Critical Thinking - Bug Bounty Podcast
Episodes
Episode 70: NahamCon and CSP Bypasses Everywhere
09 May 2024
Contributed by Lukas
Episode 70: In this episode of Critical Thinking - Bug Bounty Podcast we’re once again joined by Ben Sadeghipour to talk about some Nahamcon news, a...
Episode 69: Johan Carlsson - 3 Month Check-in on Full-time Bug Bounty.
02 May 2024
Contributed by Lukas
Episode 69: In this episode of Critical Thinking - Bug Bounty Podcast we’re joined by Johan Carlsson to hear about some updates on his bug hunting j...
Episode 68: 0-days & HTMX-SS with Mathias
25 Apr 2024
Contributed by Lukas
Episode 68: In this episode of Critical Thinking - Bug Bounty Podcast Mathias is back with some fresh HTMX research, including CSP bypass using HTMX t...
Episode 67: VDPs & Accidental Program VS Hacker Debate Part 2
18 Apr 2024
Contributed by Lukas
Episode 67: In this episode of Critical Thinking - Bug Bounty Podcast we deepdive on the topic of Vulnerability Disclosure Programs (VDPs) and whether...
Episode 66: CDN-CGI Research, Intent To Ship, and Louis Vuitton
11 Apr 2024
Contributed by Lukas
Episode 66: In this episode of Critical Thinking - Bug Bounty Podcast Justin and Joel discuss the recent YesWeHack Louis Vuitton LHE, the importance o...
Episode 65: Motivation and Methodology with Sam Curry (Zlz)
04 Apr 2024
Contributed by Lukas
Episode 65: In this episode of Critical Thinking - Bug Bounty Podcast we sit down with Sam Curry to discuss the ethical considerations and effectivene...
Episode 64: .NET Remoting, CDN Attack Surface, and Recon vs Main App
28 Mar 2024
Contributed by Lukas
Episode 64: In this episode of Critical Thinking - Bug Bounty Podcast we talk about Justin and Joel delve into .NET remoting and how it can be exploit...
Episode 63: JHaddix Returns
21 Mar 2024
Contributed by Lukas
Episode 63: In this episode of Critical Thinking - Bug Bounty Podcast we welcome back Jason Haddix (From Episode 12) to talk about some updates to his...
Episode 62: Frontend Language Oddities
14 Mar 2024
Contributed by Lukas
Episode 62: In this episode of Critical Thinking - Bug Bounty Podcast Justin and Joel are back with some additional research resources that didn’t m...
Episode 61: A Hacker on Wall Street - JR0ch17
07 Mar 2024
Contributed by Lukas
Episode 61: In this episode of Critical Thinking - Bug Bounty Podcast Justin is joined by Jasmin Landry to share some stories about startup security, ...
Episode 60: Our Take on PortSwigger's Top 10 Web Hacking Techniques of 2023
29 Feb 2024
Contributed by Lukas
Episode 60: In this episode of Critical Thinking - Bug Bounty Podcast Justin and Joel review the Portswigger Research list of top 10 web hacking techn...
Episode 59: Bug Bounty Gadget Hunting & Hacker's Intuition
22 Feb 2024
Contributed by Lukas
Episode 59: In this episode of Critical Thinking - Bug Bounty Podcast Justin and Joel discuss the concept of gadgets and how they can be used to escal...
Episode 58: Youssef Sammouda - Client-Side & ATO War Stories
15 Feb 2024
Contributed by Lukas
Episode 58: In this episode of Critical Thinking - Bug Bounty Podcast we finally sit down with Youssef Samouda and grill him on his various techniques...
Episode 57: Technical breakdown from Miami Hacking Event - H1-305
08 Feb 2024
Contributed by Lukas
Episode 57: In this episode of Critical Thinking - Bug Bounty Podcast, Justin and Joel are live from Miami, and recap their experience and share takea...
Episode 56: Using Data Science to win Bug Bounty - Mayonaise (aka Jon Colston)
01 Feb 2024
Contributed by Lukas
Episode 56: Using Data Science to win Bug Bounty - Mayonaise (aka Jon Colston)Episode 56: In this episode of Critical Thinking - Bug Bounty Podcast, J...
Episode 55: Popping WordPress Plugins - Methodology Braindump
25 Jan 2024
Contributed by Lukas
Episode 55: In this episode of Critical Thinking - Bug Bounty Podcast, Justin is joined by Wordpress Security Researcher Ram Gall to discuss both func...
Episode 54: White Box Formulas - Vulnerable Coding Patterns
18 Jan 2024
Contributed by Lukas
Episode 54: In this episode of Critical Thinking - Bug Bounty Podcast Justin and Joel are back with news items and new projects. Joel shares about his...
