https://wiki.cyberdiary.net/ 2026-05-14T10:56:37+00:00 https://wiki.cyberdiary.net/ https://wiki.cyberdiary.net/lib/exe/fetch.php?media=wiki:dokuwiki.svg text/html 2026-05-14T09:05:08+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.cyberdiary.net/doku.php?id=bbc:01_picking_program&rev=1778749508&do=diff Ch 1: Picking a Bug Bounty Program Source: Bug Bounty Bootcamp by Vickie Li (No Starch Press, 2021) Asset Types Bug bounty programs define scope by listing assets -- the systems you are authorized to test. * Social targets -- Twitter/Facebook/LinkedIn pages. Usually out-of-scope because you can't control what users post. text/html 2026-05-14T09:05:08+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.cyberdiary.net/doku.php?id=bbc:02_sustaining_success&rev=1778749508&do=diff Ch 2: Sustaining Your Success Source: Bug Bounty Bootcamp by Vickie Li (No Starch Press, 2021) Writing Good Reports A report is how you get paid and build reputation. Bad writing = low payouts + duplicates marked invalid. 8-step report structure: text/html 2026-05-14T09:11:30+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.cyberdiary.net/doku.php?id=bbc:03_how_internet_works&rev=1778749890&do=diff Ch 3: How the Internet Works Source: Bug Bounty Bootcamp by Vickie Li (No Starch Press, 2021) Client-Server Model Web apps operate on a client-server model. The client (browser) sends HTTP requests; the server processes them and returns responses. text/html 2026-05-14T09:11:30+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.cyberdiary.net/doku.php?id=bbc:04_env_setup&rev=1778749890&do=diff Ch 4: Environmental Setup and Traffic Interception Source: Bug Bounty Bootcamp by Vickie Li (No Starch Press, 2021) OS Use a Unix-based system. Kali Linux is recommended -- it ships with Burp Suite, Gobuster, DirBuster, Wfuzz, and other tools. macOS also works fine. text/html 2026-05-14T09:48:37+00:00 Anonymous (anonymous@undisclosed.example.com) https://wiki.cyberdiary.net/doku.php?id=bbc:08_clickjacking&rev=1778752117&do=diff BBC Ch 8: Clickjacking Source: Bug Bounty Bootcamp by Vickie Li Clickjacking (user-interface redressing) tricks users into clicking a malicious button that has been made to look legitimate. Attackers use HTML page-overlay techniques to hide one web page within another.