✉️ Sign up for the newsletter: https://mailing.bugbountyexplained.com/

This podcast is an interview with Augusto Zanellato, the hacker who submitted report with a GitHub rest API token leaked which had access to Shopify’s Github account. It was reported on Hackerone to Shopify and Augusto got $50,000 for it. The best thing is that he didn’t even look for a security issue.

Link to the report explained: https://youtu.be/TOgIgD0KUVs
The report on Hackerone: https://hackerone.com/reports/1087489
Subscribe to Bug Bounty Reports Explained on YouTube: https://www.youtube.com/c/BugBountyReportsExplained/

Augusto’s media:

Subscribe on Spotify: https://open.spotify.com/show/6tLoJ5foOoZPPELwrHPBO4
Subscribe on Apple Podcasts: https://podcasts.apple.com/us/podcast/bug-bounty-reports-discussed/id1583400215?uo=4
Subscribe on Google Podcasts: https://podcasts.google.com/feed/aHR0cHM6Ly93d3cuc3ByZWFrZXIuY29tL3Nob3cvNTA3Mzc4MS9lcGlzb2Rlcy9mZWVk

Add comment

Your email address will not be published. Required fields are marked *