Presentations - War Stories from Google’s Vulnerability Reward Program

  • Location: Security Theater
  • Speaker: Gábor Molnár
  • Date and time: 21. October 2016. 11:50 - 12:35

The team behind Google’s VRP program processes more than 500 vulnerability reports every month. The quality of these reports vary on an extremely broad scale: we get brilliant multi-step exploits, and see completely new vulnerability types every day that make no sense at all. This talk is centered around a few of the most interesting reports we’ve come across to highlight the factors that differentiate the best reports from the average and low quality ones. These reports serve as Tan endless source of inspiration, amazement and fun for my team, and with sharing some of these stories, my hope is that they will also serve as inspiration for bug hunters and penetration testers, and will convince hesitants to start participating in bug bounty programs.


Sponsors:

Gold
Gold
Gold
Silver
Silver
Silver
Silver
Silver
Silver
Bronze
JOB
Technical