logo
episode-header-image
Mar 2023
1h 16m

Episode 13: How to Find a Good BBP + Acr...

Justin Gardner (Rhynorater) & Joseph Thacker (Rez0)
About this episode

Episode 13: In this episode of Critical Thinking - Bug Bounty Podcast we talk about how to determine if a bug bounty program is good or not from the policy page. We also cover some news including Acropalypse, ZDI's Pwn2Own Competition, Node's Request library's SSRF Bypass, and a new scanning tool by JHaddix.

Follow us on twitter at: @ctbbpodcast

We're new to this podcasting thing, so feel free to send us any feedback here: info@criticalthinkingpodcast.io

Shoutout to YTCracker for the awesome intro music!

------ Links ------

Follow your hosts Rhynorater & Teknogeek on twitter:

https://twitter.com/0xteknogeek

https://twitter.com/rhynorater

JHaddix AWSScrape Tool:

https://twitter.com/Jhaddix/status/1637140192728612865?s=20

Acropalypse Links:

https://twitter.com/ItsSimonTime/status/1636857478263750656

https://www.da.vidbuchanan.co.uk/blog/exploiting-acropalypse.html

https://twitter.com/David3141593/status/1638222624084951040

https://twitter.com/David3141593/status/1638293029059477505

SSRF Bypass in NodeJS:

https://blog.doyensec.com/2023/03/16/ssrf-remediation-bypass.html

ZDI's Pwn2Own:

https://twitter.com/thezdi

Kuzu7shiki's Awesome Pixiv Report:

https://hackerone.com/reports/1861974

https://twitter.com/kuzu7shiki

Some of the Programs we talk about:

https://hackerone.com/instacart

https://hackerone.com/semrush

https://hackerone.com/yahoo

https://hackerone.com/paypal

Up next
Nov 20
Episode 149: DEFCON Debrief: AI Vulns, Unicode Weirdness, and Wild Vulnerability Chains
<p>Episode 149: In this episode of Critical Thinking - Bug Bounty Podcast The DEFCON videos are up, and Justin and Joseph talk through some of their favorites.</p><p>Follow us on <a target="_blank" rel="noopener noreferrer nofollow" href="https://x.com/ctbbpodcast">X</a></p><p>Go ... Show More
1h 2m
Nov 13
Episode 148: MCP Hacking Guide
Episode 148: In this episode of Critical Thinking - Bug Bounty Podcast Justin gives us a crash course on Model Context Protocol.Follow us on twitter at: https://x.com/ctbbpodcastGot any ideas and suggestions? Feel free to send us any feedback here: info@criticalthinkingpodcast.io ... Show More
32m 26s
Nov 6
Episode 147: Stupid Simple Hacking Workflow Tips
Episode 147: In this episode of Critical Thinking - Bug Bounty Podcast we're talking tips and tricks that help us in hacking that we really should’ve learned sooner.Follow us on twitter at: https://x.com/ctbbpodcastGot any ideas and suggestions? Feel free to send us any feedback ... Show More
58m 48s
Recommended Episodes
Feb 2024
E167: Nvidia smashes earnings (again), Google's Woke AI disaster, Groq's LPU breakthrough & more
(0:00) Bestie intros: Banana boat! (2:34) Nvidia smashes expectations again: understanding its terminal value and bull/bear cases in the context of the history of the internet (27:26) Groq's big week, training vs. inference, LPUs vs. GPUs, how to succeed in deep tech (49:37) Goog ... Show More
1h 20m
Feb 2024
ROLLUP: $ETH 3k! | TradFi Stonks ATHs | $STRK Now Live | Yuga Acquires PROOF
<p>Last Week of February 2024</p> <p>------<br /> 🏹 USE PODCAST24 FOR 10% OFF<br /> <a href= "https://bankless.cc/Citizen2024">https://bankless.cc/Citizen2024</a>  </p> <p>------<br /> 📣SUI | Register for Sui Basecamp<br /> <a href= "https://bankless.cc/sui-basecamp">https://ba ... Show More
1h 10m
Feb 2024
Max Reveals Secrets of Meeting Zendaya and Thoughts on THAT Billie Eilish Moment
<p>Get Tickets For Our Tour HERE! <a href="https://www.tegeurope.com/events/uselesshotline/" rel="noopener noreferrer" target="_blank">https://www.tegeurope.com/events/uselesshotline/</a> </p><br><p>Buy Useless Clothing at www.theuselesshotline.com NOW!</p><br><p>Welcome to The U ... Show More
1h 17m
Feb 2024
BTS | EP.148 - Valentine's Day Horror Stories ft ShxtsnGigs
Welcome to the Behind the Scenes podcast!Today we are joined by our first guests of the year...ShxtsnGigs!!Make sure you follow our page and like, comment, and share this episode with your friends and family if you enjoyed it! 0:00 - Intro02:13 - Who is Your Zaddy?10:55 - Dilemma ... Show More
1h 8m
Feb 2024
Episode 119 - Dart Squad (Ft. 1Dime)
<p>You are listening to this episode 1 week after it was released. To get episodes on time check out our Patreon!  <a href='https://www.patreon.com/posts/episode-103-ft-91756638'>Episode 1</a>20 is already available there: https://www.patreon.com/TheDeprogram<br/><br/>Check out h ... Show More
1h 16m
Mar 2021
22: THE TALKING STAGE AND BREAKING UP CATFIGHTS
In this episode, we address the talking stage that people go through before they decide if they want to be in a serious relationship with someone and if this should even be considered a stage before a relationship. We also talk about what we would do if our girl is in a fight wit ... Show More
1h 19m
Jul 2024
Ponzis and Pyramids
This week, in a break from our usual murder and mayhem, we take a look at two cases involving investment fraud - both at the hands of trusted solicitors. Naughty, naughty... If you would like to support us on Patreon, you can find us here: www.patreon.com/seeingredpodcast If yo ... Show More
1 h
Aug 21
Trump evicts homeless people
One of his strategies is throwing people into treatment programs without their consent. Blue states are into it, too?! This episode was produced by Rebeca Ibarra and Devan Schwartz, edited by Amina Al-Sadi, fact-checked by Laura Bullard, engineered by Patrick Boyd and Andrea Kris ... Show More
26m 36s
Listen to millions of songs and podcasts on Anghami