"Hey everyone,
I'm a .NET developer with 1.5 years of experience, but recently, I've developed a strong interest in cybersecurity and bug bounty hunting. So far, I've successfully solved several labs, including XSS, SSRF, CSRF, IDOR, and logic errors. However, when I try to apply this knowledge in real-world scenarios, such as finding vulnerabilities on random sites or participating in bug bounty programs (like HackerOne), I often struggle to succeed.
Most of what I find are basic issues like OTP bypasses, but I haven’t been able to uncover more significant vulnerabilities like XSS or IDOR in live targets. I’ve also been trying to deepen my understanding of these vulnerabilities by learning from different sources, but when it comes to practical application, I feel stuck and don’t know what to do next.
Could anyone guide me on how to improve my skills, identify and exploit real-world vulnerabilities, and become more successful in this field? Any advice or resources would be greatly appreciated!
[link] [comments]
from hacking: security in practice https://ift.tt/9S8FsED
Comments
Post a Comment