Hello c\u00e1c b\u1ea1n, n\u1ebfu \u0111\u00e3 \u0111\u1ecdc \u0111\u01b0\u1ee3c nh\u1eefng d\u00f2ng n\u00e0y ngh\u0129a l\u00e0 b\u1ea1n c\u00f3 quan t\u00e2m \u0111\u1ebfn vi\u1ec7c tr\u1edf th\u00e0nh 1 pentester \u0111\u00fang kh\u00f4ng? Ok, v\u1edbi g\u1ea7n 5 n\u0103m kinh nghi\u1ec7m th\u1ef1c ti\u1ec5n v\u00e0 50 n\u0103m kinh nghi\u1ec7m OT, hy v\u1ecdng m\u00ecnh c\u00f3 th\u1ec3 chia s\u1ebd cho c\u00e1c b\u1ea1n h\u00ecnh dung \u0111\u01b0\u1ee3c b\u1ee9c tranh v\u1ec1 ng\u00e0nh n\u00e0y \ud83d\ude00 <\/p>\n\n\n\n
Nh\u1eafc \u0111\u1ebfn pentest th\u00ec nhi\u1ec1u b\u1ea1n s\u1ebd ngh\u0129 ngay \u0111\u1ebfn Web Exploit, th\u1eadt ra pentest l\u00e0 kh\u00e1i ni\u1ec7m chung, v\u00e0 kh\u00f4ng c\u00f3 gi\u1edbi h\u1ea1n, b\u1ea1n c\u00f3 th\u1ec3 pentest web, Mobile, c\u00e1c thi\u1ebft b\u1ecb IoT, c\u00e1c h\u1ec7 \u0111i\u1ec1u h\u00e0nh t\u1ef1 ch\u1ebf (nh\u01b0 c\u1ee7a c\u00e1c kiosk ATM ng\u00e2n h\u00e0ng), thi\u1ebft b\u1ecb ph\u1ea7n c\u1ee9ng khi \u0111\u01b0\u1ee3c y\u00eau c\u1ea7u.<\/p>\n\n\n\n
G\u00f3i g\u1ecdn trong b\u00e0i n\u00e0y th\u00ec m\u00ecnh ch\u1ec9 n\u00f3i v\u00e0i m\u1ea3ng th\u00f4i, t\u1ea1i v\u00ec m\u00ecnh c\u0169ng ch\u1ec9 bi\u1ebft c\u00f3 ch\u1eebng \u0111\u1ea5y, tr\u00ean tinh th\u1ea7n \u0111\u1ee5ng \u0111\u00e2u h\u1ecdc \u0111\u1ea5y m\u00e0.<\/p>\n\n\n\n
Nh\u1eefng ng\u00e0y c\u00f2n th\u01a1 <\/span><\/strong><\/p><\/blockquote>\n\n\n\n
M\u00ecnh b\u1eaft \u0111\u1ea7u “pentest” sau 2 n\u0103m ch\u01a1i CTF m\u1ea3ng web v\u00e0 mobile<\/p>\n\n\n\n
V\u00e0o t\u1ea7m n\u0103m 2015, m\u00ecnh b\u1eaft \u0111\u1ea7u th\u1ef1c t\u1eadp trong t\u1eadp \u0111o\u00e0n “H” \u1edf qu\u1eadn 7 v\u00e0 d\u1ef1 \u00e1n \u0111\u1ea7u ti\u00ean m\u00ecnh \u0111\u01b0\u1ee3c giao l\u00e0 target 1 c\u00e1i CMS =)) \u0111\u01a1 ng\u01b0\u1eddi, m\u00f2 \u0111\u01b0\u1ee3c v\u00e0i c\u00e1i XSS nh\u01b0ng kh\u00f4ng c\u00f3 “ph\u00ea” nh\u01b0 l\u00fac ch\u01a1i CTF ra flag, l\u00fac n\u00e0y m\u00ecnh nh\u1eadn ra pentest v\u00e0 CTF l\u00e0 2 l\u0129nh v\u1ef1c kh\u00e1c nhau, c\u00f3 th\u1ec3 b\u1ed5 tr\u1ee3 cho nhau, nh\u01b0ng v\u1ec1 c\u01a1 b\u1ea3n v\u1eabn c\u1ee9 l\u00e0 kh\u00e1c nhau.<\/p>\n\n\n\n
CTF l\u00e0 g\u00f3i g\u1ecdn m\u1ed9t ho\u1eb7c v\u00e0i l\u1ed7i trong 1 th\u1eed th\u00e1ch, l\u1eddi gi\u1ea3i lu\u00f4n \u1edf \u0111\u00f3, ch\u1ec9 ch\u1edd b\u1ea1n t\u00ecm ra, n\u00f3 thi\u00ean v\u1ec1 h\u01b0\u1edbng t\u1eadn d\u1ee5ng l\u1ed7i ho\u1eb7c k\u1ebft h\u1ee3p c\u00e1c l\u1ed7i l\u1ea1i \u0111\u1ec3 \u0111\u1ea1t \u0111\u01b0\u1ee3c 1 c\u00e1i g\u00ec \u0111\u00f3 cao h\u01a1n nh\u01b0 l\u00e0 flag.
