- Bug Bounty Hunting Essentials
- Carlos A. Lozano Shahmeer Amir
- 81字
- 2021-06-10 18:35:30
Clarity
The report should be clear and should not misguide the reader into thinking that the researcher is being pushy. The following is an example of a report that sounds unclear:
"I would like to report a very critical using which you can takeover user accounts and should be fixed ASAP."
However, a clear description may contain the following sentence:
"This report contains technical details about a vulnerability in the password reset function which can allow users to take over accounts."
推薦閱讀
- 數字身份與元宇宙信任治理
- Kali Linux Social Engineering
- 大型互聯網企業安全架構
- 暗戰亮劍:黑客滲透與防御全程實錄
- 走進新安全:讀懂網絡安全威脅、技術與新思想
- Mastering Kali Linux for Advanced Penetration Testing
- INSTANT Windows PowerShell
- 網絡安全與攻防入門很輕松(實戰超值版)
- 網絡安全設計、配置與管理大全
- CTF特訓營:技術詳解、解題方法與競賽技巧
- 信息安全工程與實踐
- 構建新型網絡形態下的網絡空間安全體系
- Mastering Metasploit
- Learn Azure Sentinel
- 黑客攻防從入門到精通:黑客與反黑客工具篇(第2版)