Less Writing, More Hacking - Reporting Efficiency Techniques (Ep.78)
Vložit
- čas přidán 26. 07. 2024
- Episode 78: In this episode of Critical Thinking - Bug Bounty Podcast we’re talking about writing reports. We share some tips that we’ve learned, and discuss ways that AI can (and can’t) help with that process. We also talk about the benefit of incorporating tools like Fabric, Loom, and ShareX.
Follow us on twitter at: / ctbbpodcast
We're new to this podcasting thing, so feel free to send us any feedback here: info@criticalthinkingpodcast.io
Shoutout to / realytcracker for the awesome intro music!
====== Links ======
Follow your hosts Rhynorater & Teknogeek on twitter:
/ 0xteknogeek
/ rhynorater
====== Ways to Support CTBBPodcast ======
Hop on the CTBB Discord at ctbb.show/discord!
We also do Discord subs at $25, $10, and $5 - premium subscribers get access to private masterclasses, exploits, tools, scripts, un-redacted bug reports, etc.
Resources:
XSS WAF Bypass by multi-char HTML entities
x.com/therceman/status/180366...
Shazzer
shazzer.co.uk/
Next.js and cache poisoning
zhero-web-sec.github.io/resea...
Nagli's Nuclei Template
x.com/galnagli/status/1806095...
hey why can't you fix this one bug
mewy.pw/posts/2024-06-29-why-...
Justin's reporting templating software
github.com/Rhynorater/reports
Fabric
github.com/danielmiessler/fab...
BB Report Formatter
github.com/rhynorater/bbRepor...
2to3 Automated Python Converter
docs.python.org/3/library/2to...
ShareX
getsharex.com/downloads
Skitch
www.techspot.com/downloads/57...
Timestamps:
(00:00:00) Introduction
(00:04:00) XSS WAF Bypass by Multi-char HTML Entities
(00:11:59) Next.js and Cache Poisoning
(00:18:03) Nagli's Nuclei Template and Sean Yeoh's Blog
(00:27:34) Report Writing and AI
(00:50:02) Reporting tips - Věda a technologie
good stuff guys love the content as always as the humor is always great
Nice research...
When you listen to the top hackers most of them are 100% proud nerds, too cool :)