, Workshops
Remember WordPress? It powers over 43% of websites (~810M sites). We will show you how to make money with WordPress vulnerabilities, an ideal entry point into the challenging world of bug bounty hunting. Suitable for all experience levels with challenges, walkthrus, and guidance to help you succeed.
Please bring a laptop so you can participate in the practical aspects of this workshop. Minimum software required is a browser and notepad, but recommend a web proxy (burp / caido / zap) and an IDE (VSCode / PHPStorm).
Breaking into bug bounty can be challenging, but exploiting WordPress is relatively straightforward. There are two bug bounty programs that pay for vulnerabilities found in WordPress plugins and themes. I started earlier this year, and I've already made ~$30K and submitted over 300 bugs.
This workshop will introduce you to getting paid for finding vulnerabilities in WordPress. It will be run in a CTF style, with walkthroughs, cheat sheets and 1-on-1 guidance for those who need it. This format allows you to choose the difficulty level and go at your own pace, making it suitable for both beginners and experienced bug hunters alike.
Join us and learn how to turn your hacking skills into cash by exploiting the world's most popular CMS!
Mat is an experienced developer turned application security 'expert'. He loves reviewing code and breaking things, making bug bounty hunting his dream job.
https://www.linkedin.com/in/mat-rollings/
https://twitter.com/stealthcopter