Selling 0-Days to Governments and Offensive Security Companies
Offered By: Black Hat via YouTube
Course Description
Overview
Explore the intriguing world of vulnerability brokerage in this 39-minute Black Hat conference talk. Gain insider knowledge on the process of selling 0-day exploits to governments and offensive security companies. Delve into the operations of Q-recon, a vulnerability brokerage firm, and understand the market dynamics from three perspectives: researcher, broker, and client. Learn about the high-end market, acquisition methods, contractual aspects, property rights, customer acquisition, and collaborations with brokers. Discover the speaker's personal experiences and insights into this secretive industry. Uncover the intricacies of the vulnerability sales process, from initial discovery to final transaction.
Syllabus
Intro
About me
Overview
HighEnd Market
How do you get them
My experience
The process
The contract
Property rights
Finding customers
Working with brokers
Taught by
Black Hat
Related Courses
Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security ChipBlack Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube