The journey of finding and exploiting a bug in GitLab

Speaker

William Bowling (@vakzz) is a full time Software Developer and long time CTF player, based out of Australia, who recently started trying his hand at Bug Bounties in his free time. When not hacking, he likes to go walking with the family and playing little known sports such as underwater hockey.

Abstract

A short talk about how vakzz got started doing Bug Bounties and a look at the process he went through to find a critical issue in GitLab.

Video