Episode 25: In this episode of Critical Thinking - Bug Bounty Podcast we talk to Cosmin (@Inhibitor181), fresh off of winning his 2nd MVH! We chat about the time management and strategy of hacking Multi-Target LHEs, determining when to pivot, and how to find normalcy in bug bounty hunting and Live Hacking Events. We also touch on setting up Vuln Pipelines, creating mental models, and Cosmin's terrifying naming schemes. Don't miss this episode packed with both laughs and valuable insights for beginners and seasoned bug bounty hunters alike.
Follow us on twitter at: @ctbbpodcast
We're new to this podcasting thing, so feel free to send us any feedback here: info@criticalthinkingpodcast.io
Shoutout to YTCracker for the awesome intro music!
------ Links ------
Follow your hosts Rhynorater & Teknogeek on twitter:
https://twitter.com/0xteknogeek
https://twitter.com/rhynorater
Today’s Guest:
https://twitter.com/inhibitor181
Justin's weird episode with all the Dr. Suess Shit
https://rss.com/podcasts/ctbbpodcast/966055/?listen-on=true
Timestamps:
(00:00:00) Introduction
(00:02:52) MVH club and Multi-Target stragety
(00:12:00) Deciding when to pivot
(00:17:00) File Organization and 'unique' naming approaches
(00:23:56) Staying up to date on features and updates
(00:25:46) Hacking Sleep Habits
(00:28:15) Finding 'Normal Life' in bug bounty and LHE
(00:33:30) Vuln Pipelines, Wordlists, and full time bug bounty tips
(00:44:15) Benefits of the Bug Bounty Community
(00:47:45) Relationships with target companies and programs
(00:53:15) Creating mental models
(01:00:30) The Importance of writing good reports
(01:04:30) How to choose what to hack