HackerOne bug hunters have earned over $100 million in bug bounties thus far. Some of HackerOne customers include the United States DoD, General Motors, Uber, Twitter, and Yahoo. It clearly shows where the challenges and opportunities are for you in the upcoming years. What you need is a solid technical training by one of the top all-time HackerOne bug hunters.
Modern web applications are complex and it’s all about full-stack nowadays. That’s why you need to dive into full-stack exploitation if you want to master web attacks and maximize your payouts. Say ‘No’ to classical web application hacking. Join this unique hands-on training and become a full stack exploitation master.
Students will be handed in a VMware image with a specially prepared testing environment to play with the bugs. What’s more, this environment is self-contained and when the training is over, students can take it home (after signing a non-disclosure agreement) to hack again at their own pace.
REST API hacking
AngularJS-based application hacking
Bypassing Content Security Policy
Server-side request forgery
DB truncation attack
Type confusion vulnerability
Exploiting race conditions
Path-relative stylesheet import vulnerability
Reflected file download vulnerability
HTTP parameter pollution
Bypassing XSS protection
window.opener tabnabbing attack