Your next read Back on Track, Pentest and Sport

Rest week, Planning and Event

Aituglo public
3 min read
Rest week, Planning and Event
Photo by Glenn Carstens-Peters / Unsplash

Table of contents

Hi! A new chill one this week. I came back from Istanbul last week and I'm now in Paris for one week. I stay with some friends so this week was not very productive. It was the time for me to take some rest and take time with friends.

So this one will not be really focused on bug bounty, but more on what I will plan for the next steps.

What's coming next?

For the next weeks, I will primarily focus on sport, bug bounty, and dev. I'm on a lot of projects right now regarding bug bounty, hackyx, other dev stuff for my workflow and also another project not related to security.

Next month, I will be at LeHack in Paris and I'm waiting for that, it's a very great event with a live bug bounty event so it will be very cool. I hope I will meet you all there.

I'm also planning a long trip back to Asia in September, I will start back in Japan and then South Korea, China and maybe more so I will need to find good crits to afford that.

Regarding Hackyx, with Wlayzz and Doomer, we are gonna work more on that and build something very cool. We have plenty of ideas to create a really good experience for hunters or any security guy to find the best resources.

It's also been a long time since I wanted to create an app, not related to IT security, and I was quite afraid of building it because by doing that, I'm not hunting or learning anything related to my main work. But I finally decided to give it a try and see what's going on with that. I will talk about that more in this post and see if it can interest you.

A Bug Bounty Event for French

This week, @Blaklis organized for French hunters an event with Hackerone to build a little live hacking event. I don't have a lot of information about that now, but I will participate for sure and see what happens.

I will in the next week tell you more about that and what I was able to find.

It's also actually the AWC from Hackerone. It's the first round and the French team is very great. So a big shout out to them, they are rocking it actually.

An app for remote worker

As I told you earlier, I'm also working on something I wanted to build for many years. I have an issue each time I travel somewhere, it's to find a great place to work and to meet new people.

I always end up looking at a Starbucks or anything else, and sometimes I'm just disappointed. And I love working from a coffee shop or coworking. So I decided to create an app to find the best coffee around me, and places to work.

And as a solo traveler, I also wanted to meet to people related to work, so I wanted to include a community part where you can say if you want where you are gonna work and in which field. This way, you can meet people who want to discuss or work with you on something and build a good network around it.

I don't know if it will end up somewhere, but I want to try creating it and see what happens. As it's not very related to bug bounty ( even if as full-time hunters we can face the same issues ), I will not talk a lot about it here. But if it interests you tell me and I can tell you some news about that!

Ideas / Notes / Resources

  • Here are the slides about the Nahamcon prez from Shubs, very interesting about how to break WAF
  • A very nice article from Sam Curry about what he found on his modem.
Hacking Millions of Modems (and Investigating Who Hacked My Modem)
Two years ago, something very strange happened to me while working from my home network. I was exploiting a blind XXE vulnerability that required an external HTTP server to smuggle out files, so I spun up an AWS box and ran a simple Python webserver to receive the traffic from the vulnerable server.
samcurry.net
Linkedin A solid styled icon from Orion Icon Library.
Aituglo

Aituglo

Paris
The author of this blog, a bug bounty hunter and security researcher that shares his thoughts about the art of hacking.

Recommendations