Udemy Special: Ends May 28!
Learn Data Science. Courses starting at $12.99.
Get Deal
Explore the world of offensive security and ethical hacking in this 42-minute conference talk by Ben Sadeghipour (NahamSec) recorded at YOW! Australia 2024. Discover how AI can enhance bug bounty hunting through real-world examples of critical vulnerabilities in modern web applications. Learn about asset discovery techniques, including a fascinating case study of hacking NASA, and understand common vulnerabilities like insecure direct object references, unauthenticated API access that leaks user PII, IIS short name enumeration, and zip slip attacks. The presentation includes a practical demonstration and concludes with valuable insights for aspiring ethical hackers. Perfect for cybersecurity enthusiasts, this talk showcases how ethical hackers have earned significant bounties ($1M since 2022) and how AI tools can streamline the vulnerability discovery process.
