A Bug Hunter's Diary: A Guided Tour Through the Wilds of Software Security

**OS-15336** · 2015-11-24, 09:36

So I've read this and it's a pretty easy read for most part. The guy wastes no time and doesn't side-track. I really wish some bits were more detailed or that he mentioned potential tools and other resources he might have used, but overall it was very pleasant and highly recommended!

**Suhov** · 2016-11-08, 13:18

I also think that is a very easily readable book about bug hunting and exploitation. The good side is that you can read it any time, it is kind of entertaining, easy read compared to other resources on the same topic. You can have a very good basic idea on how to find bugs, on the other side the part on exploitation is easy to understand but you need more research if you want to reproduce the exploits.

**OS-83319** · 2020-11-30, 13:03

I just got a copy of "Real World Bug Hunting by Pete Yaworski which so far has been great for my n00b a$$. Each chapter introduces a vulnerability type accompanied by a series of actual reported bug bounties.

**OS-46910** · 2020-12-22, 01:14

Originally posted by OS-83319

I just got a copy of "Real World Bug Hunting by Pete Yaworski which so far has been great for my n00b a$$. Each chapter introduces a vulnerability type accompanied by a series of actual reported bug bounties.

Anything with CORS? I would be interested in how much of the book is about low hanging fruit

A Bug Hunter's Diary: A Guided Tour Through the Wilds of Software Security

A Bug Hunter's Diary: A Guided Tour Through the Wilds of Software Security

Comment

Comment

Comment

Comment