Free · Bahasa Indonesia · Selalu Update

Learning Roadmap
Bug Bounty Hunter

Panduan lengkap dari nol sampai bisa hunting bug dan submit ke program bug bounty. Ikuti phase secara berurutan untuk hasil terbaik.

Mulai dari Phase 1
5
Phase Belajar
26
Topik Materi
Free
Selamanya
Phase 1
Fundamentals
Fondasi wajib sebelum mulai hunting. Pahami ini dulu sebelum lanjut.
01

HTTP/HTTPS Protocol

Request/response, headers, cookies, sessions, status codes

 02

HTML, CSS & JavaScript Basics

DOM manipulation, form handling, client-side logic

 03

Networking Basics

DNS, TCP/IP, ports, subnets, proxies

 04

Linux Command Line

File system, permissions, bash scripting, SSH

 05

How Web Apps Work

Frontend vs backend, APIs, databases, authentication flow
Phase 2
Reconnaissance
Kumpulkan sebanyak mungkin informasi sebelum menyentuh target.
01

Subdomain Enumeration

Subfinder, Amass, crt.sh, brute-forcing subdomains

 02

Port Scanning

Nmap, Masscan, identifying running services

 03

Directory & File Discovery

Dirsearch, Gobuster, ffuf, wordlist selection

 04

Technology Fingerprinting

Wappalyzer, WhatWeb, identifying CMS and frameworks

 05

Google Dorking & OSINT

Advanced search operators, Shodan, Censys, archived pages

 06

JavaScript Analysis

Finding endpoints, API keys, and secrets in JS files
Phase 3
Common Vulnerabilities
Vulnerability paling umum dan paling sering ditemukan di bug bounty.
01

Cross-Site Scripting (XSS)

Reflected, Stored, DOM-based XSS, filter bypass, CSP bypass

 02

SQL Injection

Union-based, blind, time-based, error-based, second-order SQLi

 03

Server-Side Request Forgery (SSRF)

Internal service access, cloud metadata, protocol smuggling

 04

Insecure Direct Object Reference (IDOR)

Broken access control, horizontal/vertical privilege escalation

 05

Authentication Bypass

Broken auth, JWT attacks, OAuth misconfigurations, 2FA bypass

 06

Cross-Site Request Forgery (CSRF)

Token bypass, SameSite cookies, clickjacking chains

 07

File Upload Vulnerabilities

Extension bypass, content-type tricks, webshell upload
Phase 4
Advanced Techniques
Teknik lanjutan untuk menemukan bug yang lebih kompleks dan bernilai tinggi.
01

Race Conditions

TOCTOU bugs, limit bypass, double-spending in web apps

 02

Deserialization Attacks

Java, PHP, Python deserialization, gadget chains

 03

Template Injection (SSTI)

Jinja2, Twig, Freemarker, server-side template exploitation

 04

GraphQL Attacks

Introspection, batching, injection, authorization bypass

 05

API Security Testing

REST/GraphQL fuzzing, broken object-level authorization (BOLA)

 06

Business Logic Flaws

Price manipulation, coupon abuse, workflow bypass

 07

Subdomain Takeover

Dangling DNS records, cloud service takeover
Phase 5
Reporting & Bounty Platforms
Bug yang bagus tapi dilaporkan dengan buruk tidak akan menghasilkan apa-apa.
01

Writing Good Reports

Clear title, reproduction steps, impact assessment, PoC

 02

Bug Bounty Platforms

HackerOne, Bugcrowd, Intigriti, YesWeHack, program selection

 03

Severity & CVSS Scoring

Understanding critical/high/medium/low, CVSS calculator

 04

Responsible Disclosure

Ethics, rules of engagement, legal considerations

 05

Building Your Portfolio

Blog writeups, CVEs, public disclosures, building reputation