Scribd
Upload
13 views

Rooted2020 r20bc4 Bugbounty

bug bounty

Uploaded by

sfuzail2000
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
13 views

Rooted2020 r20bc4 Bugbounty

bug bounty

Uploaded by

sfuzail2000
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 16

Web Hacking 101 &

Bug Bounty Hunting


Led by Prash Somaiya
Security Solutions Architect @ HackerOne

MADRID
2nd - 4th March 2020 TRAINING DOSSIER
Presentation
• Mission: we want to share knowledge, attract different
cultures, expose local talent and make a difference.

• Vision: to be responsible by doing something different,


sharing culture and building a knowledge network. Be
2-4 March 5-7 March an honest, reliable, beneficial event and establish
Three days of workshops Papers presented by alliances and collaborations with partners, customers
and trainings international speakers and and competitors.
technical experts.
• Our winning culture and our live values: collaboration,
HOTEL Eurostars iHotel KINEPOLIS
diversity, talent everywhere, passion, quality and focus
Pozuelo de Alarcón Pozuelo de Alarcón
on customers (each person attending our congresses).

RootedCON 2020 - Dosier de Formación


Meet your trainers

! Prash Somaiya, Lead Instructor " Carlos Rivero Molina, Teaching Assistant
Security Solutions Architect @ HackerOne Senior Pentester @ Deloitte

Prash manages some of the largest bug bounty Carlos has a strong red-team and pentesting
programs on the internet, including: Verizon Media, background. Having completed his OSCP, Carlos has
Airbnb, Uber and more. Prash has years of experience in found great success in the bug bounty realm, reporting
the cybersecurity industry and, as an ethical hacker, has vulnerabilities to organisations such as AT&T, Verizon
uncovered vulnerabilities in organisations such as Media, monday.com, and more.
Facebook, US Dept. of Defense and StackOverflow.

RootedCON 2020 - Dosier de Formación


What will you learn?
With world class instruction, you will hone your hacking skills, testing
them out on a custom built vulnerable platform.

● The most common vulnerabilities found in the real world today, including
○ Cross-Site Scripting (XSS)
○ Server-Side Request Forgery (SSRF)
○ Cross-Site Request Forgery (CSRF)
○ Insecure Direct Object Reference (IDOR)
○ Remote Code Execution (RCE)
○ SQL Injection

● Develop your own bug hunting methodology


○ Don’t just understand the theory behind a vulnerability, we’ll teach you how to exploit it

RootedCON 2020 - Dosier de Formación


What will you learn? (cont.)
● Use industry standard tools

● How to write vulnerability reports


○ Demonstrating impact if it were to get into the hands of a malicious actor
○ Assessing vulnerability severity (CVSS)

● Recon - discover what’s out there!


○ Certificate transparency
○ Sensitive data leaked in GitHub and other sources
○ Fingerprinting
○ Bruteforcing

● Finding the right program for you


○ If you’re interested in bug bounty, we’ll help you find the program(s) that are right for you!

RootedCON 2020 - Dosier de Formación


Training Platform

Apply the theory, learn by doing.


After we learn about each vulnerability type, you
will be given the chance to hunt for it in our
custom-built vulnerable training platform,
BUGBANK.

The practical labs will really enforce the theory,


allowing you to experience the thrill of finding a
real vulnerability!

RootedCON 2020 - Dosier de Formación


Target Audience & Previous
Knowledge Requirements
This workshop is primarily aimed at those new to the world of web hacking and/or bug bounty
hunting. We will however cover some more advanced concepts, to keep those with some
experience interested!

