How much money I made in my 1st year of bug bounty? Bounty vlog #4
HTML-код
- Опубликовано: 29 сен 2024
- 📧 Join BBRE Premium: bbre.dev/premium
✉️ Sign up for the mailing list to get notified about BBRE Premium promotion: bbre.dev/nl
📣 Follow me on twitter: bbre.dev/tw
In this video, I'm showing you exact numbers about reports and money I made during my first year of bug bounty.
Mentioned videos/articles:
Bounty vlog Stripe #1: • 100 hours of bug bount...
Bounty vlog Stripe #2: • 100 hours of bug bount...
Bounty vlog Elastic: • 100 hours of reviewing...
Oatuh ATO video: • 2022-style OAuth accou...
Oauth ATO article: bbre.dev/36/1
Stripe bug: • How to get greater bou...
Previous bounty vlogs: • I quit my IT job for Y...
I had to work extra time for this video so I'm typing this comment with a foot😂 Let me know if you enjoyed it by leaving a like!
And if you want to check out BBRE Premium, go here: bbre.dev/premium
Thank you so much.. ❤from India..
Thanks 👍👍 bro form Pakistan
bbre link very slow to load ....page not loading
TL;DR He made about 20k for 440 hours of work. about $45/hour but the main thing is that he improved and is finding bugs even faster and it's helping the other parts of his business.
You. Are. Welcome.
I usually love this TL;DR coments, but this video is a MUST watch for anyone starting on bug bounty.
saved me 17 min. imo don't think the video is that important.
Now subtract taxes. In Germany you would have earned 10k. 440h is 101 weeks if you work 8 hours a day.
@@Karl2Peter101 weeks?
these kind of things is insane for those living in 3rd world countries, that is around 2.5 months worth of work meaning you make around 8k a month. That kind of salary is a company board's salary in SEA.
Would love to know the details of the OAuth Takeover and the CodeQL issue in depth.
Thanks
I saw that you visited greece, i hope u liked it hahahahh
I am from Greece btw
I loved the gyros, the sun and the soft black sand on the beaches❤️
as programer do perfect code is possible ... but when u have boss in work give u limited time to do ur work ...sure programer will trick his boss and will not do his work perfect .. he will make code looks like perfect but it isnt ... in other way we are human we can do mistakes ... by the way is android apps hackable even if i use google fire base servers as backend for my android app ?
My first year's payout was $8,000, and I hunted for bugs for about 5-6 hours per day. This is my sixth year in bugbounties, and I make around $100,000 by working 3-4 hours per day.
Things take time, so the only people who have the fortitude to keep the faith and keep grading will be successful.
which vulnerabilities do you most often encounter ?
@@aburoach9268 he can't answer because he's capping. Still unemployed and living in moms basement.
@@weouthere6902 lol
No you don’t Imran Parray.
Lies
150000++ bug Hunter's very hard work for get a one bounty
Only 1000 are Real
@@SharminSultana-us9rw harsh reality
You mean 150000++ unemployed trying to get a side hussle going lol
Congratulations and thank you so much for sharing your experiences. I have been going through a similar journey but you helped summarize/explain both the good and the bad aspects. Best of luck to you in year two :)
Im 22 and this is going to be my first year trying bug bounty I was studying for months at least 9 hours a day( taking breaks for some exercising and eat) my goal is to find at least 1 bug to report this year 😔
Same here
did you found any bug?
Howard it going?
Seems like he gave up
Did you find any?
Thank you for your great work, you motivate me a lot
I spent 40 hours in October at hunting. but I kept switching between programs and I made 1350 USD
This month I only worked 20 hours, but on 1 program. I've made 2300 USD and there are 3 bugs. 1 medium and 2 high I am waiting a response for them
I don't use tools or look for XSSs and that stuff. I just focus on understanding the program and try to find logical bugs and break the website access controls.
keep it bro
@@Oxdiee
Good luck for you as well 🙏
Bravo!
When did you start bug hunting and how long did it take to find your first bug?
@@vedanttare9425
5 years ago, 1-2 months
Keep the spirit friends, I'm a novice bug hunter for only 6 months but Alhamdulillah I just got paid $3200 from LinkedIn
don't look at other people's success and compare it with us (it only makes our hearts narrow) keep seeking knowledge and practice according to your own methodology.
Great video and very motivating
Definitely the type of motivation video I have been looking for, am a newbie to bug bounty and this is my 4month in the process and till now I even doubt if I will ever find any bug in a web app but still am not giving up
If you are trying hard to find bug but didn't get it yet.
I was in the same situation but how I got two triaged.
Rule.1
Stick with one program.
Rule.2
Observe your actions and ask your self a question what I am doing wrong?
You surely will!
Where are you now
Well i'm new to bug bounty and my goal for now is finding one bug with at least 100$ payment in one year since now so i leave this comment here and pls if anyone saw this one year later ask me if i could reach it
Here my story:
First 8 months took me to my first bounty ,next 6 months I made +10k usd after I got no motivation on hunting for 1 months then I started again few days no luck
Last 3 months I earned more than +30 k usd so let's things going
I'm not hunting everyday
What a progres!
