- Bug Bounty Hunting Essentials
- Carlos A. Lozano Shahmeer Amir
- 81字
- 2021-06-10 18:35:30
Clarity
The report should be clear and should not misguide the reader into thinking that the researcher is being pushy. The following is an example of a report that sounds unclear:
"I would like to report a very critical using which you can takeover user accounts and should be fixed ASAP."
However, a clear description may contain the following sentence:
"This report contains technical details about a vulnerability in the password reset function which can allow users to take over accounts."
推薦閱讀
- 數(shù)據(jù)恢復(fù)方法及案例分析
- 黑客大曝光:無線網(wǎng)絡(luò)安全(原書第3版)
- 網(wǎng)絡(luò)空間攻防技術(shù)原理
- 計(jì)算機(jī)病毒原理與防范(第2版)
- 工業(yè)物聯(lián)網(wǎng)安全
- 數(shù)據(jù)安全實(shí)踐指南
- Kali Linux Wireless Penetration Testing Cookbook
- 黑客攻防與網(wǎng)絡(luò)安全從新手到高手(絕招篇)
- 人工智能安全(精裝版)
- 網(wǎng)絡(luò)關(guān)鍵設(shè)備安全檢測(cè)實(shí)施指南
- CTF特訓(xùn)營(yíng):技術(shù)詳解、解題方法與競(jìng)賽技巧
- 隱私計(jì)算:推進(jìn)數(shù)據(jù)“可用不可見”的關(guān)鍵技術(shù)
- VMware vCloud Security
- 網(wǎng)絡(luò)安全實(shí)戰(zhàn)詳解(企業(yè)專供版)
- Web安全攻防從入門到精通