Published in

The Startup

Vickie Li

May 3, 2020

4 min read

Why You Fail at Bug Bounties

Reasons you are not finding bugs, and ways to improve

You’ve poured hours and hours, days and days into looking for vulnerabilities and still haven’t found a single one.

You follow all the rules. You use all the tools. You stay in scope. What could be going wrong? What secrets are the leaderboard hackers hiding? Today, let’s discuss the mistakes that…

More from The Startup

Get smarter at building your thing. Follow to join The Startup’s +8 million monthly readers & +756K followers.

Recommended from Medium

Raimonds Liepins

InfoSec Write-ups

Exploiting ILIAS learning management system

TrustToken

TrueFi

Postmortem: TFI-LP Pricing Bug

Techwave IT Consulting Services & Solutions

HOW SECURE ARE YOU AROUND “IOT”?

Myrle Clemen

{UPDATE} Bubble Pop Joy Hack Free Resources Generator

Saad Hussain

In-Person Identity Verification Is About To Be Revolutionized

Busra Demir

How to Execute an XML External Entity Injection (XXE)

Varun Trivedi

Everything on the Internet is not human

Ubong Okokon

ALRE: SECURELY MONETIZING YOUR PERSONAL DATA USING THE BLOCKCHAIN TECHNOLOGY

About Help Terms Privacy

Why You Fail at Bug Bounties

Reasons you are not finding bugs, and ways to improve

More from The Startup

Recommended from Medium

Exploiting ILIAS learning management system

Postmortem: TFI-LP Pricing Bug

HOW SECURE ARE YOU AROUND “IOT”?

{UPDATE} Bubble Pop Joy Hack Free Resources Generator

In-Person Identity Verification Is About To Be Revolutionized

How to Execute an XML External Entity Injection (XXE)

Everything on the Internet is not human

ALRE: SECURELY MONETIZING YOUR PERSONAL DATA USING THE BLOCKCHAIN TECHNOLOGY

Get the Medium app

Vickie Li

More from Medium

Node.js Vulnerability Cheatsheet

Vulnerabilities that shook the internet

How to get into bug bounties — A list of resources by The XSS Rat

[OSINT/GEOINT] Using shadows and optics to geolocate a photo in a US military base