Ng\u01b0\u1ee3c l\u1ea1i, v\u1ec1 pentest th\u00ec b\u1ea1n c\u1ea7n t\u00ecm nhi\u1ec1u l\u1ed7i c\u00e0ng t\u1ed1t, c\u00f3 nh\u1eefng l\u1ed7i m\u00e0 CTF kh\u00f4ng th\u1ec3 m\u00f4 ph\u1ecfng l\u1ea1i (v\u00ec m\u1ea5y l\u1ed7i n\u00e0y kh\u00f4ng l\u1ea5y flag \u0111\u01b0\u1ee3c), c\u00f3 th\u1ec3 t\u1eadn d\u1ee5ng l\u1ed7i t\u00ecm \u0111\u01b0\u1ee3c \u0111\u1ec3 x\u00e2m nh\u1eadp s\u00e2u v\u00e0o h\u1ec7 th\u1ed1ng t\u00f9y y\u00eau c\u1ea7u kh\u00e1ch h\u00e0ng, nh\u01b0ng m\u00ecnh th\u1ea5y \u0111a ph\u1ea7n d\u1eebng l\u1ea1i \u1edf vi\u1ec7c x\u00e1c \u0111\u1ecbnh l\u1ed7i th\u00f4i.<\/p>\n\n\n\nOk, bi\u1ebft b\u1ea3n ch\u1ea5t n\u00f3 r\u1ed3i th\u00ec b\u1eaft \u0111\u1ea7u r\u00e8n luy\u1ec7n th\u00f4i, sau \u0111\u00e2y l\u00e0 nh\u1eefng g\u00ec m\u00ecnh \u0111\u00e3 l\u00e0m trong giai \u0111o\u1ea1n n\u00e0y:<\/strong><\/p>\n\n\n\n
<\/p>\n\n\n\n
<\/p>\n\n\n\n
Ti\u1ebfp t\u1ee5c ch\u01a1i CTF v\u00e0 c\u00e1c trang wargame<\/span><\/strong><\/h3>\n\n\n\n
Vi\u1ec7c ch\u01a1i CTF gi\u00fap m\u00ecnh r\u00e8n \u0111\u01b0\u1ee3c 1 t\u01b0 duy logic v\u00e0 kh\u1ea3 n\u0103ng keep up v\u1edbi suy ngh\u0129 c\u1ee7a c\u00e1c hacker kh\u00e1c, v\u00ec m\u1ed7i b\u00e0i CTF l\u00e0 m\u1ed7i b\u00e0i h\u1ecdc m\u00e0 t\u00e1c gi\u1ea3 \u0111\u1eb7t t\u00e2m huy\u1ebft v\u00e0o \u0111\u1ec3 d\u1ea1y ch\u00fang ta (tr\u1eeb m\u1ea5y c\u00e1i CTF \u0111o\u00e1n \u0111o\u00e1n t\u00e0o lao ra nh\u00e9, ch\u1ecdn m\u1eb7t g\u1eedi v\u00e0ng), c\u00f3 th\u1ec3 l\u00e0 m\u1ed9t d\u1ea1ng l\u1ed7i m\u1edbi, m\u1ed9t ki\u1ec3u t\u1ea5n c\u00f4ng m\u1edbi, ho\u1eb7c l\u00e0 t\u01b0 duy k\u1ebft h\u1ee3p c\u00e1c l\u1ed7i l\u1ea1i v\u1edbi nhau.<\/p>\n\n\n\n
Khi \u0111i pentest s\u1ebd c\u00f3 3 ki\u1ec3u: Black box, Grey box v\u00e0 White box<\/strong><\/p>\n\n\n\n
