Episode 19: Audit Code, Earn Bounties (Part 2) + Zip-Snip, Sitecore, and more!

1

Introduction

00:00 • 2min

2

The New Subdomain Takeover Service

01:36 • 2min

3

How to Create a New Google Doc

03:08 • 2min

4

How to Use Dot Zip to Trick People Into Visiting a Domain

04:46 • 2min

5

How to Use GitHub to Download Source code.zip

07:02 • 2min

6

Ivan Fratric on SIP Bug Hunting

09:17 • 2min

7

How to Crush Your Bug Bounties

11:42 • 4min

8

How to Survive the Bug Bounty Industry

15:15 • 2min

9

How to Hack a Product That You Use Actively

16:58 • 3min

10

How to Optimize Your Time and Use It Efficiently

19:45 • 3min

11

How to Hack a Program

23:02 • 3min

12

How to Write a Click-Baity Title

26:15 • 2min

13

Shadow Clone: How to Scale Your Scanning Out

28:13 • 2min

14

How to Kill It Always With the Content

29:51 • 3min

15

How to Do Source Code Review

33:09 • 3min

16

How to Find and Audit Sinks in PHP

36:27 • 3min

17

How to Find Sources and Sinks

39:50 • 3min

18

How to Bypass an Authentication Flow

42:33 • 2min

19

DN Spy for Debugging

44:38 • 3min

20

How to Bypass Auth in a Mailing List

47:43 • 4min

21

Critical Thinking Book Bounty Podcast

51:14 • 2min