Accidentally finding a $50,000 vulnerability - Augusto Zanellato - Bug Bounty Reports Discussed #2

Sep 30, 2021 · 26m 15s
Accidentally finding a $50,000 vulnerability - Augusto Zanellato - Bug Bounty Reports Discussed #2
Description

✉️ Sign up for the newsletter: https://mailing.bugbountyexplained.com/ This podcast is an interview with Augusto Zanellato, the hacker who submitted report with a GitHub rest API token leaked which had access...

show more
✉️ Sign up for the newsletter: https://mailing.bugbountyexplained.com/

This podcast is an interview with Augusto Zanellato, the hacker who submitted report with a GitHub rest API token leaked which had access to Shopify's Github account. It was reported on Hackerone to Shopify and Augusto got $50,000 for it. The best thing is that he didn't even look for a security issue.

Link to the report explained: https://youtu.be/TOgIgD0KUVs
The report on Hackerone: https://hackerone.com/reports/1087489
Subscribe to Bug Bounty Reports Explained on YouTube: https://www.youtube.com/c/BugBountyReportsExplained/

Augusto's media:
https://twitter.com/auguzanellato
https://hackerone.com/augustozanellato?type=user
https://github.com/augustozanellato
show less
Information
Author Grzegorz Niedziela
Organization Grzegorz Niedziela
Website -
Tags

Looks like you don't have any active episode

Browse Spreaker Catalogue to discover great new content

Current

Podcast Cover

Looks like you don't have any episodes in your queue

Browse Spreaker Catalogue to discover great new content

Next Up

Episode Cover Episode Cover

It's so quiet here...

Time to discover new episodes!

Discover
Your Library
Search