Who, What, Where, When, Wordlist by @TomNomNom

Практические атаки с использованием контрабанды HTTP-запросов от @defparam #NahamCon2020

What Should You Do After Recon?!

Damian Conway, "More Instantly Better Vim" - OSCON 2013

How to Differentiate Yourself as a Bug Bounty Hunter - Mathias Karlsson @avlidienbrunn

The Bug Hunter's Methodology v4.0 - Recon Edition by @jhaddix #NahamCon2020!

The Act of Balancing by @ChloeMessdaghi #NahamCon2020

Fireside Chat with TomNomNom 🔥

API Recon с Kiterunner — Hacker Toolbox

Бесплатный курс и методика разведки для охотников за ошибками

You've Got Pwned: Exploiting E-Mail Systems by @securinti #NahamCon2020!

How to Bug Bounty

Как устроен PHP 🐘: фундаментальное знание для инженеров

The Bug Hunter's Methodology - Application Analysis | Jason Haddix

albinowax - HTTP Desync Attacks: Smashing into the Cell Next Door - DEF CON 27 Conference

TryHackMe! Basic Penetration Testing

How the Best Hackers Learn Their Craft

Json Web Token Hacking - JWT jku&x5u = ❤️ by @snyff #NahamCon2020

Как взломать любой Wi-Fi (почти)

Cracking the Lens: Targeting HTTP's Hidden Attack-Surface

Finding Your First Bug: Getting Started on a Target (Part 1)