Earlier this month, Bugcrowd brought together several hundred hackers for the LevelUp 0x05 virtual conference. What better way to start off your weekend than with some security talks – live streamed straight to your home?! I’m so grateful to all of our presenters for their time and knowledge, and for our global viewers who joined in from all hours of the day to learn and participate with us.
LevelUp 0x05 featured four speakers, here’s a breakdown of the content covered & links to view the presentations on Bugcrowd University:
Hardware Hacking for the Masses (and you!) – BusesCanFly
Dive into hardware and IoT hacking with BusesCanFly as he gives you a quick crash course with information helpful for any beginner. BusesCanFly is a Bugcrowd ambassador and hardware hacker.
Overview of common Android app vulnerabilities – Sebastian Porst
We were excited to be joined by Sebastian Porst from the Google Security team. Sebastian’s presentation gave an overview of common vulnerabilities that security researchers find in the top Android apps on Google Play. This is a must-watch for any upstart Android hackers!
GSuite Security: Everyone wants it but not everyone gets it – Rojan Rijal
Rojan Rijal is a full-time college student at California State University, Fullerton and an active participant in bug bounty platforms like Bugcrowd. Rojan joined us to share one of his latest findings, a widespread security misconfiguration issue with GSuite implementations that are often eligible for large bounty payouts.
REST in Peace: Abusing GraphQL to Attack Underlying Infrastructure – Matt Szymanski
GraphQL is a query language for APIs set to replace RESTful architecture. The use of this technology has achieved rapid adoption and is now leveraged by many of the largest companies in the world. Matt’s presentation goes into great depth with real-world examples, how to exploit it, and how to fix these vulnerabilities.
We’ll be coming back again in the coming months for LevelUp 0x06 – stay tuned to the Bugcrowd blog for more info!