🐝 Hive Five #16 – Helping India, lifting each other up, and How To Start Bug Bounty

Hi friends,

Greetings from the hive!

I hope you are doing well in these trying times. I'm wrapping up several projects, and I've released a new beelog post, How to start bug bounty for beginners.

Yesterday I was hanging out in d0nut's stream, watching him work on resync and armada portscanner. Check out the VOD!

Let's take this week by swarm!

🐝 The Bee's Knees

1. Brag About Your Content, Not Your Tools: Something needs to be said about people’s obsession with their tools, e.g., Linux vs. Windows, Vim vs. Nano, Sublime vs. Atom, etc. Your tools don’t matter to other people. What matters is what you create with them.

2. Stanford student finds glitch in ransomware payment system to save victims $27,000: The hackers behind a nascent strain of ransomware hit a snag this week when a security researcher found a flaw in the payment system and, he says, helped victims save $27,000 in potential losses.

3. As Daniel put it, "read this whole stream of consciousness from Dan Kaminsky".

4. A hacker's approach to finding security bugs in open source software: Spencer Pearlman, Security Researcher at Detectify, presented A Hacker’s Approach to Finding Security Bugs in Open Source Software in a partnered webinar with friends at Debricked.

5. "They introduce kernel bugs on purpose": "We experimented on the linux kernel team to see what would happen." Jaana Dogan jaw dropped, which brings up ethical conduct in cybersecurity research.

💌 Sustain-A-Bee

Get $100 to try DigitalOcean. The go-to VPS for bug bounty hunters. I use it for all of my own recon and automation needs, plus it also doubles as a VPN. They have every cloud resource you need at an affordable price.

👉 Become a sponsor?

🔥 Buzzworthy

✅ Changelog

1. reconFTW v1.5: running over axiom reconftw_axiom.sh is ready to scan all your targets.

2. GitLab 13.11 released with Kubernetes Agent and Pipeline Compliance: The GitLab Kubernetes Agent is now available on GitLab.

3. Ubuntu 21.04 is here: : with native Microsoft Active Directory integration, Wayland graphics by default, and a Flutter application development SDK.

4. The Initial Preview of GUI app support is now available for the Windows Subsystem for Linux: A year ago at BUILD 2020 we introduced our goal to bring Linux GUI applications to the Windows Subsystem for Linux (WSL) to run Linux GUI applications. How to run Linux GUI apps on Windows 10 with WSL and WSLg.

📅 Events

1. India is in the midst of a second very deadly wave of COVID can you help?: You can also donate to KhaanaChahiye, Mumbai is battling hunger along with Covid-19. If you need extra incentive Sunil Pai offers his services to you, when you donate at least 100$.

2. Rob Dyke: needs legal representation. He made a responsible security disclosure about a public repo with private info and is getting some serious legal action from the Org.

3. BugBountyHunter.com: "FirstBlood" is their first hands on hackevent with bounties to be won! Be sure to check out the new Hackevent tab on the members dashboard and let us know if you're attending.

4. bugcrowd: Calling all Speakers, do you have a talk you've been sitting on for a minute? The LevelUp CFP is now open!

5. Hunting for IDORs with Katie Paxton-Fear: The ultimate IDOR / BOLA (Broken Object Level Authorisation) / BFLA (Broken Function Level Authorisation) methodology at OWASP DevSlop.

🎉 Celebrate

1. BugBountyHunter.com: is the proud owner of HackerOne's first NFT, but they're even happier knowing their donation will help hackthehood.

2. Masonhck357: joined Bugcrowd as an Application Security Engineer. Awesome!

3. zonduu: is starting as a Cyber Security Senior Analyst in MercadoLibre this week. Well deserved!

4. Jaya Goswami👾: received their first bounty from Zomato. Boom!

5. Tuan Anh Nguyen: reached the top 100 at Bugcrowd of all time. Wow!

💰 Jobs

1. CashLink: is looking for an experienced DevOps or IT operations engineer with a security mindset for a full time position at @cashlink_de (remote, start date asap, CET +-2 hours, very competitive EU salary).

2. Tanya Janca: is looking to hire a new grad as part of a governmental internship program.

3. TechCrunch: is looking to fill a few contract positions with journalists in the general consumer tech, biotech, climate and security beats.

4. Mozilla: is hiring a Senior Security Engineer.

5. Verizon: is looking for a senior member of the enterprise Red Team, you will be responsible to lead in the design and execution of campaign based security testing for Verizon, covering multiple types of targets.

📰 Articles

1. Explaining Threats, Threat Actors, Vulnerabilities, and Risk Using a Real-World Scenario: Casey Ellis (of Bugcrowd fame) had a great post on Twitter today about security terminology.

2. Malwarebytes Labs interviews Youssef Sammouda: He has submitted at least a hundred reports to Facebook which have been resolved, making Facebook a safer platform along the way.

3. Bad software sent postal workers to jail, because no one wanted to admit it could be wrong: For the past 20 years UK Post Office employees have been dealing with a piece of software called Horizon, which had a fatal flaw: bugs that made it look like employees stole tens of thousands of British pounds.

4. Web Storage: the lesser evil for session tokens: answering the question if it was safe to store session tokens using Web Storage (sessionStorage/localStorage) instead of cookies.

5. Designing sockfuzzer, a network syscall fuzzer for XNU: Their 20% project – an initiative where employees are allocated twenty-percent of their paid work time to pursue personal projects – with Project Zero, seeing if they could apply the techniques they had learned fuzzing Chrome to XNU, the kernel used in iOS and macOS.

📚 Resources

1. tmp.0ut: New zine, who dis?

2. Hacking GraphQL for Fun and Profit — Part 2— Methodology and Examples: Back again with the Hacking GraphQL series, check out part 1 for the basics.

3. A recap of Agarri's Q&A session on Twitter: This article was originally posted in June 2020, but it disappeared from the blog when a data-center from OVH burned down and was republished in April 2021.

4. Finding 0day to hack Apple: started hacking on Apple after the infamous blog post by Sam, et al - the goal was to focus on critical findings such as PII exposure or getting access to Apple's servers/internal network.

5. Pentesting: What I should have done: What they would tell their younger selves.

🎥 Videos

1. Plundering AWS S3 Buckets - HackTheBox.

2. HOW TO USE Xargs!!! | Linux Core Utils: Xargs is incredible, this short video will give the know hows to use it from here on out and you will never forget it.

3. Hacking Facebook in 3 different ways for $54,800 - Bug Bounty Reports Explained.

4. BSides Ahmedabad - AMA with Farah Hawa: She talked about her journey so far in bug bounties, how she juggles with content creation and her new job and shared a lot of tips, with host @nehat3413.

5. d0nutptr tuning Armada and resync dev work: 14+ hours of Rust and bug bounty talk — watch him implement features, talk you through code, and debug live.

Get $100 to try DigitalOcean - The go-to VPS for bug bounty hunters. I use it for all of my own recon and automation needs, plus it also doubles as a VPN. They have every cloud resource you need at an affordable price.

Subscribe to the Hive Five to read the rest.