Uncle Rat's Ultimate Bug Bounty Course
First of all thank you so much for following uncle Rat in his journey to bring you the best bug bounty course a rat could bring. You might be wondering what this all entails, let me tell you friend.
What can i do for?
My name is uncle rat and i am here to disrupt the teaching industry. I want to make an end to the bland video courses you normally find by providing you with a guided experience designed to bring you from practice platform to bug bounty target.
Ofcourse i can not promise you a bug, if anyone does you should turn around and never look back. It's YOU that will have to do the hard work but i can show you how. I can not promise you a bug but i can promise you a solid methodology to build upon and find that unique advantage you have to leverage it. You will not feel like you are being teached, you will feel like you are being coached as it should be.
Course details
- Final price: 250$
- Pre-order discount: 30$
- Includes a discord server invite link to a private server
- Includes 50% off coaching session voucher
- a 50% off voucher for the "Hunt like a rat: Android" course
- A practice platform to hunt on
- A docker compose file so you can host the practice platform locally if you wish
What will I get for that price?
I can of course not promise you that I will find you bugs. Nobody can promise you that and if they do, run as fast as you can in the opposite direction.
However i do promise to deliver you a solid methodology from finding a program to writing a better report that will help you get an idea of how to get started in a curated path. This will give you a starting point to build your own methodology upon and help you avoid the mistakes i made when i got started.
Release scheduele
- Release date of section 1: 27/03/2021
--- The intricacies of bug bounties
--- Uncle rat's main methodology
--- Attack techniques: CSRF
--- Attack techniques: BAC (+IDOR)
--- Attack techniques: Business Logic flaws
--- Attack techniques: SSRF
--- Reporting
- Release date of section 2: 13/04/2021
--- Attack techniques: Command Injections
--- Attack techniques: Template Engine Injections
--- Attack techniques: XXE
--- Tools
- Release date of section 3: 13/04/2021
--- Attack techniques: LFI/RFI
--- Attack techniques: XSS
--- Wide scope methodology/Recon
What will the chapters consist of?
Every chapter will have:
- A recorded video with in depth details about the topics covered
- A PDF that is used for the presentation
- Bonus video's with tips (Not exclusive to the course, also for free on youtube)
- A quiz to strengthen your knowledge on the topic
Besides this, there will also be a practice platform for you to practice the skills you learned on and an answer booklet to explain the quiz answers and practice platform.
The intricacies of bug bounties takes you through your first super important steps of picking a fitting program and bug bounty platform.
The methodology chapters will talk about the general strategy I take while hunting to minimize duplicates and maximise the amount of bugs I get to report.
The attack strategies will dig deeper into why things are happening and how we can form them to our hands to craft a mighty exploit.