Bug Hunt
Bug Hunt
Minimum price
Suggested price
Bug Hunt

Last updated on 2015-02-11

About the Book

In order to test their security infrastructure, companies are increasingly turning to freelance security researchers to hunt for bugs - glitches in their systems with the potential to be exploited - and paying the ethical professionals who report them for removal.

This quick guide is an attempt to get readers actively hunting for bugs on their own, on real websites - for real money - as soon as possible. With the direct explanations, walkthroughs, and code examples provided in this document, anyone with a smattering of understanding in web technologies can expect to begin productively (and profitably) hunting for security flaws.

About the Author

Charlie Marshall
Charlie Marshall

I am a developer, journalist, and freelance security professional with particular interests in Nodejs and asynchronous programming.

Table of Contents

  • Introduction
  • What You Should Already Know
    • HTTP
    • HTML
    • Javascript
    • JSON
    • SQL
    • Cookies
    • The Browser
  • Setting Up Your Environment
    • Tool Philosophy
    • Scanners
    • Browsers
    • Burp Suite
    • Kali Linux
    • SQLmap
    • Other Tools
  • Joining the Hunt
    • The Importance of Choosing Your (Legal) Hunting Ground
    • Bug Hunting Communities
    • Testing Grounds
  • Web Application Security Overview
    • The Ubiquity of Web Apps
    • Security Issues Intrinsic to Web Applications
  • Attacks
    • XSS
    • CSRF
    • SQL Injection (SQLi)
  • Submitting Great Bug Reports
    • Important Jargon and Technical Terms
    • 5 Tips for Writing a Great Report
  • Conclusion
    • Where To Go From Here
    • Press Inquiries
    • Thank You
  • Additional Resources
    • General Purpose
    • HTML
    • Javascript
    • Shellcode
    • SQL
    • Pentesting

The Leanpub 45-day 100% Happiness Guarantee

Within 45 days of purchase you can get a 100% refund on any Leanpub purchase, in two clicks.

See full terms...

Write and Publish on Leanpub

Authors, publishers and universities use Leanpub to publish amazing in-progress and completed books and courses, just like this one. You can use Leanpub to write, publish and sell your book or course as well! Leanpub is a powerful platform for serious authors, combining a simple, elegant writing and publishing workflow with a store focused on selling in-progress ebooks. Leanpub is a magical typewriter for authors: just write in plain text, and to publish your ebook, just click a button. It really is that easy.

Learn more about writing on Leanpub