GoFuckYourself.com - Adult Webmaster Forum - View Single Post

deonbell · 01-22-2016, 02:25 PM

Most people here have small sites. The new thing is bug bounties. Sign up for HackerOne and look at the top guys. Follow them on twitter. I have a hackerone profile, But I am slow and old, So I have found no bugs yet.

One guy gave me $40 paypal and another guy offered me a costume when I found a reflective XSS bugs in their site. You can do that on XSSposed.org. But most of those easy bugs are being found and reported. More people are getting keen on sanitizing their user input.

Just a few days ago a guy found an XSS bug in yahoo mail. They gave him $10,000.
I think he was on Bugcrowd.

Just got through playing with Burp Suite today. Figuring out how it works. Fun stuff. But I probably shouldn't have run the spider function. I may get in trouble for that. Burp acts a proxy between your browser and a site. You can intercept input and change parameters before passing on the data to the site.

01-22-2016, 02:25 PM
deonbell Confirmed User Industry Role: Join Date: Sep 2015 Posts: 1,045	Most people here have small sites. The new thing is bug bounties. Sign up for HackerOne and look at the top guys. Follow them on twitter. I have a hackerone profile, But I am slow and old, So I have found no bugs yet. One guy gave me $40 paypal and another guy offered me a costume when I found a reflective XSS bugs in their site. You can do that on XSSposed.org. But most of those easy bugs are being found and reported. More people are getting keen on sanitizing their user input. Just a few days ago a guy found an XSS bug in yahoo mail. They gave him $10,000. I think he was on Bugcrowd. Just got through playing with Burp Suite today. Figuring out how it works. Fun stuff. But I probably shouldn't have run the spider function. I may get in trouble for that. Burp acts a proxy between your browser and a site. You can intercept input and change parameters before passing on the data to the site. __________________ Fake Naked Celebrity Sex Gallery