? Subscribe to BBRE Premium: https://bbre.dev/premium
✉️ Sign up for the mailing list: https://bbre.dev/nl
? Follow me on Twitter: https://bbre.dev/tw
? Follow Shubs on Twitter: http://twitter.com/infosec_au/
In this podcast episode, I interview Shubham Shah – one of my biggest authorities in bug bounty space and expert in source code review who regularly finds 0days.
BBRD podcast is also available on most popular podcast platforms:
https://open.spotify.com/show/6tLoJ5foOoZPPELwrHPBO4
https://podcasts.google.com/feed/aHR0cHM6Ly93d3cuc3ByZWFrZXIuY29tL3Nob3cvNTA3Mzc4MS9lcGlzb2Rlcy9mZWVk
https://podcasts.apple.com/us/podcast/bug-bounty-reports-discussed/id1583400215?uo=4
Timestamps:
00:00 Intro
00:18 Shubs’ background
13:04 Choosing good targets for finding 0days
20:41 How to audit the source code?
33:34 Who should consider a career as a full-time bug bounty hunter?
38:04 Sharing knowledge and disclosing 0days
45:54 What skills does Shubs pay attention to when recruiting security researchers?
48:48 AI in security research
Add comment