Questions that are often asked by beginners


What will you advise to a newcomer in the field of information security?

Read books, articles and practice a lot.


What resources to explore?

Web hacking 101 (https://bit.ly/2LfKbCf), Web Application Hacker’s Handbook (https://bit.ly/1NBHGYT), OWASP, vulnerability reports on the Bug Bounty "HackerOne".


Where to practice?

On vulnerability testing web-sites, CTF programs (this advice under a big question, since in half the cases CTF is useless and has nothing to do with real life).


How better to write a security report?

On the bug bounty platforms there are many examples, also in most Bug Bounty programs there are templates for which it is not difficult to send even the most difficult described vulnerability.


en_USEnglish
ru_RURussian en_USEnglish