Sign up to save your podcasts
Or
Share BBJP_Podcast #13 (1周年記念回&ゲスト回)
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
BBJP_Podcast #13 (1周年記念回&ゲスト回)
【1周年記念回 & ゲスト回】
Speakers
- morioka12 (@scgajge12)
- mokusou (@Mokusou4)
- RyotaK (@ryotkak)
- ゲスト:Masato Kinugawa (@kinugawamasato)
Summary (Linkのみ)
- [大テーマ] 最近の取り組みについて
- Automated Mobile App Security
- https://oversecured.com/
- Achieving RCE in famous Japanese chat tool with an obsolete Electron feature
- https://flatt.tech/research/posts/escaping-electron-isolation-with-obsolete-feature/
- Leaderboard | Google Bug Hunters
- https://bughunters.google.com/leaderboard
- P3NFEST 2025 Winter
- https://issuehunt.jp/events/2025/winter/p3nfest
- [中テーマ] トレンドの出来事や脆弱性についてなど
- Exploring the DOMPurify library: Hunting for Misconfigurations (2/2)
- https://mizu.re/post/exploring-the-dompurify-library-hunting-for-misconfigurations
- Zero Day Initiative - Announcing Pwn2Own Berlin and Introducing an AI Category
- https://www.zerodayinitiative.com/blog/2025/2/24/announcing-pwn2own-berlin-2025
- Top 10 web hacking techniques of 2024
- https://portswigger.net/research/top-10-web-hacking-techniques-of-2024
- Leaking the email of any YouTube user for $10,000
- https://brutecat.com/articles/leaking-youtube-emails
- Decoding Google: Converting a Black Box to a White Box
- https://brutecat.com/articles/decoding-google
- NDevTK Writeup Blog
- https://ndevtk.github.io/writeups/
- 8 Million Requests Later, We Made The SolarWinds Supply Chain Attack Look Amateur
- https://labs.watchtowr.com/8-million-requests-later-we-made-the-solarwinds-supply-chain-attack-look-amateur/
- How We Hacked a Software Supply Chain for $50K
- https://www.landh.tech/blog/20250211-hack-supply-chain-for-50k/
- [Guest] Masato Kinugawa
- DiscordデスクトップアプリのRCE
- https://masatokinugawa.l0.cm/2020/10/discord-desktop-rce.html
- Cure53
- https://cure53.de/
- Cybozu Bug Bounty Point Cumulative Ranking
- https://x.com/CybozuBugBounty/status/1884799350666305794
- 世界最大規模のバグバウンティコンテスト・Pwn2Ownの魅力とは?
- https://flatt.tech/magazine/entry/20240404_pwn2own
- [Q&A] なし
Web Page
- https://bugbountyjppodcast.notion.site/Bug-Bounty-JP-Podcast-8bf1080383a54c4a8848f10bfeb874b3?pvs=4
Survery
- https://forms.gle/wkr2jkc3m9o8NhPk7
BBJP_Podcast で話して欲しいテーマや聞きたいことなどを Google Form で募集しています。
感想も X(Twitter)でハッシュタグ「#BBJP_Podcast」や Google Formでいただけると嬉しいです。
View all episodes
By morioka12【1周年記念回 & ゲスト回】
Speakers
- morioka12 (@scgajge12)
- mokusou (@Mokusou4)
- RyotaK (@ryotkak)
- ゲスト:Masato Kinugawa (@kinugawamasato)
Summary (Linkのみ)
- [大テーマ] 最近の取り組みについて
- Automated Mobile App Security
- https://oversecured.com/
- Achieving RCE in famous Japanese chat tool with an obsolete Electron feature
- https://flatt.tech/research/posts/escaping-electron-isolation-with-obsolete-feature/
- Leaderboard | Google Bug Hunters
- https://bughunters.google.com/leaderboard
- P3NFEST 2025 Winter
- https://issuehunt.jp/events/2025/winter/p3nfest
- [中テーマ] トレンドの出来事や脆弱性についてなど
- Exploring the DOMPurify library: Hunting for Misconfigurations (2/2)
- https://mizu.re/post/exploring-the-dompurify-library-hunting-for-misconfigurations
- Zero Day Initiative - Announcing Pwn2Own Berlin and Introducing an AI Category
- https://www.zerodayinitiative.com/blog/2025/2/24/announcing-pwn2own-berlin-2025
- Top 10 web hacking techniques of 2024
- https://portswigger.net/research/top-10-web-hacking-techniques-of-2024
- Leaking the email of any YouTube user for $10,000
- https://brutecat.com/articles/leaking-youtube-emails
- Decoding Google: Converting a Black Box to a White Box
- https://brutecat.com/articles/decoding-google
- NDevTK Writeup Blog
- https://ndevtk.github.io/writeups/
- 8 Million Requests Later, We Made The SolarWinds Supply Chain Attack Look Amateur
- https://labs.watchtowr.com/8-million-requests-later-we-made-the-solarwinds-supply-chain-attack-look-amateur/
- How We Hacked a Software Supply Chain for $50K
- https://www.landh.tech/blog/20250211-hack-supply-chain-for-50k/
- [Guest] Masato Kinugawa
- DiscordデスクトップアプリのRCE
- https://masatokinugawa.l0.cm/2020/10/discord-desktop-rce.html
- Cure53
- https://cure53.de/
- Cybozu Bug Bounty Point Cumulative Ranking
- https://x.com/CybozuBugBounty/status/1884799350666305794
- 世界最大規模のバグバウンティコンテスト・Pwn2Ownの魅力とは?
- https://flatt.tech/magazine/entry/20240404_pwn2own
- [Q&A] なし
Web Page
- https://bugbountyjppodcast.notion.site/Bug-Bounty-JP-Podcast-8bf1080383a54c4a8848f10bfeb874b3?pvs=4
Survery
- https://forms.gle/wkr2jkc3m9o8NhPk7
BBJP_Podcast で話して欲しいテーマや聞きたいことなどを Google Form で募集しています。
感想も X(Twitter)でハッシュタグ「#BBJP_Podcast」や Google Formでいただけると嬉しいです。