Full-time bug hunting: Pros and cons of an emerging career - Help Net Security

Full-time bug hunting: Pros and cons of an emerging career - Help Net Security

Being a bug hunter who discloses their discoveries to vendors (as opposed to selling the information to the highest bidder) has been and is an ambition of many ethical hackers.


Before vendors started paying for the info, the best they could hope for was a lucrative job offer, though an entry in the company’s Hall of Fame was a good enough incentive for most.



These days many vendors and service providers have an official vulnerability disclosure program, either run internally or managed by a third party, and offer bug bounties for quality reports about newly discovered security vulnerabilities in their offerings.


The sheer number of bug bounty programs in existence and the fact that the bounties occasionally reach tens or hundreds of thousands dollars has, as a result, lead many a bug hunter to concentrate on searching for vulnerabilities as
Support the originator by clicking the read the rest link below.