By Luke Stephens Feb 18, 2021How to Find XXE Bugs: Severe, Missed and Misunderstood Introduction Every time I see an opportunity to attempt an External Entity Injection (XXE) attack I get excited. In my experience it has a high chance of success when compared to many other vulnerability types. Many of the XXE exploitation… Read More
By Breonna Burrell Dec 17, 2020You’ve Got Mail! – Receiving Bugcrowd Private Program Invites Understanding and building trust with the researcher community is a fundamental part of the program invite process here at Bugcrowd. The more you share with us about yourself and your skills, the faster we can get you on the right… Read More
By Amp Somers Nov 22, 2020Announcing our P1 Warriors for Q3 2020! Warriors are defined as “brave and experienced soldiers who specialize in combat,” so it’s that time of the year again where we get to announce who made it into the next tier of our P1 Warrior Program for Q3! This… Read More
By Breonna Burrell Nov 18, 2020Introducing Our New Researcher Dashboard! The Researcher Dashboard has a fresh coat of paint. This enhanced dashboard makes Bugcrowd simpler, faster, and easier to use than ever before! You’ll notice a few benefits right away based on the new design: A one-stop-shop of In-Platform Tasks… Read More
By Michael Hamel Oct 9, 2020New Search Tokens for Faster Filtering! Gone are the days when you lose track of your program invites. Our tokenized search has been expanded. You can now search for programs you’ve been invited to and filter by invite date using new tokens. New to tokens? They’re… Read More
By Michael Skelton Sep 30, 2020How-To: FFUF with Codingo One of the areas we’re most passionate about here at Bugcrowd is hacker education, and elevating the Crowd to new heights. This extends beyond our roles and is something many of us are passionate about in our personal time as… Read More
By Luke Stephens Sep 26, 2020A Byte-ful with TomNomNom Without a doubt, tomnomnom is one of my favourite hackers. I look up to his tools and mindset. Recently, I was able to sit down and have a long chat with him. In this podcast, Tom goes into detail and… Read More
By Breonna Burrell Sep 17, 2020Researcher Spotlight: Ahsan Khan (hunter0x7) Being a full-time hunter can be a risky gamble, but with hard work and dedication can be extremely rewarding! Ahsan Khan (hunter0x7) took on bug hunting full time almost 5 years ago. Since then, he’s honed his skills and found… Read More
By Breonna Burrell Aug 15, 2020Calling all Agents: Join our LevelUp0x07 CTF Challenge! Hello Agents, To prepare you for LevelUp0x07: Hack Another Day next week on August 22nd at 6pm PST, we’ve created a brand new Capture the Flag challenge with some very special rewards. This CTF is a web and mobile-based challenge… Read More
By Breonna Burrell Jul 27, 2020How we Measure Researcher Performance Just like talented employees need feedback to help them grow and improve while working at their company, we know that Researchers need ways to understand how they’re doing on our platform! However, quantifying and measuring performance metrics is easier said… Read More