Book Image

Bug Bounty Hunting Essentials

By : Carlos A. Lozano, Shahmeer Amir
Book Image

Bug Bounty Hunting Essentials

By: Carlos A. Lozano, Shahmeer Amir

Overview of this book

Bug bounty programs are the deals offered by prominent companies where-in any white-hat hacker can find bugs in the applications and they will have a recognition for the same. The number of prominent organizations having this program has increased gradually leading to a lot of opportunity for Ethical Hackers. This book will initially start with introducing you to the concept of Bug Bounty hunting. Then we will dig deeper into concepts of vulnerabilities and analysis such as HTML injection, CRLF injection and so on. Towards the end of the book, we will get hands-on experience working with different tools used for bug hunting and various blogs and communities to be followed. This book will get you started with bug bounty hunting and its fundamentals.
Table of Contents (20 chapters)
Title Page
Copyright and Credits
About Packt
Contributors
Preface
Index

Workflow of an XSS attack


An XSS scenario requires three vectors: a web application, a victim, and an attacker.

In a conventional scenario, the attacker's aim is to impersonate the target by stealing the session cookie. Then, the attacker sends the cookies to the server by posing as the user itself, which results in the session hijacking:

  1. The attacker initially injects malicious JavaScript in the website's backend
  2. The victim sends an HTTP request to the web page where the malicious JavaScript is stored
  3. The application's malicious JavaScript web page is displayed in the victim's browser, along with the attacker's payload, as the HTML content in the page
  4. The victim's browser then executes the malicious JavaScript inside the HTML body, making it easier for the attacker to steal cookies

HackeroneXSS

  • Title: Vulnerability with the way \ escaped characters in http://danlec.com style links are rendered
  • Reported bydanelc
  • Bounty rewarded: $5,000
  • Web application URLhttps://hackerone.com
  • Description: Hackerone...