Bug Bounty RoadMap Feedback


Hello everyone,

I'm contemplating a career switch to cybersecurity, particularly starting with bug bounty programs. I've outlined a roadmap for myself and would appreciate feedback or alternative perspectives to refine it. If bug bounty programs don't suit me, I'm considering exploring other roles within the Red Team or delving into the skillsets required for the Blue Team. Thanks in advance!

1. My initial plan involves starting with Heath Adams' Practical Ethical Hacking - The Complete Course to establish a strong foundation. I'm a hands-on learner, which is why I opted for this course instead of continuing with the "Getting Started Page" on HackerOne. Additionally, I decided against diving straight into Hack the Box due to the considerable prerequisite knowledge required, which can be overwhelming.
2. Upon completing the course, I intend to explore TryHackMe. Since I'm unfamiliar with it, I'm unsure which rooms are best suited for bug bounty practice. I'm considering the "Red Teaming" room as a potential starting point. It seems like a logical progression since it offers less guidance, requiring individuals to problem-solve independently, yet it's not overly challenging. If skipping this step and proceeding directly to Hack the Box is more advisable, please advise!
3. Finally, I plan to participate in the Hacker101 CTF. I believe that the combination of theoretical knowledge from Heath's course and practical experience gained from TryHackMe will adequately prepare me for these challenges.

Following this, I aim to explore other online CTFs gradually and begin identifying bugs through platforms like HackerOne.

For context, here's a bit about me:

I'm currently an application developer with a consulting company.
I'm proficient in Java, JavaScript, and have some experience with Python.

Thank you for your guidance!


TLDR:

Considering a career shift to cybersecurity, particularly bug bounty programs, I've outlined a roadmap starting with Heath Adams' course for a solid foundation, followed by TryHackMe to gain hands-on experience, and concluding with Hacker101 CTF for practical skill refinement. Seeking feedback. Current background includes experience as an application developer with proficiency in Java, JavaScript, and some Python.

https://redd.it/1cevrpt
@r_bugbounty

R_bugbounty

Bug Bounty RoadMap Feedback


Hello everyone,

I'm contemplating a career switch to cybersecurity, particularly starting with bug bounty programs. I've outlined a roadmap for myself and would appreciate feedback or alternative perspectives to refine it. If bug bounty programs don't suit me, I'm considering exploring other roles within the Red Team or delving into the skillsets required for the Blue Team. Thanks in advance!

1. My initial plan involves starting with Heath Adams' Practical Ethical Hacking - The Complete Course to establish a strong foundation. I'm a hands-on learner, which is why I opted for this course instead of continuing with the "Getting Started Page" on HackerOne. Additionally, I decided against diving straight into Hack the Box due to the considerable prerequisite knowledge required, which can be overwhelming.
2. Upon completing the course, I intend to explore TryHackMe. Since I'm unfamiliar with it, I'm unsure which rooms are best suited for bug bounty practice. I'm considering the "Red Teaming" room as a potential starting point. It seems like a logical progression since it offers less guidance, requiring individuals to problem-solve independently, yet it's not overly challenging. If skipping this step and proceeding directly to Hack the Box is more advisable, please advise!
3. Finally, I plan to participate in the Hacker101 CTF. I believe that the combination of theoretical knowledge from Heath's course and practical experience gained from TryHackMe will adequately prepare me for these challenges.

Following this, I aim to explore other online CTFs gradually and begin identifying bugs through platforms like HackerOne.

For context, here's a bit about me:

I'm currently an application developer with a consulting company.
I'm proficient in Java, JavaScript, and have some experience with Python.

Thank you for your guidance!


TLDR:

Considering a career shift to cybersecurity, particularly bug bounty programs, I've outlined a roadmap starting with Heath Adams' course for a solid foundation, followed by TryHackMe to gain hands-on experience, and concluding with Hacker101 CTF for practical skill refinement. Seeking feedback. Current background includes experience as an application developer with proficiency in Java, JavaScript, and some Python.

https://redd.it/1cevrpt
@r_bugbounty

Udemy

Online Courses - Learn Anything, On Your Schedule | Udemy

Udemy is an online learning and teaching marketplace with over 213,000 courses and 62 million students. Learn programming, marketing, data science and more.

hottg.com/r_bugbounty/4134

4 viewsApr 28 at 03:22