[teacup]

I'm a student, but not a bug bounty hunter by any means. I've come across a few security bugs, nothing huge, and normally just send emails to the company with a quick note about what I've found. Every once in a while it leads to a little cash or so. I don't intentionally look for bugs, it just so happens that I enjoy poking other things to see what happens. The biggest bug I ever found was a wee-little searchbar error in LinekdIn (If typed a very specific gibberish string into the searchbar, you could crash Safari. To this day I'm still not exactly sure why), and instead of money, the guy offered me a job.

Am I student bug bounty hunter? No. I'm a student that sometimes breaks things and tells people when I do.

[trill_daddy]

Hey, how did you get into poking things til they break? I just got into a comp sci program and i'm clueless about all of this.

[teacup]

Poke things.

Seriously though, I started because I wanted to secure my server. So I looked at how other people secure better severs. Sometimes I looked so deep I found errors, normally little things like leaving a default account set up, or leaving FTP wide open.

If you're looking for some generic response like "Just go to http://hunt4.bugs", I don't think one exists.

[lukezli]

awesome, congrats on your finds! would you be willing to answer a few questions via email or something? would really appreciate it.

[teacup]

yeah, sure.

[lukezli]

thanks a lot! Do you mind dropping me a line at me email found at my profile (https://news.ycombinator.com/user?id=lukezli)? I can't find your email unfortunately.

Really appreciate your help, questions won't take too long!