Interested in going full-time bug bounty? Check out our blueprint!

Videos

Dec. 20, 2024

Chrome extensions 101 with Justin and Matan

Chrome extensions 101 with Justin and Matan

#bugbountytips #bugbounty #bugbounties

View more
Dec. 19, 2024

Building Web Hacking Micro Agents with Jason Haddix (Ep. 102)

Building Web Hacking Micro Agents with Jason Haddix (Ep. 102)

Episode 102: In this episode of Critical Thinking - Bug Bounty Podcast Justin grabs Jason Haddix to help brainstorm the concept of AI micro-agents in hacking, particularly in terms of web fuzzing, WAF bypasses, report writing, and more.They discuss the importance of contextual knowledge, the cost implications, and the strengths…

View more
Dec. 14, 2024

Weaponizing browser extensions via XSS!

Weaponizing browser extensions via XSS!

#bugbountytips #bugbounty #bugbounties

View more
Dec. 13, 2024

Beyond the isolated world of the Closed Shadow DOM!

Beyond the isolated world of the Closed Shadow DOM!

#bugbountytips #bugbounty #bugbounties

View more
Dec. 12, 2024

Need more attack surface? TRY THIS!

Need more attack surface? TRY THIS!

#bugbountytips #bugbounty #bugbounties

View more
Dec. 12, 2024

AI Attack Vectors - CTBB Hijacked - Rez0__ and Johann (Ep. 101)

AI Attack Vectors - CTBB Hijacked - Rez0__ and Johann (Ep. 101)

Episode 101: In this episode of Critical Thinking - Bug Bounty Podcast we’ve been hijacked! Rez0 takes control of this episode, and sits down with Johann Rehberger to discuss the intricacies of AI application vulnerabilities. They talk through the importance of understanding system prompts, and various obfuscation techniques used to…

View more
Dec. 11, 2024

Crazy simple chrome extension web accessibility quirk = $120k

Crazy simple chrome extension web accessibility quirk = $120k

#bugbountytips #bugbounty #bugbounties

View more
Dec. 5, 2024

8 Fav Bugs of 2024, Farewell Joel, Hello Shift - Cursor of Hacking (Ep. 100)

8 Fav Bugs of 2024, Farewell Joel, Hello Shift - Cursor of Hacking (Ep. 100)

Ep 100 - 8 Fav Bugs of 2024, Farewell Joel, Hello Shift - Cursor of Hacking Episode 100: In this episode of Critical Thinking - Bug Bounty Podcast we have a mixed bag. We celebrate 100 episodes of Critical Thinking, but also bid farewell to Joel, who will be leaving…

View more
Nov. 30, 2024

Zendesk's public facepalm 🤦

Zendesk's public facepalm 🤦

#bugbountytips #bugbounty #bugbounties

View more
Nov. 28, 2024

The program hall of shame. Yay or Nay?

The program hall of shame. Yay or Nay?

#bugbountytips #bugbounty #bugbounties

View more
Nov. 28, 2024

Back to the Basics - Web Fundamental to 100k a Year in Bug Bounty (Ep. 99)

Back to the Basics - Web Fundamental to 100k a Year in Bug Bounty (Ep. 99)

Episode 99: In this episode of Critical Thinking - Bug Bounty Podcast Justin and Roni dissect an old thread of Justin's talking about how best to start bug bounty with the goal of making $100k in the first year. Follow us on twitter at: https://twitter.com/ctbbpodcast We're new to this podcasting…

View more
Nov. 26, 2024

What’s the point of tattoos (if you can’t show them off)?

What’s the point of tattoos (if you can’t show them off)?

#bugbountytips #bugbounty #bugbounties

View more
Nov. 24, 2024

Have you heard the HackerOne cake story?

Have you heard the HackerOne cake story?

#bugbountytips #bugbounty #bugbounties

View more
Nov. 23, 2024

Amazon told me to book a BETTER hotel room! 😂

Amazon told me to book a BETTER hotel room! 😂

#bugbountytips #bugbounty #bugbounties

View more
Nov. 21, 2024

Why I can’t stop hacking Amazon!

Why I can’t stop hacking Amazon!

#bugbountytips #bugbounty #bugbounties

View more
Nov. 21, 2024

Team 82 Sharon Brizinov - The Live Hacking Polymath (Ep. 98)

Team 82 Sharon Brizinov - The Live Hacking Polymath (Ep. 98)

Episode 98: In this episode of Critical Thinking - Bug Bounty Podcast Justin Gardner sits down with Sharon,to discuss his journey from early iOS development to leading a research team at Claroty. They address the differences between HackerOne and Pwn2Own, and talk through some intricacies of IoT security, and some…

View more
Nov. 19, 2024

Can eating carrots make you a better hacker?

Can eating carrots make you a better hacker?

#bugbountytips #bugbounty #bugbounties

View more
Nov. 17, 2024

How I Was Knighted by Amazon... Yes, Really!

How I Was Knighted by Amazon... Yes, Really!

#bugbountytips #bugbounty #bugbounties

View more
Nov. 14, 2024

Bcrypt Hash Input Truncation & Mobile Device Threat Modeling (Ep. 97)

Bcrypt Hash Input Truncation & Mobile Device Threat Modeling (Ep. 97)

Episode 97: In this episode of Critical Thinking - Bug Bounty Podcast Justin and Joel jump into some cool news items, including a recent Okta Bcrypt vulnerability, insights into crypto bugs, and some intricacies of Android and Chrome security. They also explore the latest research from Portswigger on payload concealment…

View more
Nov. 7, 2024

Cookies & Caching with MatanBer (Ep. 96)

Cookies & Caching with MatanBer (Ep. 96)

Episode 96: In this episode of Critical Thinking - Bug Bounty Podcast we’re back with Matanber to hit some stuff we ran out of time on last episode. We talk about advanced cookie parsing techniques and exploitation methods, Safari's unique behaviors regarding cookie handling and debugging methods, and some of…

View more
Nov. 4, 2024

Why you must review XPath in SAML code!

Why you must review XPath in SAML code!

#bugbountytips #bugbounty #bugbounties

View more
Nov. 3, 2024

The AI-Powered 403 Bypasser: Caido Plugin!

The AI-Powered 403 Bypasser: Caido Plugin!

#bugbountytips #bugbounty #bugbounties

View more
Nov. 2, 2024

My crypto bug that could delete entire wallets!

My crypto bug that could delete entire wallets!

#bugbountytips #bugbounty #bugbounties

View more
Nov. 1, 2024

How the Great Firewall of China Uses DNS Poisoning

How the Great Firewall of China Uses DNS Poisoning

#bugbountytips #bugbounty #bugbounties

View more