.com XSS
- Apple XSS
- Facebook Onavo XSS
- Uber XSS
Sorry for it’s only in Chinese. Wishing you would like it.