Basic technical requirements: Nice to haves:


• A high-level understanding of how the web • Some programming experience
works (DNS, HTTP) • Some experience with non-web hacking
• Familiarity with a terminal shell • Familiarity with Burp Suite
• Familiarity with some basic hacking terminology • Participation in CTFs
• Understand what a “bug bounty program” is • Participation in a bug bounty program

RootedCON 2020 - Dosier de Formación


What you need
We will provide you with your very own instance of our training platform that you can access via the
web. Other than the technical requirements listed on the slide below, you will need:

• Your own laptop


• Windows/Linux/MacOS is fine as long as you have access to a terminal and administrator
privileges

• Burp Suite installed


• Community edition (free) is fine
• Burp can be quite heavy, make sure your laptop is up to the task

RootedCON 2020 - Dosier de Formación


Content
We will spend three days learning to hack together, in a collaborative environment with a small
group of students. There will be a mix of lecturing, practical labs, and real-world activities.

In addition to the technical side of web hacking, you will gain soft-skills, learning how to
communicate effectively the impacts of vulnerabilities, assessing severity through the CVSS
framework, and writing concise vulnerability reports. We will also look at how to find the right bug
bounty programs for you.

RootedCON 2020 - Dosier de Formación


Agenda - Day One
● Welcome & Introductions
● Getting started
○ Browser developer tools
○ Burp Suite
● XSS
○ Reflected
○ DOM
○ Stored
○ Angular
● CSRF
● IDOR
● Practical Labs
RootedCON 2020 - Dosier de Formación
Agenda - Day Two
● Local File Inclusion (LFI) ● SQL Injection
● SSRF ○ Blind
○ Blind ○ Safe testing
○ via redirect ○ Extracting data
○ Extracting data ● Practical Labs
● File upload vulnerabilities
○ Unvalidated upload
○ Achieving RCE
○ Path traversal

RootedCON 2020 - Dosier de Formación


Agenda - Day Three
● Recon ● Report writing
○ Certificate transparency
○ What’s importing
○ Gathering data from various sources
○ Demonstrating impact
● Subdomain/DNS takeover
● Bug bounty programs and platform
● Information Disclosure
overview
● Weak Credentials
● Hack the world!
○ Default configurations
○ CTF
● Fingerprinting
● Wrap-up
○ Exploiting vulnerable components

RootedCON 2020 - Dosier de Formación


Experienced Instruction

Learn from the experts.

Your lead instructor, Prash, has a vast amount of training experience, having
taught classes targeted at a variety of abilities, including corporate training and
university modules.

Prash has also been quoted in multiple tech publications on current cyber security
news and events, including BBC, ComputerWeekly, TechRadar, SC
Magazine, and more.

You can rest assured that complex topics will be broken down into easily
digestible knowledge bites, ready for your consumption!

RootedCON 2020 - Dosier de Formación


Costs
• The final price of the Bootcamp + entrance to the RootedCON Congress is € 1250

• When registration is open for tickets to Congress, you will be sent a code to
redeem your ticket.

IMPORTANT: A minimum of TEN (10) attendees are required for the course to take
place.

RootedCON 2020 - Dosier de Formación


FAQ
• Where is the training held?
• Unlike the RootedCON Congress, trainings are held at the Hotel Eurostarts i-Hotel
• Here you can find the map of the area: Google Maps
• What is the difference between BootCamp and RootedLab?
• We differentiate the training by hours of training. A RootedLab has 8 hours of training, while a BootCamp has about
24 hours.
• What schedule does the training have?
• The training begins at 9 in the morning, but try to be a little earlier to be able to facilitate the access, make the
registration and have your laptop ready. The first day we recommend being at 8AM :)
• Formations usually end between 7pM and 8PM.
• How can I register?
• For registration, go directly to the RootedManager. There, once registered you can select the training and pay
directly. Once the training is completed you can request the invoice following the steps indicated in the Portal.
• Can I pay by bank wire?
• Yes, from RootedManager you can manage the payment by bank wire.
• Does the training include food?
• Trainings do not include food. But there are several options in the area, and the teacher will give you more
information.
RootedCON 2020 - Dosier de Formación Contacto: [email protected]

You might also like