✉️ Sign up for the newsletter: https://mailing.bugbountyexplained.com/
This podcast is an interview with Augusto Zanellato, the hacker who submitted report with a GitHub rest API token leaked which had access to Shopify’s Github account. It was reported on Hackerone to Shopify and Augusto got $50,000 for it. The best thing is that he didn’t even look for a security issue.
Link to the report explained: https://youtu.be/TOgIgD0KUVs
The report on Hackerone: https://hackerone.com/reports/1087489
Subscribe to Bug Bounty Reports Explained on YouTube: https://www.youtube.com/c/BugBountyReportsExplained/
Augusto’s media:
https://twitter.com/auguzanellato
https://hackerone.com/augustozanellato?type=user
https://github.com/augustozanellato
Subscribe on Spotify: https://open.spotify.com/show/6tLoJ5foOoZPPELwrHPBO4
Subscribe on Apple Podcasts: https://podcasts.apple.com/us/podcast/bug-bounty-reports-discussed/id1583400215?uo=4
Subscribe on Google Podcasts: https://podcasts.google.com/feed/aHR0cHM6Ly93d3cuc3ByZWFrZXIuY29tL3Nob3cvNTA3Mzc4MS9lcGlzb2Rlcy9mZWVk
Add comment