Bug Bounties: WhiteHat Hacking for Fun and Profit
3.1 (33 ratings)
Course Ratings are calculated from individual students’ ratings and a variety of other signals, like age of rating and reliability, to ensure that they reflect course quality fairly and accurately.
445 students enrolled

Bug Bounties: WhiteHat Hacking for Fun and Profit

The Techniques of Detecting Bugs, Learn from a Professional Bug Bounty Hunter
3.1 (33 ratings)
Course Ratings are calculated from individual students’ ratings and a variety of other signals, like age of rating and reliability, to ensure that they reflect course quality fairly and accurately.
445 students enrolled
Last updated 7/2019
English
English [Auto-generated]
Current price: $69.99 Original price: $99.99 Discount: 30% off
5 hours left at this price!
30-Day Money-Back Guarantee
This course includes
  • 5 hours on-demand video
  • 3 articles
  • 1 downloadable resource
  • Full lifetime access
  • Access on mobile and TV
  • Certificate of Completion
Training 5 or more people?

Get your team access to 4,000+ top Udemy courses anytime, anywhere.

Try Udemy for Business
What you'll learn
  • You will be able to learn how to find bugs in Webapps
Requirements
  • You should have the basic Knowledge of HTTP headers , request and response
  • Burp Suite (Free or Paid)
  • Basic knowledge of HTML and JS is required (for XSS and HTML injection)
Description

A  career as a bug bounty hunter is something we should all strive for.  It's a way to earn money in a fun way while making this world a better  (at least a more bug-free) place. If you think that's something you  would like, this bug bounty course is just for you.

Reporting Bugs Pays Well!

In  this bug bounty course, you will learn how to earn while sitting  comfortably in your home and drinking coffee. You can use bug bounty  programs to level the cybersecurity playing field, cultivate a mutually  rewarding relationship with the security researcher community and  strengthen security in all kinds of systems.

While the practice  of catching and reporting web bugs is nothing new (and have been going  on for at least 20 years), widespread adoption of this practice by  enterprise organisations has only now begun lifting off.

World-known  companies like Facebook or Google are spending a lot of money for  bounties, so it's just the right time to hop on the gravy train.

For  example, Google pays a minimum of 100 dollars bounty. While Facebook  announced that the company determines the bounties based on a variety of  factors, for example, ease of exploitation, quality of the report and  impact. However, if Facebook pays out the bounty, it's a minimum of 500  dollars (though extremely low-risk issues do not qualify for bounties).

People  won as many as 33500 dollars for reporting bounties for Facebook.  Actually, the cases where bounty hunters got paid extremely well while  reporting bugs are endless.

Become a White Hat Hacker

In  this course, you will find out how to find bugs in websites. You will  know what you have to look in the website to find bugs.  This is one of  the ways how to become a hacker - a white hat hacker - who finds  vulnerabilities in systems and reports them to make the systems safer.   So if you ever asked yourself what is hacking, the answer is staring you  right in the face.

You will begin from the basics and learn  recon skills and take the first steps towards bug hunting and  information gathering. Then we will move on to learning about bugs -  what they are and how to detect them in web apps.

Best case  scenario, you won't only get paid, you will be invited to companies you  have helped, and then you'll be able to tell them how to be a hacker.

So it is not only a hobby, you will make the world a better place and make money while doing it.

Beginner Bounty Hunters Step Right Here

In this course, you will find out what are bugs and how to properly detect them in web applications.

So  if you are a beginner who knows HTML/JS Basics, Burp Suite and is  acquainted with web technologies like HTTP, HTTPS, etc., this is the  best course for you.

After you take this course, browsing through  the internet will not be just a hobby for you. You will look at every  web page with new eyes, scanning for bugs and earning opportunities.

Who this course is for:
  • Anyone Who wants to learn bug bounties for their fun and profit
Course content
Expand all 53 lectures 05:07:24
+ Getting Familiar with Burp Suite
4 lectures 17:42
Configuring Burp with your Browser
03:18
Spider, Intruder ,Repeater and Decoder tabs
05:02
Wrapping Up Burp
03:57
+ Reconnaissance
12 lectures 01:08:29
Analyzing Files on Website for Juicy Endpoints
06:34
Looking For some Hidden Directories
04:26
Downloading the Source Code of Website
05:27
Gathering Information From WhatWeb
03:31
What is a Subdomain
05:20
Enumerating Subdomains
10:24
Using TheHarvester for some publicly available informations
06:04
TheWayBackMachine
05:16
Vhosts Discovery
02:54
+ Using Nmap for Information Gathering Purposes
4 lectures 22:57
Getting Familiar with Nmap
08:23
Different Type of Nmap Scans
05:50
Different Type of Nmap Scans Demo
04:39
Banner Grabbing Using Nmap
04:05
Information Gathering
4 questions
+ Getting Starting in Finding bugs
4 lectures 21:40
Installing Your Testing Environment
04:30
Testing For HSTS
04:28
Robots.txt (demo)
04:10
Brute Force Attack
08:32
+ Testing For Session Management Issues
2 lectures 18:06
Testing For cookies
09:17
Testing For Session Management
08:49
+ Authentication Testing
1 lecture 09:19
Testing For Broken Authentication
09:19
+ Authorization Testing
3 lectures 17:27
IDOR
04:22
IDOR more explained
05:26
Directory Traversal
07:39
+ Client Side Testing
3 lectures 21:07
Clickjacking
05:21
Exploiting CORS(Cross Origin Resource Sharing)
08:30
HTML Injection
07:16