What Are Bug Bounties – And How Can You Become a Bug Bounty Hunter?

Bug bounties are big business – the industry amount to several million dollars each year. A bounty is a cash award given to a hacker who finds and reports a security weakness to an organization, so they can safely rectify it. This video list will show you the basics of bug bounty hunting. You’ll also get tips on how you can start hunting yourself (it’s not as difficult as you might think).

In just one year, organizations paid hackers more than $44.75 million via the HackerOne platform. They have a skillful global community of over 830 000 white hat hackers. On average, hackers discover a software vulnerability every 2.5 minutes. Nine individual hackers from seven different countries have earned over $1 million each on the platform. Over its lifetime, HackerOne has paid hackers $100 million for filing over 565 000 vulnerability reports.

The Million-Dollar Hacker

Tommy DeVoss is one of the hackers on HackerOne that earned more than $1 million on bug bounties. In this interview with Bloomberg, he says that he can make $160 000 in one day, with only 3–4 hours of work. His typical workweek co… Read full text

The Million-Dollar Hacker

Tommy DeVoss is one of the hackers on HackerOne that earned more than $1 million on bug bounties. In this interview with Bloomberg, he says that he can make $160 000 in one day, with only 3–4 hours of work. His typical workweek consists of about 5–10 hours of actual work. Before becoming a white hat hacker, DeVoss was jailed twice for breaking into various systems and spent a total of 4 years behind bars.

He’s not shy to admit the real driving force behind his work as an ethical hacker:

“The fact that we’re secure on the internet, it’s a nice side effect, but I do it for the money,” he says in the interview.

9 Pro Tips: How To Get Started in Bug Bounties

Stök, one of the “rock star” members on HackerOne, gives his best tips on how to get started in bug bounties.

9 Pro Tips: How To Get Started in Bug Bounties

Stök, one of the “rock star” members on HackerOne, gives his best tips on how to get started in bug bounties.

Aspen – How I Got Into Bug Bounties

Aspen shares her story of getting into bug bounties and how it has been to attend HackerOne events. Takeaway: “Don’t be afraid to ask questions because none of us know everything.”

Aspen – How I Got Into Bug Bounties

Aspen shares her story of getting into bug bounties and how it has been to attend HackerOne events. Takeaway: “Don’t be afraid to ask questions because none of us know everything.”

Step by Step: Stök Explains a $7.500 Bug Bounty

The Swedish hacker goes through a theoretical bug and his ideas on how to exploit it.

Step by Step: Stök Explains a $7.500 Bug Bounty

The Swedish hacker goes through a theoretical bug and his ideas on how to exploit it.

“The Ugly Truth About Bug Bounty Hunting”

Cristi Vlad explains why only very few bounty hunters make it. He also points you in the right direction so you can be one of them.

“The Ugly Truth About Bug Bounty Hunting”

Cristi Vlad explains why only very few bounty hunters make it. He also points you in the right direction so you can be one of them.

What Is White Hat Hacking?

What’s the difference between the good guys and the dark side of hacking? This video helps you distinguish between white hat and black hat hackers.

What Is White Hat Hacking?

What’s the difference between the good guys and the dark side of hacking? This video helps you distinguish between white hat and black hat hackers.

What’s the Difference Between Pentesting and Bug Bounties?

This video by LiveOverflow explains the difference between penetration testing and hunting for bug bounties.

What’s the Difference Between Pentesting and Bug Bounties?

This video by LiveOverflow explains the difference between penetration testing and hunting for bug bounties.

What Is a Certified Ethical Hacker?

Follow NetworkChuck as he tries to get an ethical hacker certification from the EC-Council (International Council of Electronic Commerce Consultants), also known as the CEHv10 certification.

What Is a Certified Ethical Hacker?

Follow NetworkChuck as he tries to get an ethical hacker certification from the EC-Council (International Council of Electronic Commerce Consultants), also known as the CEHv10 certification.