Awesome Bug Bounty Roadmap
Hi Friends, This is CodeNinja a.k.a Aakash Choudhary.
This blog contains complete Roadmap for Beginners or even Intermediate to become a successful Bug Hunters or even more
Without wasting time, following are the Roadmaps =>
- First steps Persistance + Patience + Proper Time Management + Proper Planning + Eagerness
- 2nd Step is to make your basics strong whatever it is Like =>
- DNS,Networking, HTTP/HTTPS,Zone Transfer,HTTP Headers, HTTP Methods, HTTP Status Codes, Request/Response, URL Schemes
- WAF, DNS Rebinding,CDN Services, VHOST
- Microservices, APIs,REST APIs,Graphql Attack & Defense,OWASP Top 10[must]
- Knowledge about basic programming concepts[OOPs,Routing,Structures,Loops etc]
- Linux Basics + Regex
- HTML,JS,DOM,AJAX [for HTML Injection + basic building blocks of Website or many things related to mention things ]
- Today’s Architecture of web and old one too - Like how web evolved from past - Like how web worked in past and their security + defensive things
- How browser works and their TABS works ? How they interact with each other
- Basic uses of hacking tools - Like how they work and how efficiently we can work with tools smartly
- Cloud Concepts
- Automation Knowledge [Python,Bash,Golang,Rust] [whatever we choose]
- OSINT
- How cache works
- Cookies/Sessions/Authentication/Authorization/Cache/CORS/SOP/2FA/MFA
- Cryptography,encoding/decoding,encipher,decipher,encryption,decryption i.e Encoding Mechansim
- SAST/DAST/IAST
- Learn to use => 1. Burpsuite 2. ZAP 3. Nuceli 4. Jaeles
- That is work on your creativity to use above tools
-
Read following blogs or Twitter or Articles
- https://njmulsqb.engineer/2022/04/10/the-100daysofhacking-challenge.html
- https://cinzinga.com/2-Years-Of-Bug-Bounty/
- https://medium.com/@dprice_theblogger/my-first-year-as-a-pentester-241f0eb52c73
- https://justintaft.com/blog/bug-hunting-tips
- https://github.com/TheHairyJ/Gratis/blob/main/Your%20Career%20in%20Cybersecurity.pdf
- https://medium.com/@skavans_/bug-bounty-do-you-need-to-be-a-programmer-adaa54679f4
- https://www.offensive-security.com/offsec/reflections-on-failure-one/
- https://www.offensive-security.com/offsec/reflections-on-failure-two/
- https://niebardzo.github.io/2022-02-09-pentest-motivation/
- https://medium.com/@Sm9l/what-i-learnt-from-reading-220-idor-bug-reports-6efbea44db7
- https://luketucker.com/hacker-education-trends/
- https://github.com/hakluke/bug-bounty-standards
- https://twitter.com/InsiderPhD/status/1477648560241979396
- https://www.checkpoint.com/pages/vulnerability-research/
- https://www.offensive-security.com/offsec/thoughts-teaching-hacking/
- https://s0md3v.github.io/blog/creativity-and-self-doubt
- https://microsoftedge.github.io/edgevr/posts/bug-bounty-hunter-to-working-at-microsoft/
- https://codingo.com/posts/2021-07-18-bounties-for-a-living/
- https://codingo.com/posts/2021-04-04-bug-classes-starting-out/
- https://iamsarvagyaa.github.io/think-outof-thebox-01
- https://iamsarvagyaa.github.io/think-outof-thebox-02
- https://medium.com/@iamsarvagyaa/so-you-want-to-be-a-hacker-e33cc556b240
- https://iamsarvagyaa.github.io/think-outof-thebox-03
- https://iamsarvagyaa.github.io/think-outof-thebox-04
- https://securitytrails.com/blog/interview-hakluke
- https://sametsahin.net/posts/bug-bounty-top-hackers/
- https://blog.redteam-pentesting.de/2021/wholesome-curl-calls/
- https://www.mycyberinfo.com/post/bug-bounty-finding-the-first-bug
- https://heitorgouvea.me/2021/01/03/bug-bounty-and-collabs
- https://hogarth45.medium.com/mortgage-with-bug-bounties-week-1-e44d5f0c613c
- https://securit.ie/blog/?p=117
- https://lab.wallarm.com/owasp-top-10-2021-proposal-based-on-a-statistical-data/?utm_source=Reddit&utm_medium=SubReddits&utm_campaign=owasp-2021
- https://www.ceos3c.com/security/avoid-burnout-as-a-programmer-or-hacker/
- https://r2c.dev/blog/2021/four-levels-of-maturity-that-bridge-the-app-sec-engineering-divide/
- http//rez0.blog/hacking/2020/12/26/non-technical-bug-bounty-tips.html
- https://twitter.com/daeken/status/1337600964128354304
