0% found this document useful (0 votes)

849 views3 pages

Bug Bounty Roadmap

The document provides a roadmap for bug bounty hunting including recommended browsers, packet capturing tools, subdomain finders, screenshot tools, bug bounty platforms, practice platforms, OWASP Top 10 vulnerabilities to target, common cheat sheets, and penetration testing methodologies.

Uploaded by

traptanshparihar1

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

849 views3 pages

Bug Bounty Roadmap

Uploaded by

traptanshparihar1

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

You are on page 1/ 3

BUG BOUNTY ROADMAP

 Browsers –

o Chrome

o Firefox

 Packet Capturing –

o Burp Suite

o ZAP Proxy

 Sub Domain Finder –

o Sublist3r

o Subfinder

o Assetfinder

 Screenshot –

o EyeWitness

 Bug Bounty Platforms –

o HackerOne

o Bugcrowd

o Intigriti

o HackenProof

o SynAck

o YesWeHack
 Practice Platforms –

o BWapp

o DVWA

o OWASP Webgoat

o Cyclone Transfers

o Bricks

o Butterfly Security Project

o Hackme

o Juice Shop

o Rails Goat

o SQLol

 Owasp Top 10 –

o A01:2021 – Broken Access Control

o A02:2021 – Cryptographic Failures

o A03:2021 – Injection

o A04:2021 – Insecure Design

o A05:2021 – Security Misconfigurations

o A06:2021 – Vulnerable and Outdated Components

o A07:2021 – Identification and Authentication Failures

o A08:2021 – Software and Data Integrity Failures

o A09:2021 – Security Logging and Monitoring Failures

o A10:2021 – Server-Side Request Forgery

 Cheat Sheet –

o SQL Injection Cheat-Sheet

o XSS Cheat-Sheet
o XXE Payload

 Pen Testing Methodologies

o Penetration Testing Framework

o The Penetration Testing Execution Standard
o The WASC Threat Classification
o OWASP Top Ten Project
o The Social Engineering Framework