Episode 53: 500k/yr as Full-Time Bug Hunter & Content Creator - Nahamsec
11 Jan 2024
Contributed by Lukas
Episode 53: In this episode of Critical Thinking - Bug Bounty Podcast,we’re joined by none other than NahamSec. We start by discusses the challenges...
Episode 52: Best Technical Content from Year 1 of CTBB Podcast
04 Jan 2024
Contributed by Lukas
Episode 52: In this episode of Critical Thinking - Bug Bounty Podcast we're going back and highlighting some of the best technical moments from the pa...
Episode 51: Hacker Stats 2023 & 2024 Goals
28 Dec 2023
Contributed by Lukas
Episode 51: In this episode of Critical Thinking - Bug Bounty Podcast, Justin and Joel are back for the last episode of 2023. We discuss some notewort...
Episode 50: Mathias "Fall in a well" Karlsson - Bug Bounty Prophet
21 Dec 2023
Contributed by Lukas
Episode 50: In this episode of Critical Thinking - Bug Bounty Podcast, Justin catches up with hacking master Mathias Karlsson, and talks about burnout...
Episode 49: Getting Live Hacking Event Invites & Bug Bounty Collab with Nagli
14 Dec 2023
Contributed by Lukas
Episode 49: In this episode of Critical Thinking - Bug Bounty Podcast, Justin Gardner is once again joined by Nagli to discuss some of their recent ha...
Episode 48: MVH, DEFCON Black Badge, Googler - Sam Erb
07 Dec 2023
Contributed by Lukas
Episode 48: In this episode, joined by the spectacular Sam Erb, Google Security Engineer and DEFCON Black Badge winner. We talk about the importance o...
Episode 47: CSP Research, Iframe Hopping, and Client-side Shenanigans
30 Nov 2023
Contributed by Lukas
Episode 47: In this episode of Critical Thinking - Bug Bounty Podcast, the holidays are fast approaching, and Justin and Joel discuss some of the stru...
Episode 46: The SAML Ramble
23 Nov 2023
Contributed by Lukas
Episode 46: In this episode of Critical Thinking - Bug Bounty Podcast, Justin is deep diving the topic of SAML (Security Assertion Markup Language), a...
Episode 45: The OG Bug Bounty King - Frans Rosen
16 Nov 2023
Contributed by Lukas
Episode 45: In this episode of Critical Thinking - Bug Bounty Podcast, we're thrilled to welcome Frans Rosén, an OG bug bounty hunter and co-founder ...
Episode 44: URL Parsing & Auth Bypass Magic
09 Nov 2023
Contributed by Lukas
Episode 44: In this episode of Critical Thinking - Bug Bounty Podcast, the topic is URL structure, and Justin and Joel break down the elements that ma...
Episode 43: Caido - The Up-And-Coming HTTP Proxy
02 Nov 2023
Contributed by Lukas
Episode 43: In this episode of Critical Thinking - Bug Bounty Podcast, we're joined by Emile from Caido, who shares his journey into the bug bounty an...
Episode 42: Renniepak Interview & Intigriti LHE Recap
26 Oct 2023
Contributed by Lukas
Episode 42: In this episode of Critical Thinking - Bug Bounty Podcast, we're live from a hacking event in Portugal, and joined by the extremely talent...
Episode 41: Mini Masterclass: Attack Vector Ideation
19 Oct 2023
Contributed by Lukas
Episode 41: In this episode of Critical Thinking - Bug Bounty Podcast, Justin takes a break from his busy travel schedule to walk us through a few of ...
Episode 40: Bug Bounty Mentoring
12 Oct 2023
Contributed by Lukas
Episode 40: In this episode of Critical Thinking - Bug Bounty Podcast, it’s all about mentorships! Justin sits down with Kodai and So, two hackers h...
Episode 39: The Art of Architectures
05 Oct 2023
Contributed by Lukas
Episode 39: In this episode of Critical Thinking - Bug Bounty Podcast, We're catching up on news, including new override updates from Chrome, GPT-4, S...
Episode 38: Mobile Hacking Maestro: Sergey Toshin
28 Sep 2023
Contributed by Lukas
Episode 38: In this episode of Critical Thinking - Bug Bounty Podcast, we're thrilled to welcome mobile hacking maestro Sergey Toshin (aka @bagipro). ...
Episode 37: Tokyo Hacking & Interview with 0xLupin
21 Sep 2023
Contributed by Lukas
Episode 37: In this episode of Critical Thinking - Bug Bounty Podcast we're joined by none other than Lupin himself! We recap the Tokyo LHE and the le...
Episode 36: Bug Bounty Ethics & CT Exclusive Bug Reports
14 Sep 2023
Contributed by Lukas
Episode 36: In this episode of Critical Thinking - Bug Bounty Podcast, Justin and Joel take a break from LHE prep to answer questions about the ethics...
