Undetected E02, Fredrik Almroth - Are Bug Bounties a buzzword?

Undetected E02, Fredrik Almroth - Are Bug Bounties a buzzword?

Mar 19, 2020

One could argue that bug bounties are a buzzword in security today, but what are they and what are they good for? In this episode, Laura is joined by the talented security researcher and detectify co-founder Fredrik N. Almroth (@almroot on twitter). If you can name it, Fredrik has probably hacked them including companies like Facebook, Tesla, Dropbox and Uber. Tune in for a dive deep into Fredrik's past as a bug bounty hunter and discuss how both companies and bug bounty hunters can get started in the field of Crowdsourced Security, as well as where the bug bounty industry is headed.

  1. :15 Tesla DOOM XSS

How we invented the Tesla dom doom xss

  • :26 Google XXE 
    How we got read access on googles production servers
  • :40 Bug Bounties Continue to Rise, but Market Has Its Own 1% Problem

    Fredrik's recommendations for bug bounty hunters:

    Tomnomnom's YouTube channel

    Stök's YouTube channel