Awesome video. I'm 60 now and just starting to learn about security and such to get into bug bounty hunting as an old retired man. I'm strickly going to teach myself using the internet "Google searching with Dorks" and RUclips videos. No need to get into security as a job, or get hired, at my age. But it will be something "other than watching TV all day" to pass my time a little more productively.
Dude just question : can penetration tester keep all his work remotely for example like ur current role. Can u do the work done from home without going to office. "not bug bounty hunting" just real pentest like external/internal. Or this feature for programers only.
Can I start on junior penetration tester job without experience with these 4 certificates ? Comptia A+ Comptia Security+ Comptia Network+ Comptia Pentest+
Hello dear, thank you for this wonderful video. I have a simple question what level of programming do I need to learn and after that I learn bug bounty ? And Thank you very much 🤗🤗
Hello, can you please do a video regarding the legal risks involved in doung bug bounty? It's a critical issue that surprisingly doesnt get addressed. Thank you.
Thank you so much for the reply! I do have one more question if you don't mind: Do I need to contact the company first before hunting? Or can I just start hunting right away as long as they have a public program on a platform like hackerone, and I stay within the scope as you mentioned? Thank you for your time!
@@andyli keep the good work up man..this inspiration is so much helpful..I decided to reduce some efforts in network penetration based CTFs and learn web app development well before I fully focus on web apps vulns,the idea of learning owasp top 10 without knowing how sql and how all those injections come about sounded like a shortcut to me...so just decided,I'll re-do all this in a year or more,wish me luck Li🤣🤣
1 month update ruclips.net/video/Gxg90os6Lvk/видео.html
Awesome video. I'm 60 now and just starting to learn about security and such to get into bug bounty hunting as an old retired man. I'm strickly going to teach myself using the internet "Google searching with Dorks" and RUclips videos. No need to get into security as a job, or get hired, at my age. But it will be something "other than watching TV all day" to pass my time a little more productively.
Nice!
This is fantastic, thanks a lot for all the resources you are curating here, it is so welcome !
Glad you enjoy it!
I've been lurking in their Discord, and I think you've just convinced me to jump all the way in!
nice, good luck!
Hi Andy, good to watch your new video. It’s been a month I was waiting for another great video. Your content is great as usual. Keep it up buddy. 👍🏻
Hey, thanks!
@@andyli we want more videos like this Mr Li
Came for the osrs content. Stayed because your passion for all things you do.
Thanks
Great video, informative, thank you, sir.👍
thanks
hey love you , u are an inspiration
Thanks
awesome content dude :) looking for more videos on these !
Thanks! More content on this soon
@@andyli one more question , how long do they take to decide/award a bounty after reporting ?
@@apostle5135 at the moment around 20-40 days
Great video thanks
thanks
This is amazing. Do you recommend any way to learnt about solidity security?
Thanks. I talk about some of the learning resources in my videos. Secureum is a good place to start
secureum.substack.com
Can you share some roadmap or anything for learning web3 bug hunting
Dude just question : can penetration tester keep all his work remotely for example like ur current role. Can u do the work done from home without going to office. "not bug bounty hunting" just real pentest like external/internal. Or this feature for programers only.
at the moment I am working pretty much entirely at home, definitely possible
Can I start on junior penetration tester job without experience with these 4 certificates ?
Comptia A+
Comptia Security+
Comptia Network+
Comptia Pentest+
Some IT experience and those certs would get you a job. Otherwise without experience I recommend the OSCP to show practical skills
Hello dear, thank you for this wonderful video. I have a simple question
what level of programming do I need to learn and after that I learn bug bounty ?
And Thank you very much 🤗🤗
Mostly you will be reading a lot of Solidity code. I recommend going through a few tutorials to understand the language.
@@andyli
Thank you
Will u create a video how to start auditing? smart contract bug bounty
yeah I made a video on that
Can you share the links of the discord channels related to the security you joined? thanks
Code4rena
discord.gg/q3Ty5dEQes
Secureum
discord.gg/BxDEW6xRRF
Smart Contract Developer
discord.gg/r8VbC4HdGW
Damn Vunerable Defi
discord.gg/uKAqmvE9t5
Hello, can you please do a video regarding the legal risks involved in doung bug bounty? It's a critical issue that surprisingly doesnt get addressed. Thank you.
You just need to make sure to stay in scope when testing production systems. For code review type bounties there is no concern
Thank you so much for the reply! I do have one more question if you don't mind:
Do I need to contact the company first before hunting? Or can I just start hunting right away as long as they have a public program on a platform like hackerone, and I stay within the scope as you mentioned?
Thank you for your time!
for public programs you can just start
@@andyli Ok thank you very much!
wow there are 6 contents now live, if you find more bugs maybe some video analysis one of them?
Yeah crazy, I did submit some findings for them. Planning to do more videos on this
what is the best thing to do when u burnout ?
Don't be too hard on yourself if you burn out. Exercise, go to the gym helps too
I thought I clicked fast..but its 21 minutes late.fuck youtube algo
first comment! :)
@@andyli keep the good work up man..this inspiration is so much helpful..I decided to reduce some efforts in network penetration based CTFs and learn web app development well before I fully focus on web apps vulns,the idea of learning owasp top 10 without knowing how sql and how all those injections come about sounded like a shortcut to me...so just decided,I'll re-do all this in a year or more,wish me luck Li🤣🤣
😻 𝚙𝚛𝚘𝚖𝚘𝚜𝚖
👍🏻