Episode 23: Hacker Loadouts
Critical Thinking - Bug Bounty Podcast15 Juni 2023

Episode 23: Hacker Loadouts

Episode 23: In this episode of Critical Thinking - Bug Bounty Podcast, we delve into a different aspect of hardware - Our personal loadouts. We go through the equipment and gear we use to get our jobs done, and share stories about why we picked what we have. We also touch on live hacking events, the growing acceptance of white hat hacking, and some pretty cool news going on in the hacker world. Don't miss this episode packed with tips and strategies for both beginners and seasoned hackers alike!

Follow us on twitter at: @ctbbpodcast

We're new to this podcasting thing, so feel free to send us any feedback here: info@criticalthinkingpodcast.io

Shoutout to YTCracker for the awesome intro music!

------ Links ------

Follow your hosts Rhynorater & Teknogeek on twitter:

https://twitter.com/0xteknogeek

https://twitter.com/rhynorater

Blog post on hacking root EPP servers

https://hackcompute.com/hacking-epp-servers/

Behind this Website:

https://github.com/jonkeegan/behind-this-website

Tweet about vRealize Network Insight: https://summoning.team/blog/vmware-vrealize-network-insight-rce-cve-2023-20887/

Zoom's new vulnerability impact scoring system:

https://viss.zoom.com/specifications

Uplift Desks

https://www.upliftdesk.com/

Synergy

https://symless.com/synergy

Ahnestly chair reviews:

https://www.youtube.com/c/Ahnestly

Our producer’s new audio drama ‘Homicide at Heavensgate’

https://link.sentinelstudios.net/homicide

Timestamps:

(00:00:00) Introduction

(00:02:28) Navigating hacking events and imposter syndrome

(00:06:30) Blog post on hacking root EPP servers

(00:10:01) The growing acceptance of white-hat hacking

(00:12:25) Finding Website Owners and Contact Information

(00:16:45) VMware vRealize Network Insight CVEs and nginx reverse proxy bypass

(00:21:30) Zoom's new vulnerability impact scoring system

(00:27:24) The Importance of Analyzing Systemic Problems in Black Box Testing

(00:30:40) Documentation, Vulnerable by Design, and acceptable risk

(Start of main content)

(00:34:37) Leveling up your Hacker Setup

(00:37:13) The Importance of your body

(00:41:30) Investing in ergonomic equipment for computer work

(00:42:27) Standing Desks: Uplift Desk and DIY standing desk options

(00:46:00) Portable Tables: Flexible Workspace Solutions

(00:47:30) Monitor Setup

(00:54:40) Synergy: One keyboard and mouse across multiple devices

(00:57:20) Capture Card: Using it as a software display

(00:58:58) Keyboards and mice

(01:03:27) Using a Chromebook for lightweight hacking

(01:08:57) Chair Reviews: The Niche World of High-End Chairs

Avsnitt(161)

Episode 161: Cross-Consumer Attacks & DTMF Tone Exfil

Episode 161: Cross-Consumer Attacks & DTMF Tone Exfil

Episode 161: In this episode of Critical Thinking - Bug Bounty Podcast Justin Gives us some quick hits regarding CSRF and Cross Consumer Attacks, and also touches on some breaking questions surroundin...

12 Feb 24min

Episode 160: Cloudflare Zero-days & Mail Unsubscribing for XSS

Episode 160: Cloudflare Zero-days & Mail Unsubscribing for XSS

Episode 160: In this episode of Critical Thinking - Bug Bounty Podcast Joseph and Brandyn. Chat through some news, Including a Cloudflare Zero-day, Turning List-Unsubscribe into an SSRF/XSS Gadget, & ...

5 Feb 45min

Episode 159: Avoiding Downgrades on Google Cloud VRP with Cote and Darby Hopkins

Episode 159: Avoiding Downgrades on Google Cloud VRP with Cote and Darby Hopkins

Episode 159: In this episode of Critical Thinking - Bug Bounty Podcast we sit down with the Google Cloud VRP Team to deep-dive policy and reward changes, what the panel process looks like, and how to ...

29 Jan 1h 46min

Episode 158: 10hr Marathon Hack-Along Recap + $300k Client-side Bugs

Episode 158: 10hr Marathon Hack-Along Recap + $300k Client-side Bugs

Episode 158: In this episode of Critical Thinking - Bug Bounty Podcast we talk about our personal takeaways from the CTBB Charity Hackalong, and then break down some InsertScript POCs, what a $55,000 ...

22 Jan 58min

Episode 157: Crushing Pwn2Own & H1 with Kernel Driver Exploits

Episode 157: Crushing Pwn2Own & H1 with Kernel Driver Exploits

Episode 157: In this episode of Critical Thinking - Bug Bounty Podcast we’re joined by Hypr to talk about hacking Mediatek and his experiences with HackerOne and Pwn2Own Ecosystems.Follow us on twitte...

15 Jan 1h 34min

Episode 156: Chill AMA from bugbounty.forum

Episode 156: Chill AMA from bugbounty.forum

Episode 156: In this episode of Critical Thinking - Bug Bounty Podcast we answer some fantastic questions from over at bugbounty.forumFollow us on twitter at: https://x.com/ctbbpodcastGot any ideas an...

8 Jan 1h 23min

Episode 155: 2025 Hacker Stats & 2026 Goals

Episode 155: 2025 Hacker Stats & 2026 Goals

Episode 155: In this episode of Critical Thinking - Bug Bounty Podcast Justin, Joseph, and Brandyn reflect on last year of Bug Bounty, and list their goals and predictions for what 2026 holds.Follow u...

1 Jan 1h 32min

Episode 154: Starting a Pentesting Company on Top of Bug Bounty

Episode 154: Starting a Pentesting Company on Top of Bug Bounty

Episode 154: In this episode of Critical Thinking - Bug Bounty Podcast Joseph and Brandyn talk through the transition from Bug Bounty hunting to Pentesting. We cover diversifying income streams, the c...

25 Dec 202541min

Populärt inom Teknik

uppgang-och-fall
market-makers
elbilsveckan
bilar-med-sladd
rss-elektrikerpodden
skogsforum-podcast
rss-veckans-ai
rss-laddstationen-med-elbilen-i-sverige
natets-morka-sida
bli-saker-podden
bosse-bildoktorn-och-hasse-p
rss-en-ai-till-kaffet
rss-uppgang-och-fall
rss-ai-med-katarina-gospic-och-viggo-cavling
rss-technokratin
developers-mer-an-bara-kod
rss-it-sakerhetspodden
rss-fabriken-2
rss-digitala-influencer-podden
garagehang