On December 22, 2015, Twitter paid over $14,000 to ethical hackers for exposing vulnerabilities. This wasn’t a shakedown. Sites like Twitter, Shopify, Dropbox, Yahoo, Google, Facebook and more, ask ethical hackers to report security bugs and pay them. This book will teach you how you can get started with ethical hacking.

With a Foreword written by HackerOne Co-Founders Michiel Prins and Jobert Abma, Web Hacking 101 is about the ethical exploration of software for security issues but learning to hack isn’t always easy. With few exceptions, existing books are overly technical, only dedicate a single chapter to website vulnerabilies or don’t include any real world examples. This book is different.

Using publicly disclosed vulnerabilities, Web Hacking 101 explains common web vulnerabilities and will show you how to start finding vulnerabilities and collecting bounties. With over 30 examples, the book covers topics like:

Web Hacking 101: How to Make Money Hacking Ethically

• HTML Injection
• Cross site scripting (XSS)
• Cross site request forgery (CSRF)
• Open Redirects
• Remote Code Execution (RCE)
• Application Logic
• and more…

Each example includes a classification of the attack, a report link, the bounty paid, easy to understand description and key takeaways. After reading this book, your eyes will be opened to the wide array of vulnerabilities that exist and you’ll likely never look at a website or API the same way.