Redefining Hacking A Comprehensive Guide To Red Teaming and Bug Bounty Hunting in An AI-driven World (Fo
No ratings yet
Redefining Hacking A Comprehensive Guide To Red Teaming and Bug Bounty Hunting in An AI-driven World (Fo
704 pages
Kali Linux Wi-Fi Attack and Defense 2024
No ratings yet
Kali Linux Wi-Fi Attack and Defense 2024
226 pages
Task 2 - How To Install & Configure Gophish Tool in Kali Linux Report
0% (1)
Task 2 - How To Install & Configure Gophish Tool in Kali Linux Report
8 pages
Ethical Hacking Lab Record 2024-25
No ratings yet
Ethical Hacking Lab Record 2024-25
88 pages
Wireshark Network Packet Analysis
No ratings yet
Wireshark Network Packet Analysis
30 pages
Bug Bounty Checklist
No ratings yet
Bug Bounty Checklist
7 pages
Bug Hunting
No ratings yet
Bug Hunting
27 pages
Interview Questions For SOC Analyst
No ratings yet
Interview Questions For SOC Analyst
38 pages
JWT Hacking
No ratings yet
JWT Hacking
8 pages
Bugbounty Cheatsheet - Mohammed Adam (Twitter - Com - Iam - Amdadam)
No ratings yet
Bugbounty Cheatsheet - Mohammed Adam (Twitter - Com - Iam - Amdadam)
49 pages
Anon-Links
100% (1)
Anon-Links
12 pages
Bug Bounty Blueprint A Beginners Guide
No ratings yet
Bug Bounty Blueprint A Beginners Guide
34 pages
Bug Bounty Cheatsheet
100% (1)
Bug Bounty Cheatsheet
19 pages
Before: Team Code: 27A
No ratings yet
Before: Team Code: 27A
39 pages
Ultimate Ethical Hacking Termux Social Media Edition
No ratings yet
Ultimate Ethical Hacking Termux Social Media Edition
4 pages
Top Burp Suite Extension Used by Pentesters
100% (1)
Top Burp Suite Extension Used by Pentesters
27 pages
List of 366 Proxy Websites
No ratings yet
List of 366 Proxy Websites
10 pages
Hacker Toolkit V 2
No ratings yet
Hacker Toolkit V 2
11 pages
A Bug Bounty Hunting Journey (Thehackerish) (Z-Library)
No ratings yet
A Bug Bounty Hunting Journey (Thehackerish) (Z-Library)
88 pages
Book of Tips by Aditya Shende PDF
No ratings yet
Book of Tips by Aditya Shende PDF
23 pages
Bugtraq-Team - Pentesting and Forensics GNU - Linux Distribution For Ethical Hacking
No ratings yet
Bugtraq-Team - Pentesting and Forensics GNU - Linux Distribution For Ethical Hacking
9 pages
Bug Bounty Course LEAK 2023
No ratings yet
Bug Bounty Course LEAK 2023
1 page
Bug Bounty Exploit Checklist
No ratings yet
Bug Bounty Exploit Checklist
2 pages
Burp Suite Training Part 1,2,3
No ratings yet
Burp Suite Training Part 1,2,3
10 pages
Shodan
100% (1)
Shodan
71 pages
Jason Haddix Methodology
100% (2)
Jason Haddix Methodology
64 pages
Authentication Bypassing Using WebGoat and BurpSuite
No ratings yet
Authentication Bypassing Using WebGoat and BurpSuite
8 pages
HackBashxAYCEP 2024 Web Hacking Fundamentals
100% (1)
HackBashxAYCEP 2024 Web Hacking Fundamentals
55 pages
God Level Cyber Resources
No ratings yet
God Level Cyber Resources
16 pages
Burp Suite
100% (1)
Burp Suite
35 pages
Bug Bounty
No ratings yet
Bug Bounty
7 pages
Burp Suite
No ratings yet
Burp Suite
10 pages
Bug Hunting Earn Money
No ratings yet
Bug Hunting Earn Money
4 pages
1671096995786-Tale of Phishing
No ratings yet
1671096995786-Tale of Phishing
16 pages
Sub Netting
No ratings yet
Sub Netting
1 page
XSS Validator
No ratings yet
XSS Validator
17 pages
CCTV Security Cameras
No ratings yet
CCTV Security Cameras
22 pages
Password Cracking Demonstration
100% (1)
Password Cracking Demonstration
9 pages
Bug Bounty Advanced Course
No ratings yet
Bug Bounty Advanced Course
3 pages
Bugcrowd Vulnerability Rating Taxonomy 1.10
No ratings yet
Bugcrowd Vulnerability Rating Taxonomy 1.10
14 pages
Bug Bounty Related
100% (1)
Bug Bounty Related
36 pages
Penetration Testing and Metasploit
No ratings yet
Penetration Testing and Metasploit
9 pages
How To Intrude An Android Phone
No ratings yet
How To Intrude An Android Phone
10 pages
Collection of Bug Bounty Tip-Will Be Updated Daily - Bbinfosec - Medium
0% (1)
Collection of Bug Bounty Tip-Will Be Updated Daily - Bbinfosec - Medium
15 pages
SQL Cheat Sheet
No ratings yet
SQL Cheat Sheet
2 pages
Pentest-Report Mullvad v1
No ratings yet
Pentest-Report Mullvad v1
9 pages
White Hat Hacking Complete Guide To XSS Attacks
No ratings yet
White Hat Hacking Complete Guide To XSS Attacks
18 pages
Tomnomnom PDF
No ratings yet
Tomnomnom PDF
35 pages
Attack Methods: Ap/index - SHTML
No ratings yet
Attack Methods: Ap/index - SHTML
50 pages
Bug Bounty Content
No ratings yet
Bug Bounty Content
4 pages
Bug Bounty Bootcamp
No ratings yet
Bug Bounty Bootcamp
2 pages
IT Masters CSU Free Short Course - Hacking Countermeasures - Week 1
No ratings yet
IT Masters CSU Free Short Course - Hacking Countermeasures - Week 1
68 pages
All Links
No ratings yet
All Links
4 pages
Run Commands For Windows
100% (1)
Run Commands For Windows
28 pages
TryHackMe - Intro To Offensive Security
100% (1)
TryHackMe - Intro To Offensive Security
4 pages
How To Do Bug Bounty
No ratings yet
How To Do Bug Bounty
1 page
Burpsuite Essential Content 2
100% (1)
Burpsuite Essential Content 2
6 pages
COMPTIA Security+ Cuestionario Semana 5
No ratings yet
COMPTIA Security+ Cuestionario Semana 5
5 pages
Hack Telnet
No ratings yet
Hack Telnet
10 pages
1 Web App Hacking Password Reset Functionality m1 Slides
No ratings yet
1 Web App Hacking Password Reset Functionality m1 Slides
8 pages
Website Hacking - Javascript
No ratings yet
Website Hacking - Javascript
2 pages
Certified Ethical Hacker C.E.H v11 Exam Prep And Dumps
From Everand
Certified Ethical Hacker C.E.H v11 Exam Prep And Dumps
Byte Books
No ratings yet
Penetration Testing of Computer Networks Using BurpSuite and Various Penetration Testing Tools
From Everand
Penetration Testing of Computer Networks Using BurpSuite and Various Penetration Testing Tools
Dr. Hidaia Mahmood Alassoulii
No ratings yet
CPTE Certified Penetration Testing Engineer A Complete Guide
From Everand
CPTE Certified Penetration Testing Engineer A Complete Guide
Gerardus Blokdyk
No ratings yet

Bug Bounty Roadmap

Uploaded by

Bug Bounty Roadmap

Uploaded by

BUG BOUNTY ROADMAP

 Sub Domain Finder –

 Bug Bounty Platforms –

o Butterfly Security Project

o A01:2021 – Broken Access Control

o A02:2021 – Cryptographic Failures

o A04:2021 – Insecure Design

o A05:2021 – Security Misconfigurations

o A06:2021 – Vulnerable and Outdated Components

o A07:2021 – Identification and Authentication Failures

o A09:2021 – Security Logging and Monitoring Failures

o A10:2021 – Server-Side Request Forgery

o SQL Injection Cheat-Sheet

 Pen Testing Methodologies

o Penetration Testing Framework

You might also like