- https://danielmiessler.com/blog/analysis-of-the-recon-attack-surface-management-space/
- https://secalert.net/index.html%3F.html#2020_bug_bounty_com
- https://blog.thinkst.com/2020/11/new-features-arent-solved-problems.html
- https://danielmiessler.com/blog/organizing-feedly-by-tags/
- https://r2c.dev/blog/2020/future-of-appsec-why-r2c/
- https://twitter.com/Fox0x01/status/1317120678617907200
- https://www.bugcrowd.com/blog/these-are-the-bugs-you-should-look-for-in-late-2020/
- https://utkusen.com/blog/security-by-obscurity-is-underrated
- https://thesephist.com/posts/tools/
- https://danielmiessler.com/blog/algorithmic-vs-faith-based-learning/
- https://danielmiessler.com/blog/what-they-dont-tell-you-about-being-a-bounty-hunter-or-security-content-creator/
- https://gynvael.coldwind.pl/?lang=en&id=728
- https://infosecwriteups.com/the-bug-bounty-mindset-that-leads-to-success-5bf32dcab48
- https://medium.com/taptuit/docker-for-penetration-testers-3e37db5d678a
- https://systemoverlord.com/2020/07/10/comparing-3-great-web-security-books.html?utm_source=dlvr.it&utm_medium=twitter
- https://threadreaderapp.com/thread/1277958302731603968.html
- https://www.rapid7.com/blog/post/2020/06/17/the-security-practitioners-intro-to-the-cloud-everything-you-ever-wanted-to-know-but-were-afraid-to-ask/
- https://www.madisontaskett.com/lazy-bastard-productivity/
- https://naveenroy008.medium.com/how-to-write-a-bug-bounty-report-ffe60c4ae702
- https://medium.com/bug-bounty-hunting/coping-up-with-bug-bounty-failures-7d9ca4e6d257
- https://naveenroy008.medium.com/bug-bounty-methodology-just-have-a-look-b3e7c4b6922
- https://danielmiessler.com/blog/its-time-to-get-back-into-rss/
- https://craighays.com/bug-bounty-hunting-tips-6-simplify/
- https://www.xmind.net/blog/en/how-does-mind-mapping-help-for-better-bug-bounty/
- https://www.scotthyoung.com/blog/2020/04/27/productivity-rules/
- https://infosecwriteups.com/effective-vulnerability-report-writing-quick-triages-to-bonus-always-a-win-41b37188c63f
- https://medium.com/swlh/why-you-fail-at-bug-bounties-f17be7ba72ea
- https://sankethsharath.medium.com/raising-your-web-hacking-bug-bounty-hunting-game-6104bb80aca7
- https://blog.intigriti.com/2020/04/29/bug-business-3-zseanos-notes-on-hacking-mentoring
- https://whitton.io/articles/from-researcher-to-engineer-and-beyond/
- https://ladysecspeare.wordpress.com/2020/03/06/reaching-out-to-fellow-beginners-in-bug-bounty-hunting/
- https://medium.com/@debian1842/beginnersquest-part-1-what-to-do-after-recon-461e0b659f25
- https://www.linkedin.com/pulse/anatomy-automated-account-takeovers-tal-eliyahu/
- https://medium.com/@circleninja/a-small-change-in-life-helps-to-convert-entertainment-to-productive-work-9bd8cc1993ce
- https://subfn.net/2020/04/08/learn-bypasses-not-payloads/
- http//collingreene.com/5_years_of_bug_bounty.html
- http//10degres.net/how-to-keep-hackers-motivated-in-bug-bounty/
- https://www.helpnetsecurity.com/2020/04/07/bug-hunting-career/
- https://blog.detectify.com/2020/04/01/top-pen-testing-tips-detectify-crowdsource/
- https://craighays.com/bug-bounty-hunting-tips-5-aim-to-become-world-class-in-your-niche/
- https://medium.com/@xploitprotocol/how-to-approach-a-target-bug-bounty-tips-f371c7ec7985
- https://infosecwriteups.com/help-i-cant-find-bugs-88b005eb69a2
- https://medium.com/swlh/a-tour-around-the-bug-bounty-zoo-c63ccbf4d7cd
- https://twitter.com/pdp/status/1229085767877713935
- https://www.reddit.com/r/bugbounty/comments/f1n9fh/weekly_discussion_february_10_2020_ask_all_your/fh8xvrc/?context=8&depth=9
- https://medium.com/@circleninja/how-to-become-more-successful-and-achieve-your-dreams-17cd1d3c0613
- http//10degres.net/5-things-to-avoid-in-bug-bounty/
- https://www.fourzerothree.in/p/note-making-and-methodology-bug-bounty?s=r
- http//10degres.net/bug-bounty-management-a-bad-example/
- https://knoxxs.github.io/learning/course/2016/01/06/learn-how-to-learn/
- https://medium.com/@gergely.revay/how-to-become-a-web-pentester-526a4da541f8
- https://danielmiessler.com/blog/the-most-important-productivity-lesson-i-ever-learned/
- https://unknownuser1806.medium.com/problems-i-have-faced-in-bug-bounty-3c9d0a679d8b
