DiscoverBug Bounty Reports DiscussedBug bounty tools that actually land bugs with Arthur Aires
Bug bounty tools that actually land bugs with Arthur Aires

Bug bounty tools that actually land bugs with Arthur Aires

Update: 2025-06-10
Share

Description

In this podcast, my guest is Arthur Aires, part-time bug bounty hunter and cybersecurity pro from Brazil. He has an amazing approach that combines manual hacking with using a lot of tools for recon and fuzzing.

Some links mentioned in the video: https://github.com/pwntester/SerialKillerBypassGadgetCollection https://book.hacktricks.wiki/en/index.html https://portswigger.net/bappstore/e4e0f6c4f0274754917dcb5f4937bb9e https://portswigger.net/bappstore/594a49bb233748f2bc80a9eb18a2e08f https://portswigger.net/bappstore/0e61c786db0c4ac787a08c4516d52ccf https://github.com/PortSwigger/403-bypasser https://github.com/projectdiscovery/nuclei https://github.com/SeifElsallamy/Blind-XSS-Manager/tree/main https://github.com/trufflesecurity/xsshunter https://infosecwriteups.com/easy-xsshunter-discord-alerts-33fcff24a8f7 https://github.com/elkokc/reflector https://portswigger.net/burp/documentation/desktop/tools/dom-invader https://urlscan.io/

Timestamps:
00:00 Intro
01:30 Balancing part-time bug bounty with full-time job
02:56 Mixing manual bug bounty hunting with automation
22:04 The most useful Burp extensions
33:25 Fuzzing in bug bounty
46:34 Live Hacking Events
Comments 
In Channel
Bug bounty tools that actually land bugs with Arthur Aires

Bug bounty tools that actually land bugs with Arthur Aires

2025-06-1055:17

The mindset for finding highs and crits in bug bounty with JR0ch17

The mindset for finding highs and crits in bug bounty with JR0ch17

2025-05-1401:12:25

How to become an XSS expert with renniepak

How to become an XSS expert with renniepak

2025-03-1253:52

From 0 to a top bug bounty hunter - Johan Carlsson's journey to GitLab TOP1 on Hackerone

From 0 to a top bug bounty hunter - Johan Carlsson's journey to GitLab TOP1 on Hackerone

2025-01-2101:18:40

Finding criticals on well-tested targets - Victor “doomerhunter” Poucheret

Finding criticals on well-tested targets - Victor “doomerhunter” Poucheret

2024-12-2301:30:30

How not to get stuck when learning web security? Louis Nyffenegger from PentesterLab

How not to get stuck when learning web security? Louis Nyffenegger from PentesterLab

2024-11-0655:16

Going full-time bug bounty, privilege escalation bugs and more with Douglas Day

Going full-time bug bounty, privilege escalation bugs and more with Douglas Day

2024-08-1501:31:16

Finding criticals in mobile apps - Joel Margolis (0xteknogeek) from the Critical Thinking Bug Bounty podcast

Finding criticals in mobile apps - Joel Margolis (0xteknogeek) from the Critical Thinking Bug Bounty podcast

2024-07-2401:08:52

The secret to finding many Criticals - Alex Chapman

The secret to finding many Criticals - Alex Chapman

2024-06-2501:16:33

How I got into cybersecurity and bug bounty?

How I got into cybersecurity and bug bounty?

2024-02-1338:08

Find more clients and improve in pentesting - Cristi Vlad

Find more clients and improve in pentesting - Cristi Vlad

2024-01-0901:12:18

All you need to know about being a full-time bug bounty hunter - Justin “rhynorater” Gardner

All you need to know about being a full-time bug bounty hunter - Justin “rhynorater” Gardner

2023-11-2101:21:32

AI and hacking - opportunities and threats - Joseph “rez0” Thacker

AI and hacking - opportunities and threats - Joseph “rez0” Thacker

2023-10-2001:27:14

From reporting self-XSSes to improving browser security mechanisms - Michał Bentkowski

From reporting self-XSSes to improving browser security mechanisms - Michał Bentkowski

2023-09-0601:30:29

The key to succeed in bug bounty - NahamSec

The key to succeed in bug bounty - NahamSec

2023-07-2601:10:21

Road to Most Valuable Hacker and working while travelling the world - Yassine Aboukir

Road to Most Valuable Hacker and working while travelling the world - Yassine Aboukir

2023-06-2701:07:50

Security source code review expert - Shubham Shah

Security source code review expert - Shubham Shah

2023-05-2955:16

Inside the Mind of the TOP1 Facebook Bug Bounty Hunter - Youssef Sammouda

Inside the Mind of the TOP1 Facebook Bug Bounty Hunter - Youssef Sammouda

2023-05-0301:06:39

Bug bounty automation and scaling 0days - Michael Ness

Bug bounty automation and scaling 0days - Michael Ness

2023-03-0745:37

From zero to 6-digit bug bounty earnings in 1 year - Johan Carlsson

From zero to 6-digit bug bounty earnings in 1 year - Johan Carlsson

2023-01-2701:08:30

loading
Google Play
Download from Google Play
Castbox
Download from App Store
usUnited States
00:00
00:00
x

0.5x

0.8x

1.0x

1.25x

1.5x

2.0x

3.0x

Sleep Timer

Off

End of Episode

5 Minutes

10 Minutes

15 Minutes

30 Minutes

45 Minutes

60 Minutes

120 Minutes

Bug bounty tools that actually land bugs with Arthur Aires

Bug bounty tools that actually land bugs with Arthur Aires

Grzegorz Niedziela