\u0110\u1ecbnh ngh\u0129a chu\u1ea9n nh\u1eefng c\u00e1i n\u00e0y th\u00ec m\u00ecnh s\u1ebd kh\u00f4ng b\u00e0n, nh\u01b0ng n\u00f3 \u0111\u00f4i khi s\u1ebd linh ho\u1ea1t v\u00e0 bi\u1ebfn t\u01b0\u1edbng m\u1ed9t t\u00ed, v\u00ed d\u1ee5 nh\u01b0 \u0111\u1ecbnh ngh\u0129a c\u1ee7a m\u00ecnh v\u00e0 c\u00e1c kh\u00e1ch h\u00e0ng th\u01b0\u1eddng nh\u01b0 n\u00e0y:
– Black box l\u00e0 t\u1ea5n c\u00f4ng nh\u01b0 1 hacker, b\u1ea1n ph\u1ea3i t\u1ef1 x\u1eed m\u1ecdi th\u1ee9
– Grey box c\u0169ng l\u00e0 t\u1ea5n c\u00f4ng, nh\u01b0ng \u0111\u01b0\u1ee3c gi\u00fap \u0111\u1ee1 t\u1eeb kh\u00e1ch h\u00e0ng nh\u01b0 g\u1ee1 m\u1ea5y c\u00e1i web app firewall ra r\u1ed3i m\u1edbi t\u1ea5n c\u00f4ng
– White box l\u00e0 cho lu\u00f4n source ng\u1ed3i \u0111\u1ecdc<\/p>\n\n\n\nKh\u1ea3 n\u0103ng r\u1ea5t r\u1ea5t r\u1ea5t cao l\u00e0 b\u1ea1n s\u1ebd ph\u1ea3i l\u00e0m Black box, v\u00ec kh\u00e1ch h\u00e0ng th\u00edch th\u1ebf, ngh\u0129a l\u00e0 b\u1ea1n s\u1ebd ph\u1ea3i g\u1eb7p m\u1ea5y c\u00e1i g\u1ecdi l\u00e0 Web App Firewall (WAF), l\u00fac n\u00e0y b\u1ea1n c\u1ea7n k\u0129 n\u0103ng “BYPASS”, v\u00e0 CTF s\u1ebd d\u1ea1y b\u1ea1n k\u0129 n\u0103ng \u0111\u00f3.<\/p>\n\n\n\n
<\/p>\n\n\n\n
<\/p>\n\n\n\n
T\u1eadp ch\u01a1i bug bounty<\/span><\/strong><\/h3>\n\n\n\n
Bug Bounty l\u00e0 m\u1ed9t m\u00f4i tr\u01b0\u1eddng l\u00fd t\u01b0\u1edfng d\u00e0nh cho c\u00e1c b\u1ea1n t\u1eadp l\u00e0m pentester, \u1edf \u0111\u00e2y b\u1ea1n c\u00f3 th\u1ec3 v\u1eeba r\u00e8n k\u0129 n\u0103ng, v\u1eeba ki\u1ebfm ti\u1ec1n m\u1ed9t c\u00e1ch h\u1ee3p ph\u00e1p, c\u00f3 ti\u1ebfng l\u1ea1i c\u00f2n c\u00f3 mi\u1ebfng.<\/p>\n\n\n\n
B\u1ea1n c\u00f3 th\u1ec3 ngh\u0129 n\u00f3 kh\u00f3, nh\u01b0ng th\u1ef1c t\u1ebf v\u1eabn c\u00f3 nh\u1eefng bug d\u1ea1ng low-hanging fruit nh\u01b0 XSS \u0111\u01b0\u1ee3c report h\u00e0ng ng\u00e0y, n\u1ebfu XSS v\u1eabn c\u00f2n kh\u00f3 v\u1edbi b\u1ea1n th\u00ec m\u00ecnh ngh\u0129 b\u1ea1n n\u00ean suy ngh\u0129 l\u1ea1i v\u1ec1 vi\u1ec7c b\u1ea1n c\u00f3 h\u1ee3p v\u1edbi con \u0111\u01b0\u1eddng n\u00e0y kh\u00f4ng.