Episode 35: King of Collaboration: Douglas Day
07 Sep 2023
Contributed by Lukas
Episode 35: In this episode of Critical Thinking - Bug Bounty Podcast, we're thrilled to welcome Douglas Day, a bug bounty hunter known for his unique...
Episode 34: Program vs Hacker Debate
31 Aug 2023
Contributed by Lukas
Episode 34: In this episode of Critical Thinking - Bug Bounty Podcast, Justin and Joel have both beaten COVID and now square off against each other in...
Episode 33: The Master of Hacker Show&Tell: Inti De Ceukelaire
24 Aug 2023
Contributed by Lukas
Episode 33: In this episode of Critical Thinking - Bug Bounty Podcast, we welcome Inti De Ceukelaire, a seasoned bug hunter known for his creative sto...
Episode 32: The Great Write-up Low-down
17 Aug 2023
Contributed by Lukas
Episode 32: In this episode of Critical Thinking - Bug Bounty Podcast, Joel caught a nasty bug (no, not that kind) so Justin is flying solo, and catch...
Episode 31: Alex Chapman - The Man of Many Crits
10 Aug 2023
Contributed by Lukas
Episode 31: In this episode of Critical Thinking - Bug Bounty Podcast, we're thrilled to be joined by Alex Chapman, a seasoned InfoSec hacker and bug ...
Episode 30: Recon Legend Shubs - From Burgers to Bounties
03 Aug 2023
Contributed by Lukas
Episode 30: In this episode of Critical Thinking - Bug Bounty Podcast, we're thrilled to be joined by renowned bug bounty hunter Shubs. We kick off wi...
Episode 29: Live Episode with Sean Yeoh - Assetnote Engineer
27 Jul 2023
Contributed by Lukas
Episode 29: In this episode of Critical Thinking - Bug Bounty Podcast sit down with Assetnote Engineer Sean Yeoh, and pick his brain about what he's l...
Episode 28: Surfin' with CSRFs
20 Jul 2023
Contributed by Lukas
Episode 28: In this episode of Critical Thinking - Bug Bounty Podcast, the CSRF’s up, dude! We kick off with a debate about whether or not deep link...
Episode 27: Top 7 Esoteric Web Vulnerabilities
13 Jul 2023
Contributed by Lukas
Episode 27: In this episode of Critical Thinking - Bug Bounty Podcast, we've switched places and now Joel is home while Justin is on the move. We brea...
Episode 26: Client-side Quirks & Browser Hacks
06 Jul 2023
Contributed by Lukas
In this episode of Critical Thinking - Bug Bounty Podcast, we're back with Joel, fresh (haha) off of back-to-back live hack events in London and Seoul...
Episode 25: 2xMVH & Multi-million dollar hacker Inhibitor181
29 Jun 2023
Contributed by Lukas
Episode 25: In this episode of Critical Thinking - Bug Bounty Podcast we talk to Cosmin (@Inhibitor181), fresh off of winning his 2nd MVH! We chat abo...
Episode 24: AI + Hacking with Daniel Miessler and Rez0
22 Jun 2023
Contributed by Lukas
Episode 24: In this episode of Critical Thinking - Bug Bounty Podcast, we chat with Daniel Miessler and Rez0 about the emergence and potential of AI i...
Episode 23: Hacker Loadouts
15 Jun 2023
Contributed by Lukas
Episode 23: In this episode of Critical Thinking - Bug Bounty Podcast, we delve into a different aspect of hardware - Our personal loadouts. We go thr...
Episode 22: Chipping Away at Hardware Hacking
08 Jun 2023
Contributed by Lukas
Episode 22: In this episode of Critical Thinking - Bug Bounty Podcast we talk about some basic/intermediate concepts related to Hardware Hacking. Spec...
Episode 21: Chill Chat with Legendary DoD Hacker Corben Leo
01 Jun 2023
Contributed by Lukas
In this episode of Critical Thinking - Bug Bounty Podcast, we chat with Corben Leo about his journey in bug bounty hunting and ethical hacking. We dis...
Episode 20: Hacker Brain Hacks - Overcoming Bug Bounty's Mental Tolls
25 May 2023
Contributed by Lukas
Episode 20: In this episode of Critical Thinking - Bug Bounty Podcast, we dive into the world of "hacker brain hacks'' and overcoming challenges in bu...
Episode 19: Audit Code, Earn Bounties (Part 2) + Zip-Snip, Sitecore, and more!
18 May 2023
Contributed by Lukas
Episode 19: In this episode of Critical Thinking - Bug Bounty Podcast we further discuss some tips and tricks for finding vulns once you’ve got sour...
Episode 18: Audit Code, Earn Bounties
11 May 2023
Contributed by Lukas
Episode 18: In this episode of Critical Thinking - Bug Bounty Podcast, we dive into everything source-code related: how to get source-code and what to...
