Episode 25: In this episode of Critical Thinking - Bug Bounty Podcast we talk to Cosmin (@Inhibitor181), fresh off of winning his 2nd MVH! We chat about the time management and strategy of hacking Multi-Target LHEs, determining when to pivot, and how to find normalcy in bug bounty hunting and Live Hacking Events. We also touch on setting up Vuln Pipelines, creating mental models, and Cosmin's terrifying naming schemes. Don't miss this episode packed with both laughs and valuable insights for beginners and seasoned bug bounty hunters alike.

Follow us on twitter at: @ctbbpodcast

We're new to this podcasting thing, so feel free to send us any feedback here: [email protected]

Shoutout to YTCracker for the awesome intro music!

------ Links ------

Follow your hosts Rhynorater & Teknogeek on twitter:

https://twitter.com/0xteknogeek

https://twitter.com/rhynorater

Today’s Guest:

https://twitter.com/inhibitor181

Justin's weird episode with all the Dr. Suess Shit

https://rss.com/podcasts/ctbbpodcast/966055/?listen-on=true

Timestamps:

(00:00:00) Introduction

(00:02:52) MVH club and Multi-Target stragety

(00:12:00) Deciding when to pivot

(00:17:00) File Organization and 'unique' naming approaches

(00:23:56) Staying up to date on features and updates

(00:25:46) Hacking Sleep Habits

(00:28:15) Finding 'Normal Life' in bug bounty and LHE

(00:33:30) Vuln Pipelines, Wordlists, and full time bug bounty tips

(00:44:15) Benefits of the Bug Bounty Community

(00:47:45) Relationships with target companies and programs

(00:53:15) Creating mental models

(01:00:30) The Importance of writing good reports

(01:04:30) How to choose what to hack