Dylan Lawhon (aka iQimps) shares his journey from gaming to bug bounty hunting, including real-world hacking stories, zero-day discovery, SAML abuse, and advice for breaking into cybersecurity in 2026.

00:00 – 00:25 Intro & background
00:25 – 01:44 Getting into computers (gaming era)
01:44 – 03:44 First cybersecurity interest (game hacking & PSN breach)
03:44 – 08:30 Early hacking mindset & CTFs
08:30 – 13:44 First major live hacking event (bug bounty experience)
13:44 – 19:12 CSS injection → SSRF → account takeover case study
19:12 – 23:54 Favorite type of security testing (code review)
23:54 – 27:22 Bug bounty vs pentest time management
27:22 – 30:32 Improving vulnerability impact communication
30:32 – 33:41 Using AI in cybersecurity & automation
33:41 – 38:52 Future of AI in offensive & defensive security
38:52 – 45:48 Underestimated attack vector (SAML abuse)
45:48 – 48:48 Breaking into cybersecurity advice (2026)
48:48 – 51:11 SQL injection + documentation mindset
51:11 – 52:10 Where to find Dylan + closing

Whether you're a beginner in cybersecurity, a bug bounty hunter, or a seasoned pentester, this episode is packed with real-world insights from the front lines of offensive security.