Can you teach
What’s your background?
@@jameezybreezy9030 software developer
I am a beginner I have No idea about those things.. But i can work hard ... how much time needed for me?
Thank you for the video, I am 50 years old and just transitioning into IT for work, Bug bounties are of interest for me but I have yet to get my first one.... Wish me luck and thanks for the quality info
Hey - 1 year later but how has it gone for you?
I am 39 and just landed my first Cybersecurity role - tier 3 Incident Response.
Has the transition gone well??
Ups and downs for me... To say the least.
Your're one of the best guy in infosec. 👏👏
It's very motivational and life changing.🎯🎯
Glad you think so!
So that's about $40/hour, it's not that bad.
Thanks for the video, really appreciate the effort and transparency! My situation is very similar to yours in many respects except I am at near the start of the journey. This video means a lot to me!
Financial peace isn’t the acquisition of stuff. It’s learning to live on less than you make, so you can give money back and have money to invest. You can’t win until you do this.” ~ Dave Ramsey
Wise words
The hard truth behind the easy-looking bug bounty money. Keep going.
Hello brother, I’m over 35 years old. I have been learning ethical hacking for the past month for the bug bounty program. I’m using RUclips videos to learn, and I only have basic knowledge so far. But my confidence is very low. Please help and guide me.
thanks now i have some motivation for bug bounty and learning hacking thanks again.
hi man i am 15 and i know some python i know the basics of linux etc im looking to get startedat 15 do you think its a good idea
Really inspiring😍 !! I like your way of saying about discipline and hacking with one's own style.
Thanks for sharing your experience so honestly in this video.
What is the payment method for these platforms? Paypal, bank transfer, credit, etc? Also any good book recommendations for starting bug bounty or other useful sources?
Also mad respect for keeping it transparent
any body help me with the books that i can learn to be bug hunter
I am 25 I am intrestied bug bounty please help me please
You could analyze reports that are really bad (a hunter probing http methods running nmap against local host) or reports that got paid for inexistent bugs. I just found a squarespace subdomain over report that got paid 500 us without taking over the subdomain, almost a year ago. I would like to know why this happens.
I just found Ter Stegen of hacking 😳❤️
I Don't have a degree but when i see your video bro.... i think i can make a career in this bug bounty itself!!! Can I bro?
Man , I really love you , and i love how you share your personal experiences with us ❤❤
Thank you for such s genuine video. Being better than you were yesterday is a great outlook.
40k usd will pay off my mortgage
Damn
Thank You so Much For Ur amazin Content.🎉🎉 Cant stop Watching. Imagin being in In the GYM at 7am and still watchin😁.. Good Lucky U all❤
Really, typing with a foot! That is productivity to the max. Today, I just came across the term "Bug Bounty". by checking something else in "z Security" and decided to check more and It seems to be challenging. I am already retired and doing my things or completing my incomplete dreams of my youth. I agree entirely about your motives, transparency and getting organised. I do a kind of bounty but on water polluters and landfills. Good hunting.
i lot of things are going into my life and it really depresses me and suddenly this morning your video popup in my youtube feed and it made my day. I m little bit motivated towards my life and my goals thanks for uploading this video bhai thankyou so much 🙏🙏 it means lot to me right now.
Hi bro , I'm from India, I'm a college student, I don't know about anything about bug bounty, but I want to start, bug bounty, so please tell me , how to start, and tell which coding was best for bugbounty for beginners
I wish i could subscribe again! this is the daily motivation i need, i envy you man! all the best
Bro can you tell me please how to find bugs like you and what type of courses I need to learn
I am started bughunting since 1 and half year I dont get any bug
Personally i like diging deep in the target can you create a video on it like how to dig deep nd understand the workflow of website.
Thank you ❤️
Hey, GG for your hard work!
The google findings would be interesting to share !
That moneybar is sick🙊
Your story motivated me sir. I interested about to know your bug hunting methodology please
Most of the bug bounty roadmap videos are for people who already know pen testing. Please make a video on bug bounty learning roadmap for developers.
How would I do it if that's not a road I went through? Genuine question
@@BugBountyReportsExplained Being an active member of the hacker community, you must be knowing many many hackers, some of whom might have travelled that path. May be you could invite such people on your channel for a series of interviews, which would give us the details about that. It would be a great video series since not many videos exist on that theme.
Even if you decide not to do that, you can share your thoughts on roadmap for the people who are absolute beginners, who don't know anything about pen testing or web application security. The fact that they are developers or non-developers would be irrelevant. What matters is, they know nothing about web application security, pen testing & hacking.
@@facebook3677 I'm planning to get back to podcasting next year. I'll make sure to invite some guests who went through that path ;)
Really like the idea of open source bug hunting. Would love a video about this topic. Thanks for the video.
So great video as always. Hope you even more success in upcoming time
09:30 I must need to do like this🗿
Thank you a lot. It's great video! instant subscribe
You motivated me 🙂.Lots of love from Pakistan 🇵🇰
have you find any bug?
