3 Real API Bugs I got a bounty for

Показать описание

This is a series of mildly Halloween-themed hacking stories for October. I'm going to walk you through my most unimpressive, easy, and straightforward vulnerabilities as I tell three stories of real bugs in real production systems. In this video, we take a look at some API flaws. I've (obviously) had to omit a lot of details, even though these bugs are resolved, sometimes clients worry about disclosing, so no permission = no details on client names, programs, platforms or anything else, all screenshots are taken from unrelated and mildly similar products. ANYWAY, I hope you enjoy the slightly shorter videos.

InsiderPhD

Рекомендации по теме

Комментарии

I'm only here for the cute animated Katie avatar! 🤩
Seriously, though: thanks for sharing your hacking stories with us.

jubbs

Katie I just want you to know your videos helped me find my first bug a few weeks ago and I got paid $5k after that my life is changed I know I can actually make money doing this thank you so much and God bless you for real

fokyewtoob

I immensely benefit from your videos!! I have a question? Is there age factor for Bugbounty i m in mid 30s, , can i be successful if i work Hard at this age!! Already got basics!!

ramkumar-lcst

Thank you katie your videos are really helpful for us please make full video on READ THE DOCS .

harshraj

Thanks for giving back to the community

camelotenglishtuition

Love your videos ! I’ve a simple question, in your opinion for someone( like me, 32 old) wants to start hacking in 2024 ( bug hunting ), a learning path ?

iosifcastrucci-ov

Thank you katie im beginner im focus on xss csrf & blind xss any any advice give me to help me level up my skills thank you alot

amoh

Thank you! 🙂 I'll need to go back and find your other GraphQL videos.

CyberAbyss

Not sure if intentional or not but you are leaking the target you against for the 1st bug in one of your screenshots.

superfish

I cannot understand the csp bypasses and dangling payloads in xss can you recommend resources and labs

gemx

Can you give me road map to become bug bounty hunter

jxkz

I am really interested in finding How did you cause the error in the first part??

pratiksubedi

Katie Am Expecting How To Find Waf Bypass Xsa Businesses P1 Bug's like. Account Takeover, SQL INJECTION

shashikiran

Great video thank you these really do help :)

MFoster

what did you do to cause an error in the GraphQL bug ?

AhmedSamir-tyvo

أستمر اتمنى لك التوفيق والنجاح أنا صديقه جديده في انتظارك احلى لايك

مطبخمنى-رط

3 Real API Bugs I got a bounty for

3 Real API Bugs I got a bounty for

Here are 3 bugs I’ve Found with Recon (and how I hacked them)

Real Bugs - API Information Disclosure

Bug Bounty Redacted #3: Hacking APIs & XSS, SQLi, WAF Bypass in a regional web application

How to log a simple API bug or Our first API defect report

Apple Will Pay Hackers $1,000,000 For This Bug Bounty 😳

Finding Your First Bug: Finding Bugs Using APIs

Bug Aneh, Granny Gak Bisa Mukul Disini | Granny Chapter 3

Roadmap To Help Manual Testers | A Transition Into Automation | Became An Automation Expert in 2025

HAL PERTAMA YANG AKU LAKUKAN SETELAH AWAKENING BUDDHA ADALAH NYOBAIN BUG SENJATA RAKSASA #roblox

Finding Your First API Bug (NahamCon 2023)

Bug Bounty Report - Exposed API Keys + XSS - Stacking Vulnerabilities

Livestream - Common API bugs + QnA

Testing the fixed bug to know it is really fixed or not | Interview question | SoftwaretestingbyMKT

API Hacking Demo | Bug Bounty Web App Testing

Stuck for 3 days fixing a bug

$360 bug bounty | account takeover through reset password | hackerone bug bounty poc | most easy one

Feedback and Bug Reporting API Tutorial - #GitHub

Feedback and Bug Reporting API Tutorial - #OpenProject

Top 10 API Bugs (and Where to Find Them)

Essentials For Your Bug Out Bag (Part 3)

MINUSCULE Clip - 'Racing Bugs' (2012)

Write better Rust fuzzing harnesses and find more BUGS - Rust Security #3

3 Bug yang Jarang di Ketahui di Game GTA San Andreas #gtasanandreas #gta #subscribe #shorts