C\u00f3 th\u1ec3 b\u1ea1n s\u1ebd kh\u00f4ng t\u00ecm \u0111\u01b0\u1ee3c bug n\u00e0o, ho\u1eb7c b\u1ecb \u0111\u00fap qu\u00e1 nhi\u1ec1u, nh\u01b0ng sau t\u1ea5t c\u1ea3, b\u1ea1n s\u1ebd c\u00f3 \u0111\u01b0\u1ee3c th\u1ee9 r\u1ea5t quan tr\u1ecdng v\u1edbi m\u1ed9t pentester: “KINH NGHI\u1ec6M”, bi\u1ebft ph\u1ea3i l\u00e0m g\u00ec khi nh\u00ecn v\u00e0o 1 website, kh\u00f4ng c\u00f3 c\u00e1ch h\u1ecdc n\u00e0o t\u1ed1t h\u01a1n th\u1ef1c h\u00e0nh \ud83d\ude42<\/strong><\/p>\n\n\n\n<\/p>\n\n\n\n
<\/p>\n\n\n\n
\u0110\u1ecdc s\u00e1ch<\/span><\/strong><\/h3>\n\n\n\n
\u0110\u1ec3 t\u00ecm \u0111\u01b0\u1ee3c nhi\u1ec1u d\u1ea1ng l\u1ed7i, vi\u1ec7c \u0111\u1ea7u ti\u00ean c\u1ee7a b\u1ea1n l\u00e0 ph\u1ea3i bi\u1ebft l\u1ed7i \u0111\u00f3 l\u00e0 g\u00ec, c\u00f3 r\u1ea5t nhi\u1ec1u c\u00e1ch nh\u01b0 tham gia wargame, ch\u01a1i CTF, v\u00e0 t\u1ea5t nhi\u00ean l\u00e0 \u0111\u1ecdc s\u00e1ch, s\u00e1ch \u0111\u1ea7u ti\u00ean m\u00ecnh \u0111\u1ecdc l\u00e0 cu\u1ed1n:
Web Hacking 101 <\/strong>c\u1ee7a Peter Yaworski<\/strong><\/p>\n\n\n\nsau \u0111\u00f3 l\u00e0 cu\u1ed1n<\/p>\n\n\n\n
The Basics of Web Hacking: Tools and Techniques to Attack the Web <\/strong>c\u1ee7a Josh Pauli<\/strong><\/p>\n\n\n\n
v\u00e0 The Tangled Web: A Guide to Securing Modern Web Applications <\/strong>c\u1ee7a Micha\u0142 Zalewski<\/strong><\/p>\n\n\n\n
Th\u1eadt ra m\u00ecnh \u0111\u1ecdc nhi\u1ec1u l\u1eafm, nh\u01b0ng nh\u1edb \u0111\u01b0\u1ee3c 3 cu\u1ed1n n\u00e0y, c\u00f3 m\u1ea5y c\u00e1i whitepaper ch\u1ec9 chuy\u00ean v\u1ec1 client-side n\u00f3i v\u1ec1 DOM c\u0169ng hay ho m\u00e0 qu\u00ean t\u00ean r\u1ed3i =))<\/p>\n\n\n\n
<\/p>\n\n\n\n
<\/p>\n\n\n\n
Ho\u00e0n th\u00e0nh c\u00e1c k\u0129 n\u0103ng c\u01a1 b\u1ea3n c\u1ee7a 1 hacker<\/span><\/strong><\/h3>\n\n\n\n
Code, bash script, ki\u1ebfn th\u1ee9c v\u1ec1 network, nh\u1eefng th\u1ee9 c\u01a1 b\u1ea3n \u0111\u1ee7 \u0111\u1ec3 b\u1ea1n hi\u1ec3u \u0111\u01b0\u1ee3c ng\u01b0\u1eddi ta \u0111ang n\u00f3i v\u1ec1 nh\u1eefng g\u00ec.<\/p>\n\n\n\n
B\u1edbt tr\u1ebb tr\u00e2u ngh\u0129 m\u00ecnh l\u00e0 c\u00e1i r\u1ed1n v\u0169 tr\u1ee5 lu\u00f4n nha, \u0111\u1eebng v\u00ec hack \u0111\u01b0\u1ee3c c\u00e1i n\u00e0y, \u0111\u1eadp \u0111\u01b0\u1ee3c c\u00e1i kia m\u00e0 khoe ra, kh\u00e1ch h\u00e0ng kh\u00f4ng vui \u0111\u00e2u, c\u00f4ng ty c\u1ee7a b\u1ea1n c\u0169ng v\u1eady, nh\u1edb l\u00e0 h\u00e3y lu\u00f4n l\u00e0m trong scope, \u0111\u1eebng v\u01b0\u1ee3t bi\u00ean, v\u00e0o t\u00f9 l\u00fac n\u00e0o kh\u00f4ng hay =))<\/p>\n\n\n\n