@@techsvictor Yaa ...small small bugs 😊and two large bugs and paid $800
@@jwd42 How many hours have you studied tell me estimated. I am 17 years/o and from Mansehra K.P.K and want to learn bug hunting . can I make money after putting 1500 hours of learning. I am in first year and i can put 1500 hours easily with my study. I know complete resources and road map please guide me. As I have other options also like learning blockchain dev or be a youtuber. plz tell me earning potential of bug hunting
I just want to start bug bounty actually 😭
You made the mistake of thinking you got lazy. You did not, you took an a massive challenge and burned out a little.
I have been working from home for a decade as a freelancer/entrepreneur. I know this struggle, and you handled it shockingly well to be honest. It is incredibly hard to stay motivated and manage your time, especially if you are juggling multiple things and your finances are not going well.
I just wanted to say this so that for the next person this is not a surprise.
Thank you for your honesty, it is very rare to see this im the industry. Keep up the hard work, you are doing well
Thank you Gergely in my name but also in the name of other people in similar situation that may need this word from a person that's been working like this for years
Świetny filmik, i dobry temat :)
another W video. this is the best video you ever made! a deep message.
Appreciate that!
Thanks Greg ,For putting it out very clear, this video not only talks about bug bounty but to do better in all areas of life, ! You made my day !
This is the kind of video I looked for. Thank you. I am just starting and I felt very bad I couldn't find any bugs.
nice, appreciate the transparency!
Thank you so much man
Really genuine and insightful video, you're doing great work, thanks!
Hey, Amazing video but My question. Did you do everything on your own? I am part of a few communities but it feels like no one really helps me a lot.. I am doing bug hunting for about 6 months having a lot of duplicates or not applicable.... I am kind of looking for some sort of "mentor" or someone who can actually look at what I am doing wrong cause there must be something.
I ope you'll see this and answer on me!
Yes, nobody ever told me what to do in bug bounty and I believe most of the people who make it here learn on their own mistakes
Thanks for sharing, I feel motivated :)
Excited for the codeQL one , it's look very tough.Will you make a whole video dedicated to this in how you learner codeQL,etc?
If I get the bounty and I see enough interest, I will make a video about it. The change I made was simple enough to be a good starting point for someone to understand.
If I don't see the interest, I will only write about in BBRE Premium.
This is the best video i ever saw
This is very helpful thank you!
Smashing like for 0:34
Thanks for the motivation! Time to get back to work and get things done I always wanted 🙏🏻
Thanks for this video. I hope to get a decent income from bug bounties, first of all I want the satisfaction from my self improvement. It isn't easy, I want to try though. Thanks for sharing your experience
comparing those hours to 8 hour days thats about 11 weeks work, times that by 4 thats $78,000 and 8 weeks holiday per year. still seems descent tbh
Brother, I am very grateful for your motivation, it really made me enthusiastic again after losing hope of hunting, but can you make a video about how to look for vulnerable endpoints with Idor or tips in Idor and also tips xss
What is a good book on how to ...because most videos are just bragging about how much they make..
You motivated me today man. I wish we can hang around in Krakow it would be so nice to meet such a nice guy.
I earned 450 this one year, same I don't like recon I care about reading code and finding bugs. I read a lot of writeups and did some labs.
Now I am gonna follow the same path as you.
Thanks for the video and the encouragement, follow your dream and passion consistently and everything else will follow that's what i got from this.
I’m only 3 minutes in and am really enjoying your content delivery style. Can’t wait to see more.
Very encouraging video, very helpful ..., thanks a ton 👍
Imo ur wasting time on regular bounties...you should pivot to crypto contract bug Bounties. Your pay for the same amount of time would prob have at least been triple.
Good video man keep it up
Very cool, mate! :)
loved it amazing
Love it man, great video
Thank you for this video and your honesty
Amazing
Great video 😊😊
thanks a lot
Thanks for the video...i finding the bug last one year i didn't get anything.. it's motivated me... This video helping myself to continue to go on your goals ...thanks brother...
You are awesome explainer ..once again thanks
Well done.
6:43 is this image from Morocco ?
It's Santorini, Greece ;)
Hi, Please make video about facebook bug You and David Schwutz.
very cool this videos, I want takes this challenger
Nice vedio
The best motivational video ever, thanks for making this man. Just be sure you have great impact on others)
your humor>>>
Http request smuggling make a video about that in next video and make separate video for how to learn stuffs
Hello, I entered the bug bounty at the beginner level. My goal is p1, p2 is not a high amount of explanations, p4 is a joyful event for me, even if I win small vulnerabilities. bug bounty p4. What do you recommend to be successful?
Rally helpful. Thank you so much 🙏
6:31 that's how you use 80 percent of human body
dzięki!
Hi im new to channel plz answer me is im right or no and give me advice plz
i want to start bug bounty but i don't have big knowldge so i make this roadmap
- HTML & CSS & JavaScript & PHP & larvel & MySQL & API (Basics all ) try to make web site to understand how web sites work !!
- web Basics(HTTP & Protocols ....)
Owsap Top 10
Kali linux basics
All of these things will help you be a better hacker but I've never developed or followed any roadmaps.
This is very nice video i would to work adn collabe with you