$100k Hacking Prize - Security Bugs in Google Cloud Platform

$100k Hacking Prize - Security Bugs in Google Cloud Platform

Channel:
United States LiveOverflow
Subscribers:
920,000
Published on ● Video Link: https://www.youtube.com/watch?v=J2icGMocQds


Duration: 17:22
54,816 views
1,604

This video is sponsored by Google.
In 2019, Google announced the GCP Prize. 100.000$ for the best bug bounty report for the Google Cloud Platform. Today we will have a look at the nominations!

Blog: https://security.googleblog.com/2020/03/announcing-our-first-gcp-vrp-prize.html

Nominations:
[Obmi] The File uploading CSRF in Google Cloud Shell Editor:
https://obmiblog.blogspot.com/2019/12/gcp-5k-file-uploading-csrf.html
[Wouter] 4 Google Cloud Shell bugs explained:
https://offensi.com/2019/12/16/4-google-cloud-shell-bugs-explained-introduction/
[Psi] CSWSH vulnerability in Google Cloud Shell’s code editor:
https://xn--9xa.fun/i/yvpMj

Free GCP tier: https://cloud.google.com/free/docs/gcp-free-tier
Google Security Blog: https://security.googleblog.com/
GCP Price Blog Post: https://security.googleblog.com/2019/08/awarding-google-cloud-vulnerability.html
Video with Wouter about Cloud Shell: https://www.youtube.com/watch?v=E-P9USG6kLs

-=[ πŸ”΄ Stuff I use ]=-

β†’ Microphone:* https://geni.us/ntg3b
β†’ Graphics tablet:* https://geni.us/wacom-intuos
β†’ Camera#1 for streaming:* https://geni.us/sony-camera
β†’ Lens for streaming:* https://geni.us/sony-lense
β†’ Connect Camera#1 to PC:* https://geni.us/cam-link
β†’ Keyboard:* https://geni.us/mech-keyboard
β†’ Old Microphone:* https://geni.us/mic-at2020usb

US Store Front:* https://www.amazon.com/shop/liveoverflow

-=[ ❀️ Support ]=-

β†’ per Video: https://www.patreon.com/join/liveoverflow
β†’ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join

-=[ πŸ• Social ]=-

β†’ Twitter: https://twitter.com/LiveOverflow/
β†’ Website: https://liveoverflow.com/
β†’ Subreddit: https://www.reddit.com/r/LiveOverflow/
β†’ Facebook: https://www.facebook.com/LiveOverflow/

-=[ πŸ“„ P.S. ]=-

All links with "*" are affiliate links.
LiveOverflow / Security Flag GmbH is part of the Amazon Affiliate Partner Programm.



Other Videos By LiveOverflow


2020-05-31CTFs are AWESOME!
2020-05-31CTFs are TERRIBLE!
2020-05-11Why MissingNo Multiplies Items!
2020-05-02Researching MissingNo Glitch in Pokemon
2020-04-24DLL Injection to Create a Fly Hack - Pwn Adventure 3
2020-04-15Dissecting Pokemon Red Savegame
2020-04-06Reverse Engineered old Compression Algorithm for Frogger
2020-04-01Security.txt - My Awesome Invention for Security Researchers
2020-03-25Reverse Engineering Introduction Walkthrough - intro_rev/rev1 CSCG 2020
2020-03-18Mindmapping a Pwnable Challenge - intro_pwn/pwn1 CSCG 2020
2020-03-11$100k Hacking Prize - Security Bugs in Google Cloud Platform
2020-03-04We are Organizing a CTF! - CSCG Announcement
2020-02-29Solving Pwnable CTF Challenge With Docker Workflow
2020-02-26Deepdive Containers - Kernel Sources and nsenter
2020-02-21How Docker Works - Intro to Namespaces
2020-02-14Introduction to Docker for CTFs
2019-12-24The End Of Haxember - See You In 2020!
2019-12-23Hacking My Instagram Account
2019-12-22Fiber Tapping - Monitoring Fiber Optic Connections
2019-12-21Race Condition Trick /proc/self/fd
2019-12-20Traveling to London for Escal8 and Google CTF


Tags:
Live Overflow
liveoverflow
hacking tutorial
how to hack
exploit tutorial
Google Cloud Platform
GCP
bug bounty
bugbounty
bug hunting
bug hunters
writeup
writeups
write-up
csrf
xss
cswsh
cross-site
request forgery
websockets
websocket
wss
https
obmi
wtm
wouter
psi
hall of fame
rce
file upload
multipart
javascript
fetch
xmlhttprequest