How Do I Get Started With Bug Bounty ?

How do I get started with bug bounty hunting? How do I improve my skills?



These are some simple steps that every bug bounty hunter can use to get started and improve their skills:

Learn to make it; then break it!
A major chunk of the hacker's mindset consists of wanting to learn more. In order to really exploit issues and discover further potential vulnerabilities, hackers are encouraged to learn to build what they are targeting. By doing this, there is a greater likelihood that hacker will understand the component being targeted and where most issues appear. For example, when people ask me how to take over a sub-domain, I make sure they understand the Domain Name System (DNS) first and let them set up their own website to play around attempting to "claim" that domain.

Read books. Lots of books.
One way to get better is by reading fellow hunters' and hackers' write-ups. Follow /r/netsec and Twitter for fantastic write-ups ranging from a variety of security-related topics that will not only motivate you but help you improve. For a list of good books to read, please refer to "What books should I read?".

Join discussions and ask questions.
As you may be aware, the information security community is full of interesting discussions ranging from breaches to surveillance, and further. The bug bounty community consists of hunters, security analysts, and platform staff helping one and another get better at what they do. There are two very popular bug bounty forums: Bug Bounty Forum and Bug Bounty World.

Participate in open source projects; learn to code.
Go to https://github.com/explore or https://gitlab.com/explore/projects and pick a project to contribute to. By doing so you will improve your general coding and communication skills. On top of that, read https://learnpythonthehardway.org/ and https://linuxjourney.com/.

Help others. If you can teach it, you have mastered it.
Once you discover something new and believe others would benefit from learning about your discovery, publish a write-up about it. Not only will you help others, you will learn to really master the topic because you can actually explain it properly.

Smile when you get feedback and use it to your advantage.
The bug bounty community is full of people wanting to help others so do not be surprised if someone gives you some constructive feedback about your work. Learn from your mistakes and in doing so use it to your advantage. I have a little physical notebook where I keep track of the little things that I learnt during the day and the feedback that people gave me.


Learn to approach a target.
The first step when approaching a target is always going to be reconnaissance — preliminary gathering of information about the target. If the target is a web application, start by browsing around like a normal user and get to know the website's purpose. Then you can start enumerating endpoints such as sub-domains, ports and web paths.

A woodsman was once asked, "What would you do if you had just five minutes to chop down a tree?" He answered, "I would spend the first two and a half minutes sharpening my axe."
As you progress, you will start to notice patterns and find yourself refining your hunting methodology. You will probably also start automating a lot of the repetitive tasks.

More information

1. World No 1 Hacker Software
2. Pentest Tools Free
3. Nsa Hacker Tools
4. Hack Tools For Pc
5. What Is Hacking Tools
6. Nsa Hack Tools
7. Hack Apps
8. What Is Hacking Tools
9. Hackers Toolbox
10. Pentest Tools Alternative
11. Pentest Tools Website Vulnerability
12. Hacking Tools Usb
13. Pentest Tools List
14. Ethical Hacker Tools
15. Hacker Tools Software
16. Hacking Tools Online
17. Hacker Tools Windows
18. Best Hacking Tools 2020
19. Pentest Tools Website
20. Best Hacking Tools 2020
21. Nsa Hack Tools Download
22. Hack Tools For Pc
23. Pentest Tools Website Vulnerability
24. Hack Tools
25. Pentest Automation Tools
26. Hacking Tools Windows 10
27. Hacking Tools For Pc
28. Hacker Tools Hardware
29. Black Hat Hacker Tools
30. Physical Pentest Tools
31. Hacking Tools For Pc
32. Best Hacking Tools 2020
33. Physical Pentest Tools
34. Hacking Tools 2020
35. Pentest Tools Free
36. Hack Tools 2019
37. Pentest Tools Website Vulnerability
38. Computer Hacker
39. Physical Pentest Tools
40. Pentest Tools Linux
41. Hack Website Online Tool
42. Github Hacking Tools
43. Hacker Tools For Mac
44. Game Hacking
45. Kik Hack Tools
46. Hacking Tools Github
47. Pentest Tools Tcp Port Scanner
48. Computer Hacker
49. New Hack Tools
50. Hacker Tools 2019
51. Tools 4 Hack
52. Wifi Hacker Tools For Windows
53. Hacker Techniques Tools And Incident Handling
54. Tools For Hacker
55. Hack Tools Download
56. Pentest Tools Find Subdomains
57. Hacker Tools Github
58. Hacking Tools Pc
59. Hacking Tools For Beginners
60. Pentest Tools Alternative
61. Hack App
62. Hacker Tools Hardware
63. Pentest Tools Port Scanner
64. How To Hack
65. Pentest Tools Windows
66. Hack Tool Apk No Root
67. Pentest Tools For Ubuntu
68. Pentest Tools Port Scanner
69. Top Pentest Tools
70. Hacking Tools Usb
71. Wifi Hacker Tools For Windows
72. Best Pentesting Tools 2018
73. Pentest Tools Find Subdomains
74. Nsa Hack Tools
75. Hacking Tools Hardware
76. Hacking Tools Windows 10
77. Underground Hacker Sites
78. Pentest Tools Review
79. Hacking Tools For Kali Linux
80. Hacking Tools And Software
81. Hack Tool Apk
82. Hacking Tools 2020
83. Pentest Tools Bluekeep
84. Pentest Tools Open Source
85. Pentest Tools Bluekeep
86. Blackhat Hacker Tools
87. Hacker Tools For Pc
88. Hacking Tools For Kali Linux
89. Github Hacking Tools
90. Growth Hacker Tools
91. Android Hack Tools Github
92. Tools Used For Hacking
93. Hacking Tools For Kali Linux
94. Pentest Reporting Tools
95. Hacker Tools Github
96. Hacker
97. Hacking Tools For Windows 7
98. Hacker Tools Online
99. Tools For Hacker
100. Pentest Tools Android
101. Bluetooth Hacking Tools Kali
102. Beginner Hacker Tools
103. Hacking Tools Name
104. Android Hack Tools Github
105. Hacking Tools Mac
106. Pentest Tools For Ubuntu
107. Usb Pentest Tools