- https://www.fourzerothree.in/p/learning-bug-bounty-hunting?s=r
- https://www.reddit.com/r/bugbounty/comments/dq67ea/how_are_people_finding_hundredsthousands_of_bugs/
- https://jamesclear.com/deliberate-practice-theory
- https://medium.com/swlh/out-of-scope-2de1168aa0d9
- https://dmshagov.github.io/Economics-of-the-Bug-Bounty-Hunting/
- https://kabilan1290.medium.com/journey-of-my-first-bug-bounty-72175d903ce3
- https://azeria-labs.com/the-importance-of-deep-work-the-30-hour-method-for-learning-a-new-skill/
- https://medium.com/@eraymitrani/how-to-prepare-for-a-security-engineer-interview-6cf1d84de22f
- Now time for make your concepts solid by reading following books
- The tangled Web: a guide to securing modern Web applications
- breaking into information security
- Bug bounty bootcamp
- Bug Bounty Playbook 1 & 2
- Hacking APIs
- WAHH -> Bible -> Always helpful as a reference
- Web hacking 101 OR Real world bug hunting
NOTE : Its not necessary to complete every books [Though it will help a lot for beginners even experts in some part]
- Time for Practical knowledge learning
- For this I will advice you to start by CTFs related to web
- HTB,Pentesterlab,Pentester Academy, rootme , THM,PortSwigger, Hacker101, ctfchallenge.com and like that many other ctfs
- It will build your skills to high level
- blog.intigriti => have a section of CTFs + challenges => just keep an eye on it and grab all those and start practising
- For this I will advice you to start by CTFs related to web
- Time to build RECON Knowledge
- Watch nahamsec videos and note down every important part and do things at the same time while learning
- Jhaddix have a great methodology on recon
- Some Useful Youtube Channels must to join and watch
- https://www.youtube.com/channel/UCDl4jpAVAezUdzsDBDDTGsQ
- https://www.youtube.com/channel/UCDl4jpAVAezUdzsDBDDTGsQ
- https://www.youtube.com/c/SpinTheHack
- https://www.youtube.com/c/BugBountyReportsExplained
- https://www.youtube.com/c/STOKfredrik
- https://www.youtube.com/c/HackingSimplifiedAS
- https://www.youtube.com/c/RanaKhalil101
- https://www.youtube.com/c/InsiderPhD
- https://www.youtube.com/c/intigriti
- https://www.youtube.com/c/Nahamsec
- https://www.youtube.com/c/InfoSecGirls
- https://www.youtube.com/channel/UC9c12UnfHIru-tZTbW-G3gQ
- https://www.youtube.com/channel/UCBZbVdUmNWzrTK3B68A7vzQ
- https://www.youtube.com/c/itsiingot
- https://www.youtube.com/c/CyberInsecurity/videos
- https://www.youtube.com/channel/UCkR8mUMiP0BF0DNZNJPrRcw
- https://www.youtube.com/c/FarahHawa
- https://www.youtube.com/c/AndroidAppSec
- https://www.youtube.com/c/ippsec
- https://www.youtube.com/c/THEBBH
- https://www.youtube.com/c/HackingLabs
- https://www.youtube.com/c/MusabKhan
- https://www.youtube.com/c/CyberSecurityTV
- https://www.youtube.com/c/LiveOverflow
- https://www.youtube.com/c/JohnHammond010
- https://www.youtube.com/c/Hacksplained
- https://www.youtube.com/c/jassics/playlists
- Want to learn something or specific thing ?
- Important Github Projects
- https://github.com/attacker-codeninja/security-study-plan
- https://github.com/harsh-bothra/SecurityExplained
- https://github.com/thevillagehacker/Bug-Hunting
- https://github.com/cyprosecurity/API-SecurityEmpire
- https://github.com/AkashHamal0x01/learn250
- https://github.com/swisskyrepo/PayloadsAllTheThings
- https://github.com/harsh-bothra/learn365
- https://github.com/NafisiAslH/KnowledgeSharing
- https://github.com/dn0m1n8tor/learn365
- https://github.com/KathanP19/HowToHunt
-
Learn from Others => AMAs
Beside this here is my advice =>
- Learn Programming for Automation for make your tasks easier and it will make your logic strong
- Learn Programming like PHP,JS etc => to understand things more clearly and to go the mind of developer ;)
- Read lots of writeups and Reports and practical practice it
- Keep an eye on Important Tweets who posted about their Journey on 100daysofhacking or 100daysofbugbounty etc
- Make your learning and practical testing strategy
- Most important -> Take break and keep good health
Hope it helps to beginners
Thanks