Book Image

Bug Bounty Hunting Essentials

By : Carlos A. Lozano, Shahmeer Amir
Book Image

Bug Bounty Hunting Essentials

By: Carlos A. Lozano, Shahmeer Amir

Overview of this book

Bug bounty programs are the deals offered by prominent companies where-in any white-hat hacker can find bugs in the applications and they will have a recognition for the same. The number of prominent organizations having this program has increased gradually leading to a lot of opportunity for Ethical Hackers. This book will initially start with introducing you to the concept of Bug Bounty hunting. Then we will dig deeper into concepts of vulnerabilities and analysis such as HTML injection, CRLF injection and so on. Towards the end of the book, we will get hands-on experience working with different tools used for bug hunting and various blogs and communities to be followed. This book will get you started with bug bounty hunting and its fundamentals.
Table of Contents (20 chapters)
Title Page
Copyright and Credits
About Packt
Contributors
Preface
Index

Real bug bounty examples


Finally, I want to show you some real examples, extracted from real reports, that show how XSS vulnerabilities have been found and reported in real applications.

Shopify wholesale

On December 21th, 2015 a bug bounty hunter called kranko reported a very simple vulnerability in Shopify, an application to create online stores.

The XSS is given in the next line:

https://wholesale.shopify.com/asd%27%3Balert%28%27XSS%27%29%3B%27

As you can see, this XSS is reflected. We can see this because it exploits a GET request.

Maybe you are confused, because you cannot see the parameter that is injected by the attacker. There are some applications that use this kind of magic URL. That means in the URL, each word could be used as a parameter. This kind of magic URL is very common in applications that auto-generate URLs, such as blogs, online stores, or news websites.

Finally, we can see that, in order to avoid the filters, the string injected into the parameter is encoded.

If you want to...