<\/p>\n\n\n\n
<\/p>\n\n\n\n
<\/p>\n\n\n\n
L\u00ean tr\u00ecnh m\u1ed9t t\u00ed<\/span><\/strong><\/p><\/blockquote>\n\n\n\n
V\u1eabn c\u00e0y CTF, h\u1ecdc, l\u00e0m m\u1ecdi c\u00e1ch \u0111\u1ec3 nh\u1eefng ki\u1ebfn th\u1ee9c v\u00e0 k\u0129 n\u0103ng c\u1ee7a b\u1ea1n tr\u1edf th\u00e0nh b\u1ea3n n\u0103ng, ki\u1ec3u nh\u01b0 m\u1edbi sinh ra \u0111\u00e3 bi\u1ebft h\u00edt th\u1edf v\u1eady. <\/p>\n\n\n\n
C\u00f3 th\u1ec3 l\u00e0m th\u00eam nh\u1eefng vi\u1ec7c sau:<\/p>\n\n\n\n
<\/p>\n\n\n\n
<\/p>\n\n\n\n
Follow c\u00e1c n\u1eafc c\u01a1 gi\u1ecfi tr\u00ean th\u1ebf gi\u1edbi<\/span><\/strong><\/h3>\n\n\n\n
N\u00e0y th\u00ec nhi\u1ec1u, t\u00f9y gu c\u1ee7a b\u1ea1n m\u00e0 follow th\u00f4i, follow h\u1ebft c\u0169ng \u0111\u01b0\u1ee3c, m\u00ecnh th\u00ec kh\u00f4ng c\u1ea7n ng\u01b0\u1eddi \u0111\u00f3 si\u00eau gi\u1ecfi, ch\u1ec9 c\u1ea7n hay chia s\u1ebb l\u00e0 m\u00ecnh s\u1ebd follow, v\u00ed d\u1ee5 nh\u01b0 Orange Tsai, ho\u1eb7c Osanda Malith, blah….<\/p>\n\n\n\n
<\/p>\n\n\n\n
<\/p>\n\n\n\n
\u0110\u1ecdc report tr\u00ean c\u00e1c trang bug bounty<\/span><\/strong><\/h3>\n\n\n\n
\u0110\u00e2y l\u00e0 c\u00e1ch nhanh nh\u1ea5t \u0111\u1ec3 b\u1ea1n update \u0111\u01b0\u1ee3c t\u00ecnh h\u00ecnh security tr\u00ean th\u1ebf gi\u1edbi, v\u00ec \u0111\u00e2y l\u00e0 l\u1ed7i th\u1eadt, vi\u1ec7c th\u1eadt, c\u00f3 th\u1ec3 target b\u1ea1n t\u00ecm kh\u00f4ng ra l\u1ed7i, nh\u01b0ng ng\u01b0\u1eddi kh\u00e1c l\u1ea1i t\u00ecm ra, h\u00e3y h\u1ecdc t\u1eeb nh\u1eefng ng\u01b0\u1eddi \u0111\u00f3 v\u00e0 ng\u1eabm l\u1ea1i b\u1ea1n thi\u1ebfu s\u00f3t \u1edf \u0111\u00e2u<\/p>\n\n\n\n
<\/p>\n\n\n\n
<\/p>\n\n\n\n
Chia s\u1ebb ki\u1ebfn th\u1ee9c<\/span><\/strong><\/h3>\n\n\n\n
H\u00e3y chia s\u1ebb l\u1ea1i ki\u1ebfn th\u1ee9c c\u1ee7a b\u1ea1n cho ng\u01b0\u1eddi kh\u00e1c, c\u1ed1 g\u1eafng \u0111\u1eb7t v\u1ecb tr\u00ed c\u1ee7a b\u1ea1n v\u00e0o ng\u01b0\u1eddi \u0111\u1ecdc v\u00e0 vi\u1ebft cho h\u1ecd hi\u1ec3u, \u0111\u00e2y l\u00e0 m\u1ed9t c\u00e1ch \u0111\u1ec3 b\u1ea1n t\u1ef1 review l\u1ea1i xem b\u1ea1n c\u00f3 th\u1ef1c s\u1ef1 hi\u1ec3u “Ki\u1ebfn th\u1ee9c” b\u1ea1n chia s\u1ebb hay kh\u00f4ng, nh\u01b0 m\u00ecnh c\u00f3 vi\u1ebft v\u00e0i c\u00e1i writeup CTF, t\u1ea1o v\u00e0i c\u00e1i challenge, vi\u1ebft v\u00e0i d\u1ea1ng l\u1ed7i web l\u1ea1 l\u1ea1 hay c\u00e1i tutorial pentest app Android \u0111\u1ea5y =))<\/p>\n\n\n\n
