YoVDO

Bug Bounties - Crowdsourcing Nosey Bastards

Offered By: Security BSides London via YouTube

Tags

Security BSides Courses Cybersecurity Courses Bug Bounty Courses Organizational Security Courses

Course Description

Overview

Explore the complexities of bug bounty programs in this 20-minute conference talk from Security BSides London. Delve into the hidden depths beyond publishing a scope, examining whether more eyes truly lead to better security outcomes. Analyze the intricacies of project-specific and non-project-specific hunters, and uncover the surprising connection between the city of St Petersburg and bug bounties. Gain insights into the motivation behind these programs, statistical evidence, relevant academic studies, and various hunter archetypes. Investigate the St Petersburg Paradox and its application to bug bounty ecosystems. Conclude with a discussion on private programs and their role in the broader security landscape.

Syllabus

Introduction
Motivation
The Problem
Statistics
Academic Studies
Archetypes
St Petersburg Paradox
References
Private Programs


Taught by

Security BSides London

Related Courses

Early Detection through Deception
YouTube
Hack for Show, Report for Dough - Brian King
YouTube
Blue Teamin on a Budget of Zero - Kyle Bubp
YouTube
Windows Event Logs - Zero to Hero
YouTube
Weaponizing Splunk - Using Blue Team Tools for Evil
YouTube