Episode 17: LA Live Chat with Five Legendary Hackers
04 May 2023
Contributed by Lukas
Episode 17: In this episode of Critical Thinking - Bug Bounty Podcast we talk with five legendary hackers about some of their favorite bugs. Live. Fro...
Episode 16: The Hacker's Toolkit
20 Apr 2023
Contributed by Lukas
Episode 16: In this episode of Critical Thinking - Bug Bounty Podcast we talk about the hacker’s toolkit. Joel and Justin talk about their VPS setup...
Episode 15: The Israeli Million-Dollar Hacker
13 Apr 2023
Contributed by Lukas
Episode 15: In this episode of Critical Thinking - Bug Bounty Podcast we talk with the latest Million-Dollar bug bounty hunter: @naglinagli . He talks...
Episode 14: Mobile Hacking Dynamic Analysis w/ Frida + Random Hacker Stuff
06 Apr 2023
Contributed by Lukas
Episode 14: In this episode of Critical Thinking - Bug Bounty Podcast we talk about Dynamic Analysis within Mobile Hacking and a bunch of random hacke...
Episode 13: How to Find a Good BBP + Acropalypse + ZDI
30 Mar 2023
Contributed by Lukas
Episode 13: In this episode of Critical Thinking - Bug Bounty Podcast we talk about how to determine if a bug bounty program is good or not from the p...
Episode 12: JHaddix on Hacker->Hacker CISO, OG Hacking Techniques, and Crazy Reports
23 Mar 2023
Contributed by Lukas
Episode 12: In this episode of Critical Thinking - Bug Bounty Podcast we talk with Jason Haddix about his eclectic hacking techniques, Hacker -> Ha...
Episode 11: CV$$, Web Cache Deception, and SSTI
16 Mar 2023
Contributed by Lukas
Episode 11: In this episode of Critical Thinking - Bug Bounty Podcast we talk about CVSS (the good, the bad, and the ugly), Web Cache Deception (an un...
Episode 10: The Life of a Full-Time Bug Bounty Hunter + BB News + Reports from Mentees
09 Mar 2023
Contributed by Lukas
Episode 10: In this episode of Critical Thinking - Bug Bounty Podcast we talk about what its like to be a full-time bug bounty hunter, a tonne of bug ...
Episode 9: Headless Browser SSRF & RebindMultiA Tool Release + Web3 Bug
02 Mar 2023
Contributed by Lukas
Episode 9: In this episode of Critical Thinking - Bug Bounty Podcast we talk about Headless Browser SSRF and drop a tool called RebindMultiA. Joel als...
Episode 8: PostMessage Bugs, CSS Injection, and Bug Drops
22 Feb 2023
Contributed by Lukas
Episode 8: In this episode of Critical Thinking - Bug Bounty Podcast we drop some critical bugs which leak raw credit card info. We also discuss some ...
Episode 7: PortSwigger Top 10, TruffleSecurity Drama, and More!
16 Feb 2023
Contributed by Lukas
Episode 7: In this episode of Critical Thinking - Bug Bounty Podcast we talk about PortSwigger's Top 10 Web Hacking Techniques of 2022 (link below), s...
Episode 6: Mobile Hacking Attack Vectors with Teknogeek (Joel Margolis)
09 Feb 2023
Contributed by Lukas
Episode 6: In this episode of Critical Thinking - Bug Bounty Podcast we sit down with mobile hacking legend Joel Margolis and get the scoop on his app...
Episode 5: AI Security, Hacking WiFi, the New XSS Hunter, and more
02 Feb 2023
Contributed by Lukas
Episode 5: In this episode of Critical Thinking - Bug Bounty Podcast we talk about the new XSS Hunter, MD5 collisions and using ChatGPT for security, ...
Episode 4: H1-407 Event Madness & Takeaways Part 2 w/ Special Guest Spaceraccoon
02 Feb 2023
Contributed by Lukas
Episode 4: In this episode of Critical Thinking - Bug Bounty Podcast we have part two of our series on the H1-407 HackerOne Live Hacking Event. This t...
Episode 3: H1-407 Event Madness & Takeaways Part 1
26 Jan 2023
Contributed by Lukas
Episode 3: In this episode of Critical Thinking - Bug Bounty Podcast we talk about some of the interesting things we’ve learned from participating i...
Episode 2: Exploit Writing & Automation / Do you need to know how to program to hack?
18 Jan 2023
Contributed by Lukas
Episode 2: In this episode of Critical Thinking - Bug Bounty Podcast we talk about exploit writing/automation, some new tools released in the industry...
Episode 1: Introductions, Bug Bounty Reports, and BB Tips
09 Jan 2023
Contributed by Lukas
Episode 1: In this episode of Critical Thinking - Bug Bounty Podcast, Joel Margolis (aka 0xteknogeek) and Justin Gardner (aka Rhynorater) cover introd...