.png)
4 years ago
205 BOOK THIS SPACE FOR AD
ARTICLE ADHow I made 200 Dollars in 5 minutes, The story of really best 5 minutes of my life.
Hey, There I am Deepak Ghengat a full-time Bug Bounty Hunter and tech-savvy, Firstly I really want to thanks my readers and Bug Bounty Platforms to appreciate our talent. So the story Start Here.
I was looking for the program that suits me and I got one I was looking for, from there my love story start. so let’s consider the target name is xyz.com. I can’t disclose the target name obviously bug hunter and bug bounty platform policy. so the minimum payout for the program is a minimum of 200 $ so I was lucky that got that program.
Same as every program information gathering was my first step if you don't know about information gathering click here. Simultaneously I was also looking for interesting endpoints in the main domain also knowns as the directory enumeration. After some time within 5 minutes, the lovely moment come I got the endpoint I was looking for from there the lovely turns came. The endpoint I got was /wp-JSON/ at that moment my mind tells me man there will be something you should look after it.
Immediately I googled the wp-json HackerOne and I got one report. After that, I tried to implement the same scenario in my program and bingo. What I got is this xyz.com/busniess/wp-json/wp/v2/users/. Here is some list of reports I prefer for proof of concept link. I am really thankful to HackerOne.
I report it to the bug crowd and They gave me 200 $ bounty and I am Indian so that bounty is converted to 14500 rs which is enough to buy some good stuff and much more. I had a lots of fun with that money.
Hope you like it and love it for a more practical explanation.
Happy Hunting
Bengali (Bangladesh) · 
English (United States) ·