<\/p>\n\n\n\n
<\/p>\n\n\n\n
Teamwork<\/span><\/strong><\/h3>\n\n\n\n
Nhi\u1ec1u b\u1ea1n s\u1ebd t\u1eadp trung qu\u00e1 nhi\u1ec1u v\u00e0o k\u0129 thu\u1eadt m\u00e0 qu\u00ean r\u1eb1ng khi \u0111i l\u00e0m, \u0111i pentest th\u00ec b\u1ea1n s\u1ebd t\u01b0\u01a1ng t\u00e1c v\u1edbi nhi\u1ec1u \u0111\u1ed3ng nghi\u1ec7p, h\u00e3y h\u1ecdc c\u00e1ch teamwork, v\u00ed d\u1ee5 m\u1ed9t d\u1ef1 \u00e1n b\u1ea1n v\u00e0 1 \u0111\u1ed3ng nghi\u1ec7p \u0111\u01b0\u1ee3c giao l\u00e0m, m\u00ecnh \u0111\u00e3 t\u1eebng th\u1ea5y 1 b\u1ea1n ch\u1ec9 lo l\u00e0m ph\u1ea7n m\u00ecnh v\u00e0 c\u1ed1 h\u01a1n thua v\u1edbi b\u1ea1n c\u00f2n l\u1ea1i ch\u1ec9 \u0111\u1ec3 “ch\u1ee9ng t\u1ecf”, ganh \u0111ua l\u00e0 t\u1ed1t, nh\u01b0ng h\u00e3y h\u1ee3p t\u00e1c v\u00e0 b\u00e0n lu\u1eadn nh\u00e9, theo kinh nghi\u1ec7m c\u1ee7a m\u00ecnh c\u00e0ng chia s\u1ebb v\u00e0 th\u1ea3o lu\u1eadn v\u1edbi \u0111\u1ed3ng nghi\u1ec7p th\u00ec c\u00e0ng nhi\u1ec1u l\u1ed7i \u0111\u01b0\u1ee3c ph\u00e1t hi\u1ec7n ra \u0111\u1ea5y \ud83d\ude42<\/p>\n\n\n\n
<\/p>\n\n\n\n
<\/p>\n\n\n\n
Ki\u1ebfm m\u1ed9t v\u00e0i c\u00e1i ch\u1ee9ng ch\u1ec9 t\u1ed1t<\/strong><\/span><\/h3>\n\n\n\n
N\u1ebfu c\u00f3 \u0111i\u1ec1u ki\u1ec7n, ho\u1eb7c \u0111\u01b0\u1ee3c c\u00f4ng ty t\u00e0i tr\u1ee3 th\u00ec b\u1ea1n n\u00ean ki\u1ebfm m\u1ed9t c\u00e1i ch\u1ee9ng ch\u1ec9 v\u1ec1 pentest, m\u00ecnh ngh\u0129 ph\u1ed5 bi\u1ebfn nh\u1ea5t b\u00e2y gi\u1edd l\u00e0 OSCP<\/p>\n\n\n\n
Nhi\u1ec1u b\u1ea1n s\u1ebd b\u1ea3o l\u00e0 ch\u1ee9ng ch\u1ec9 v\u00f4 ngh\u0129a, m\u00ecnh tr\u00ecnh cao ai ch\u1ea3 bi\u1ebft, ok m\u00ecnh \u0111\u1ed3ng \u00fd, nh\u01b0ng c\u00f3 bao gi\u1edd b\u1ea1n ngh\u0129 l\u00e0 kh\u00e1ch h\u00e0ng c\u0169ng s\u1ebd bi\u1ebft b\u1ea1n? Ho\u1eb7c l\u00e0 \u0111i xin vi\u1ec7c c\u00f4ng ty kh\u00e1c th\u00ec HR s\u1ebd cho b\u1ea1n v\u00e0o th\u1eb3ng? <\/p>\n\n\n\n
Ch\u1ee9ng ch\u1ec9 sinh ra l\u00e0 \u0111\u1ec3 ch\u1ee9ng minh b\u1ea1n \u0111\u00e3 \u0111\u1ea1t \u0111\u01b0\u1ee3c k\u0129 n\u0103ng, n\u0103ng l\u1ef1c t\u1ea7m n\u00e0y, d\u1ef1a v\u00e0o \u0111\u00f3 \u0111\u1ec3 nh\u1eefng ng\u01b0\u1eddi “kh\u00f4ng bi\u1ebft” b\u1ea1n \u0111\u00e1nh gi\u00e1 b\u1ea1n.<\/p>\n\n\n\n
