Step 2: Creating environment for bug bounty
Welcome to the second post of the 6M Challenge of Bug Bounty edition where you will learn how to create an environment for a bug bounty. A smooth environment is the very basic need to start a big bounty.
First of all join us on the discord channel, where we have created different sub-channel for 6M participants to solve their doubts and have an interaction with the community. Go to #self-roles and tap on that animated heart to join the 6M sub-channel. Link: https://discord.gg/CZuS9Fh
Now I hope that you have finished the tasks given in the previous post, i.e.:
- Join the HackerOne and BugCrowd with a cool hacker name, or your original name
- Learn HTTP and Javascript from https://w3schools.com
- Learn Basics of Networking, especially OSI Model
So we were starting up our career in bug bounty and the next part is- Tools. Instead of installing particular tools on a Windows PC, it’s preferred to install Kali Linux. It’s more convenient to hack on Kali Linux.
how to Install Kali linux in your environment?
Either you can install Kali Linux as the principal OS on your PC, or you can install it on Virtual Machine within your Windows PC. I’d suggest, installing it on a virtual machine to have freedom with your own system also.
NOTE: You’ll have to sacrifice windows functions, like gaming, photoshop, or any windows-only application if you install Kali as the main OS.
Use this tutorial if you want to install as principal OS – https://www.kali.org/docs/installation/hard-disk-install/
Installing on virtual machine
Here are the steps to install Kali Linux on Virtual Machine:
- Download and Install Oracle VirtualBox from here- https://download.virtualbox.org/virtualbox/6.1.26/VirtualBox-6.1.26-145957-Win.exe
- Now download Kali VirtualBox file from – https://images.kali.org/virtual-images/kali-linux-2021.2-virtualbox-amd64.ova (If you’ve 64 bit PC) and this if you’ve 32 bit PC download from here- https://images.kali.org/virtual-images/kali-linux-2021.2-virtualbox-i386.ova
- Download and install this VirtualBox extension to avoid any errors – https://download.virtualbox.org/virtualbox/6.1.26/Oracle_VM_VirtualBox_Extension_Pack-6.1.26.vbox-extpack
- Start VirtualBox , it will ask for a virtual machine image file, select your newly downloaded Kali file (in step 2) and proceed with all the default settings.
Soon, Kali Linux will be installed on your Virtual machine…
Now, double-click on the icon of Kali on the VirtualBox app to start Kali. It will ask for a username and password. Enter “kali” in both places.
Bug Bounty: learn about encoding
Every character is encoded according to the rules of a language or system, for example- The capital letter “A” is written as 01000001 in binary code. Because this is what the computer understands, similarly there are several types of encodings – like URL, HTML, Hex, Unicode, etc. meant for their specific purposes and specific systems.
Read this article and get an understanding of encoding- https://skorks.com/2009/08/different-types-of-encoding-schemes-a-primer/
Well, this is all for today’s post. Hope you have learned the concepts told in the previous post. If you haven’t, don’t worry, you have time for this week also because the tasks for this week are so simple.
tasks to be completed:
- Installing Kali Linux on a virtual machine or as a principal OS(it’s your choice)
- Learn about encoding from the link given above
- Complete all the pending learnings.