🤪4300$ Bounty from Opensource automate recon tools, why not?

A critical thread of my thoughts about people who underestimate others because of opensource tools and skill set.

Yes, and I don't need to be proud of my skills. I also don't need to prove to anyone about my skills.

Is it really necessary for people looking for bugs and bounties to be certified and recognized as experts?

It is enough that the report satisfies the vulnerability taxonomy, can prove it with the POC in report, then is accepted by Triager and Company. That's enough.

They don't care about the tools used as long as your tools and how you use it meet the terms and agreements listed. They will not test you outside the context of the vulnerability you are reporting.

Without further ado, I got around 4000 USD with the following tools

Follow Installation Guide, Post Installation Guide and Usage guide. Than ./reconftw.sh Just it.

Effective on VPS but of course it can run also on your PC.

Tools are just tools. We still have to utilize with our understanding. Even if you're still in the script kiddies stage, there's no problem getting started.

Don't be afraid of people's unreasonable and far-fetched standards.

If you want to start this video will be very helpful.

Thank you Six2dez and all opensource recon tools developer. 🙏

By the way my name Anggi Pradana and I’m part time bug hunter on https://bugcrowd.com/anggipradana . I'm a noob and that's why I keep learning.

PreviousHTML Injection di Tokopedia NextI hacked Mastercard 4 times? But How?

Last updated 1 year ago