OWASP AppSec Europe 2015

Distilling 30,000 submissions down into lessons for bounty providers and testers alike, the presenter takes a data- and anecdote- driven approach bug bounties. Ever wondered what type of bugs get submitted to a bug bounty? Every pondered what types of bugs get rewarded? What happens if you submit a bug that's out of scope? Join us for a fun journey through the bug bounty world and walk away armed with insider Attendees can expect to walk away giggling at ridiculous things that get submitted to bug bounties, and, at the same time, armed with a set of knowledge that provides them with an edge on the next guy. knowledge.

Taking a story-riddled and data-driven approach to bug bounties,
we'll address the following:
- what sort of submissions are being made
- what sort of submissions are being rewarded
- how much and how often are they being rewarded
- how can you find more bugs, and get paid, more quickly