Wk2 Homework Wed

How ethical hacking and bug bounties are impacting stakeholders

Stakeholder:

Business company: Business companies need security experts to provide protective in digital world. Ethical hacking and bug bounties is a common need and a win-win strategy that bug bounties attract security experts to improve its cyber security.

White hat: They obey ethical hacking and hack under the disclosure environment. They aim to build up a green, clean and safe digital world. Bug bounties is a good way to show off their skills and earn the reward!

Attacker: Less chance to do malicious actions.

Ordinary user: Online user data and user experience become safer.

Ethical hacking based on morals desire which means all of the Red Team actions are for building a more secure system. Hacking legally is a common need for big companies, then a certificate Certified Ethical Hacker (CEH) [1] which provide an employment opportunity those experts who want a formal hacking job. On the other hand, companies are happy to have a security team to protect their internal information.

How you can implement things you’ve learnt throughout the week to test web apps under a responsible disclosure program

As for me, I will find a bug bounty orgnazision like Hackerone that provid a platform to build up credit between hacker and business companies. At its website, I can find many companies that they encourage white hats to report any possible vulnerbilities. Hackers just need to follow the Disclosure Policy and Program Rules to report the bug to the company.


pic1

Ethical Hacker tutorial (9:53:48)

The Complete Ethical Hacking Tutorial - Become An Ethical Hacker Today

Resources

https://www.hackerone.com/disclosure-guidelines
https://www.youtube.com/watch?v=gOUGXVFA2IQ