B\u1ea3n th\u00e2n m\u00ecnh c\u0169ng h\u1ecdc qua c\u00e1i OSCP r\u1ed3i, n\u00ean m\u00ecnh bi\u1ebft nh\u1eefng g\u00ec n\u00f3 d\u1ea1y v\u00e0 c\u1ea7n nh\u1eefng k\u0129 n\u0103ng g\u00ec \u0111\u1ec3 thi \u0111\u1eadu c\u00e1i ch\u1ee9ng ch\u1ec9 n\u00e0y, cho n\u00ean nh\u1eefng ai m\u00e0 m\u00ecnh kh\u00f4ng bi\u1ebft m\u00e0 c\u00f3 ch\u1ee9ng ch\u1ec9 OSCP th\u00ec m\u00ecnh s\u1ebd hi\u1ec3u level h\u1ecd \u0111ang \u1edf \u0111\u00e2u h\u01a1n.
N\u00ean nh\u1edb l\u00e0 ch\u00fang ta \u0111ang n\u00f3i v\u1ec1 ngh\u1ec1 pentester, kh\u00f4ng ph\u1ea3i researcher hay CTF-er nh\u00e9 \ud83d\ude42<\/p>\n\n\n\n<\/p>\n\n\n\n
<\/p>\n\n\n\n
Thu\u1ed9c d\u1ea1ng c\u00f3 s\u1ed1 m\u00e1<\/span><\/strong><\/p><\/blockquote>\n\n\n\n
V\u1eabn ti\u1ebfp t\u1ee5c l\u00e0m nh\u1eefng vi\u1ec7c \u1edf tr\u00ean, \u1edf level n\u00e0y th\u00ec b\u1ea1n thu\u1ed9c d\u1ea1ng v\u0103n v\u00f5 song to\u00e0n r\u1ed3i, c\u1ee9 nh\u1eafc t\u1edbi b\u1ea1n trong project l\u00e0 \u0111\u1ed3ng nghi\u1ec7p tin y\u00eau, s\u1ebfp y\u00ean t\u00e2m. M\u1ed9t s\u1ed1 vi\u1ec7c n\u00ean l\u00e0m:<\/p>\n\n\n\n
<\/p>\n\n\n\n
<\/p>\n\n\n\n
Research<\/strong><\/span><\/h3>\n\n\n\n
C\u00f3 m\u1ed9t th\u1ef1c t\u1ebf l\u00e0 kh\u00f4ng ph\u1ea3i l\u00fac n\u00e0o c\u0169ng c\u00f3 job \u0111\u1ec3 b\u1ea1n l\u00e0m, c\u00f2n n\u1ebfu ng\u1ed3i ch\u01a1i bug bounty nhi\u1ec1u th\u00ec s\u1ebd \u0111i v\u00e0o ng\u00f5 c\u1ee5t (v\u00ec kh\u00f4ng update th\u00eam ki\u1ebfn th\u1ee9c, ch\u1ec9 x\u00e0i ki\u1ebfn th\u1ee9c c\u00f3 s\u1eb5n \u0111\u1ec3 s\u0103n bug). <\/p>\n\n\n\n
N\u1ebfu b\u1ea1n c\u00f3 theo d\u00f5i m\u00ecnh tr\u00ean HackerOne ho\u1eb7c c\u00e1c trang bug bounty \u1edf Vi\u1ec7t Nam th\u00ec c\u00f3 th\u1ec3 th\u1ea5y m\u00ecnh \u0111\u00e3 ngh\u1ec9 s\u0103n bounty t\u1eeb l\u00e2u, ph\u1ea7n l\u1edbn th\u1eddi gian m\u00ecnh d\u00e0nh ra \u0111\u1ec3 research, download v\u00e0i c\u00e1i CMS v\u1ec1 t\u00ecm bug, reproduce 1-day, bypass m\u1ea5y c\u00e1i c\u01a1 ch\u1ebf anti tr\u00ean mobile, emulate l\u1ea1i m\u1ea5y c\u00e1i firmware \u0111\u1ec3 hack IoT, hay reverse m\u1ea5y c\u00e1i driver window \u0111\u1ec3 pwn ch\u01a1i.
