Why All Bug Bounties Suck! Find out before you compare vendors

1 year ago
85

Learn from a 20+ year App Sec founder and leader before you consider a Bug Bounty service!
Understand the fundamentals before comparing these products:
* Hackerone
* Bug Crowd
* Synack
(Hackerone vs Bug Crowd vs Synack)

- Chapters -
0:00 Cold Intro
0:44 Topic Intro
2:00 Pen Testing 101
2:57 Why they suck
7:12 Why they rock

This episode is part of a comprehensive series, where we each category of App Sec products:
* SAST: Static Application Security Testing
* DAST: Dynamic Application Security Testing
* IAST: Interactive Application Security Testing
* SCA: Software Composition Analysis
* WAF: Web Application Firewall
* RASP: Runtime Application Self-Protection (Next-Gen WAF)
* Manual Pen-Testing of Applications
** Addendum: Bug Bounties!
(SAST vs DAST vs IAST vs SCA vs WAF vs RASP vs Pen-Testing vs Bug Bounty)

To gain more valuable insights and resources from Dan On Dev visit our website
https://danondev.com

Loading comments...