What is BugBounty?
►
A bug bounty is an overgrowing trend in which security enthusiasts participate from all around the world crowdsourcing to find (a) bug's in a particular program or engagement called as a Bug Bounty Program. The "bounty" ensures that a researcher gets paid either in Cash or in swags as a compensation for their efforts in keeping the organization secure.
Basic Technical things to know before getting started?
►
There are a few basic technical things you should know before getting started. Before learning how to find security vulnerabilities in a website one should know how a website works and how it’s built. Here is a small list of resources to learn about them.
HTTP methods:
It’s important to know how a website communicate. The Hypertext Transfer Protocol (HTTP) is designed to enable communications between clients(eg:- browser) and the server: https://www.tutorialspoint.com/http/http_methods.htm
TCP IP model:
https://www.geeksforgeeks.org/tcp-ip-model/
Basic Linux Commands:
https://www.codecademy.com/learn/learn-the-command-line
https://www.tutorialspoint.com/operating_system/os_linux.htm
Basic server and network concepts:
https://nceas.github.io/oss-lessons/servers-networks-command-line/1-servers-net.html
https://commotionwireless.net/docs/cck/networking/learn-networking-basics/
Basic to advance Web Application programming. (Check the other FAQ)
HTTP methods:
It’s important to know how a website communicate. The Hypertext Transfer Protocol (HTTP) is designed to enable communications between clients(eg:- browser) and the server: https://www.tutorialspoint.com/http/http_methods.htm
TCP IP model:
https://www.geeksforgeeks.org/tcp-ip-model/
Basic Linux Commands:
https://www.codecademy.com/learn/learn-the-command-line
https://www.tutorialspoint.com/operating_system/os_linux.htm
Basic server and network concepts:
https://nceas.github.io/oss-lessons/servers-networks-command-line/1-servers-net.html
https://commotionwireless.net/docs/cck/networking/learn-networking-basics/
Basic to advance Web Application programming. (Check the other FAQ)
Knowing programming language is necessary?
►
Yes, at least basic programming knowledge is necessary. It’s easier to find bugs in a Web Application when you know how to create one.
Make sure you have practical knowledge of HTML, Javascript, PHP/NodeJS and its integration with Mysql/MongoDB.
Note:- Do not simply read and learn the above-mentioned languages instead, try creating simple simple applications using all of them, so you get a better understanding of how a web application works.
For HTML, JS and PHP:
https://www.w3schools.com
For Nodejs and MongoDB
Express in action by Evan M. Hahn
https://www.amazon.com/Express-Action-Writing-building-applications/dp/1617292427
Apart from web languages having a good grasp of one scripting language is really helpful for writing your own automation scripts. In certain scenarios you can automate your logic and find security bugs faster where repetitive task is involved.
https://www.codecademy.com/learn/learn-python
Make sure you have practical knowledge of HTML, Javascript, PHP/NodeJS and its integration with Mysql/MongoDB.
Note:- Do not simply read and learn the above-mentioned languages instead, try creating simple simple applications using all of them, so you get a better understanding of how a web application works.
For HTML, JS and PHP:
https://www.w3schools.com
For Nodejs and MongoDB
Express in action by Evan M. Hahn
https://www.amazon.com/Express-Action-Writing-building-applications/dp/1617292427
Apart from web languages having a good grasp of one scripting language is really helpful for writing your own automation scripts. In certain scenarios you can automate your logic and find security bugs faster where repetitive task is involved.
https://www.codecademy.com/learn/learn-python
How to get started with web pentesting?
►
For starters it's best to familiarise yourself with OWASP Top 10.
Owasp top 10
https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project#OWASP_Top_10_for_2010
Owasp Top 10 2013
https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project#OWASP_Top_10_for_2013
Owasp Top 10 2017
https://www.owasp.org/images/7/72/OWASP_Top_10-2017_%28en%29.pdf.pdf
Owasp testing guide
https://www.owasp.org/images/1/19/OTGv4.pdf
Owasp top 10
https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project#OWASP_Top_10_for_2010
Owasp Top 10 2013
https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project#OWASP_Top_10_for_2013
Owasp Top 10 2017
https://www.owasp.org/images/7/72/OWASP_Top_10-2017_%28en%29.pdf.pdf
Owasp testing guide
https://www.owasp.org/images/1/19/OTGv4.pdf
Which books should I read ?
►
The web application hackers handbook
https://www.amazon.in/Web-Application-Hackers-Handbook-Exploiting/dp/8126533404
Mastering Modern Web Penetration Testing
https://www.amazon.in/Mastering-Modern-Web-Penetration-Testing/dp/1785284584
Web Hacking 101
https://leanpub.com/web-hacking-101
The Tangled Web: A Guide to Securing Modern Web Applications Book by Michał Zalewski
https://www.amazon.in/Tangled-Web-Securing-Modern-Applications/dp/1593273886
https://www.amazon.in/Web-Application-Hackers-Handbook-Exploiting/dp/8126533404
Mastering Modern Web Penetration Testing
https://www.amazon.in/Mastering-Modern-Web-Penetration-Testing/dp/1785284584
Web Hacking 101
https://leanpub.com/web-hacking-101
The Tangled Web: A Guide to Securing Modern Web Applications Book by Michał Zalewski
https://www.amazon.in/Tangled-Web-Securing-Modern-Applications/dp/1593273886
Where can I practice the vulnerabilities?
►
DVWA
Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment.
http://www.dvwa.co.uk
You can also start plaging CTF's (Capture the Flag). Below is the list of websites where you can play CTFs
https://www.hacker101.com
https://pentesterlab.com
https://www.hackthebox.eu
Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment.
http://www.dvwa.co.uk
You can also start plaging CTF's (Capture the Flag). Below is the list of websites where you can play CTFs
https://www.hacker101.com
https://pentesterlab.com
https://www.hackthebox.eu
Where I can find programs which pays bounty?
►
Which tools should I master?
►
Burp suite:
Burp Suite is a multi-functional tool which is a gold mine for all bug hunters. It can simultaneously aid you as an intercepting proxy and also spider the website you’re working on to find bugs automatically. It has one of the most powerful scanner which further makes your task easier. Apart from that it also supports pen testing web sockets. It’ll take us more than a simple FAQ to list all of its functions, its better to check out the tool.
https://portswigger.net/burp
Burp Suite is a multi-functional tool which is a gold mine for all bug hunters. It can simultaneously aid you as an intercepting proxy and also spider the website you’re working on to find bugs automatically. It has one of the most powerful scanner which further makes your task easier. Apart from that it also supports pen testing web sockets. It’ll take us more than a simple FAQ to list all of its functions, its better to check out the tool.
https://portswigger.net/burp
Which OS is suitable for hacking?
►
It's a miconception that using Kali Linux makes you a hacker. Kali Linux is an OS with a collection of all open source tools used for security testing. The first step is to learn the logics and then automation. Relying fully on automation without understanding the work behind the scene will never be useful in longer run. Its generally suggested to use unix platforms. So any OS like Ubuntu, Debian or MacOS would be good.
Where I can find write-ups of bugs?
►