How to choose your first bounty Program?

Rushi Mamtora
Nov 3 · 3 min read

As a learner, in the wake of finishing some essential abilities, individuals get presumptuous

They used to go for the facebook program page, google program page, they will test facebook, google, twitter code directly. In the end, they will say I can’t find the bug…..

After a few days, they will get tired and give up and say “I do not want to do”…

Kindly don’t do this sort of senseless thing in light of the fact that as an amateur you don’t have any understanding and this sort of organization is one of the highest tech organizations so clearly you can not have the option to discover a bug of it. This is a major mix-up of yours, it evident that you will surrender and you will figure “I would prefer not to do… ..”

So right off the bat, you need to comprehend what you know from these fundamental ideas, you had finished with some training and you know in which condition you can do certain things(testing). Additionally, you should have the expertise to thoroughly consider the crate else you will unquestionably demotivate. You won’t discover any bug at first.

The programs of bug bounty are not totally based on skills. Sometimes luck factor also works, because sometimes it happens that you find a bug and that was reported by someone else then the company will say its duplicate and they will not give you the bounty of it also. First come first serve type of concept work here….

So what you have to target and what is the approach of yours?

1 ) When you choose any program make sure that what application you use and find the responsible program of that application. (how that application or website works, then you can understand how to crack it.).

2 ) If you are a beginner then you have to find that kind of website or application that has a huge attack surface. which has given more than 2 or 3 domain means wildcard domains example like…

  • example.com = site.example.com, noob.example.com, script.kiddle.example.com, hehe.got.you.example.com…..

All subdomains are in scope so you can test any of them. like a website has 4-5 domains then you will get 50–100 subdomains, you can go with any of them.choice is yours…Because there are many possibilities for finding a bug. In this, your attacks vectors will be more diversifiable and you can test all the functionalities

3 ) The program is starting recently like before one hour. Go with this type of program because first come first server work here.

4 ) If you want to find programs manually then you can use google dorks

example…

  • inurl : responsible disclosure reward
  • inurl : responsible disclosure bounty
  • inurl : responsible disclosure swag
  • site: *.*.nl intext:security report reward
  • responsible disclosure rewared r=h:uk/eu/nl/cz

5 ) Check which type of bug required by the company. So first read the scope rules properly.

Don’t go with the reward. First gain experience then point then reputation and then go with the reward.

IN THE END, STICK TO THAT PROGRAM HAVE A PATIENCE….DO NOT LEAVE THE PROGRAM…….

Credit : Mrunal Chawada

Welcome to a place where words matter. On Medium, smart voices and original ideas take center stage - with no ads in sight. Watch
Follow all the topics you care about, and we’ll deliver the best stories for you to your homepage and inbox. Explore
Get unlimited access to the best stories on Medium — and support writers while you’re at it. Just $5/month. Upgrade