Software is in almost every aspect of our lives nowadays. Whether its mobile tech or desktop computing or the more recent IOT devices, all have software implemented inside them that can become interesting targets for vulnerability researchers and bug hunters. With the various bug bounty programs available, vulnerability research and bug hunting are becoming more of a critical – and potentially profitable – skill to have and improve.
Throughout this talk, we will focus on how to get into bug hunting and vulnerability research. The talk covers different topics, varying from finding bugs using static and dynamic analysis using different tools to fuzzing techniques and ways to automate your research. Finally, we will end the talk with tips on how to speed up the fuzzing process on different targets. If you’ve ever wondered how to get started in finding and reporting bugs, this talk opens the gate into the broader world of vulnerability research.