InfoSec Journeys is a netcast series aimed at inspiring others to develop a career within Information Security through hearing from industry leaders discuss what it’s like to work, develop and progress within this rich, exciting and rewarding ecosystem. The series covers career insights from the breadth of the InfoSec spectrum; appealing to students, career-shifters and existing InfoSec professionals.
All content for InfoSec Journeys is the property of Ashley Pierre and is served directly from their servers
with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.
InfoSec Journeys is a netcast series aimed at inspiring others to develop a career within Information Security through hearing from industry leaders discuss what it’s like to work, develop and progress within this rich, exciting and rewarding ecosystem. The series covers career insights from the breadth of the InfoSec spectrum; appealing to students, career-shifters and existing InfoSec professionals.
A must watch for any aspiring Coders, Security Researchers and #BugBounty enthusiasts. We had the absolutely pleasure to interview @TomNomNom who earned the accolade of Most Valuable Hacker (MVH) during a #HackerOne live hacking event in London in 2019. The MVH club is highly exclusive, consisting of super-talented individuals who are able to find high-impact bugs in global household-name companies, help them understand complex attack-scenarios and also contribute back to the wider security community.
Tom has had a fascinating journey into the world of #InfoSec. Developing a career as a Software Engineer and training others how to write code and develop complex systems, whilst in his lunch hour hacking on his company's bug bounty program to help pay for his wedding. Fast forward to 2020, Tom now leads a team of Security Researchers at Detectify, who in turn help secure some of the worlds biggest organisations from cyber attack.
Tom is very humble, hugely insightful and very inspiring. He also has written some of the most popular tools used by the top Bug Bounty researchers, all of which you can find on his GitHub. He even drops tips on which ones he likes best, so check this out.
SHORTCUTS
==========
Intro - 00:33
Current Role at Detectify - 02:04
Translating Technical Information - 04:59
Explaining CORS - 09:23
Learning to Code - 12:40
Origins of Tom's Mindset - 19:40
Academia vs. Real World InfoSec - 23:56
Becoming a Trainer - 30:09
Hacking and Bug Bounty - 33:30
Getting Noticed by HackerOne - 42:25
Getting Invited to a HackerOne Live Event - 43:32
Dealing with Imposter Syndrome - 45:15
Developing a Profile in the Bug Bounty Community - 47:05
Being HackerOne's Most Valuable Hacker (MVH) - 48:35
Finding a $40,000 Bug and Splitting The Winnings - 52:40
Writing Tools for Bug Bounty Community - 54:45
Keeping the Output Simple - 58:38
Tom's Favourite Tool - 01:00:50
Replacing Meg with Comb and FFF - 01:04:50
What's Next for Tom - 01:06:04
USEFUL LINKS
============
https://github.com/tomnomnom
https://twitter.com/TomNomNom
GET MORE
=========
Join in the conversation at https://linkedin.com/company/infosec-...
HOSTS
======
InfoSec Journeys is brought to you by
Colin Hardy - https://twitter.com/cybercdh
Ashley Pierre - https://twitter.com/AshersPierre
THANKS FOR WATCHING!
=====================
If you like the video, please hit the THUMBS UP
If you loved it, please SUBSCRIBE for more content!
InfoSec Journeys
InfoSec Journeys is a netcast series aimed at inspiring others to develop a career within Information Security through hearing from industry leaders discuss what it’s like to work, develop and progress within this rich, exciting and rewarding ecosystem. The series covers career insights from the breadth of the InfoSec spectrum; appealing to students, career-shifters and existing InfoSec professionals.