Thu\u1ea7n web th\u00ec m\u00ecnh ngh\u0129 \u1edf VN nhi\u1ec1u b\u1ea1n target Dot Net ho\u1eb7c m\u1ea5y c\u00e1i framework Java c\u0169ng hay \u0111\u00f3.
Nh\u1eefng th\u1ee9 nh\u01b0 n\u00e0y gi\u00fap b\u1ea1n r\u00e8n t\u01b0 duy, v\u00e0 h\u1ecdc th\u00eam \u0111\u01b0\u1ee3c nh\u1eefng th\u1ee9 m\u1edbi, m\u00ecnh kh\u00f4ng b\u1ea3o ch\u01a1i bug bounty x\u1ea5u, nh\u01b0ng h\u00e3y t\u1ea1m d\u1eebng l\u1ea1i khi b\u1ea1n c\u1ea3m th\u1ea5y kh\u00f4ng c\u00f3 l\u1ed1i \u0111i n\u1eefa.<\/p>\n\n\n\n<\/p>\n\n\n\n
<\/p>\n\n\n\n
K\u0129 n\u0103ng vi\u1ebft Report<\/strong><\/span><\/h3>\n\n\n\n
Khi \u0111i l\u00e0m s\u1ebd kh\u00f4ng c\u00f3 ai vi\u1ebft report gi\u00f9m b\u1ea1n c\u1ea3 \u0111\u1eddi, ng\u01b0\u1eddi ta ch\u1ec9 review th\u00f4i, b\u1ea1n l\u00e0 ng\u01b0\u1eddi hi\u1ec3u h\u1ebft t\u1ea5t c\u1ea3 c\u00e1c bug b\u1ea1n t\u00ecm ra, h\u00e3y h\u1ecdc c\u00e1ch vi\u1ebft report cho s\u1ea1ch \u0111\u1eb9p, l\u00e0m sao cho ng\u01b0\u1eddi \u0111\u1ecdc (c\u1ee5 th\u1ec3 l\u00e0 s\u1ebfp v\u00e0 kh\u00e1ch h\u00e0ng) hi\u1ec3u nh\u00e9.<\/p>\n\n\n\n
<\/p>\n\n\n\n
<\/p>\n\n\n\n
K\u0129 n\u0103ng lead Project<\/strong><\/span><\/h3>\n\n\n\n
R\u1ed3i m\u1ed9t ng\u00e0y b\u1ea1n s\u1ebd th\u00e0nh team lead n\u1ebfu l\u00e0m \u0111\u1ee7 l\u00e2u, h\u00e3y h\u1ecdc c\u00e1ch manage th\u1eddi gian, ph\u00e2n b\u1ed5 nhi\u1ec7m v\u1ee5 cho th\u00e0nh vi\u00ean team b\u1ea1n c\u0169ng nh\u01b0 b\u00e1o c\u00e1o v\u1edbi c\u1ea5p tr\u00ean v\u1ec1 ho\u1ea1t \u0111\u1ed9ng c\u1ee7a nh\u00f3m nh\u00e9.<\/p>\n\n\n\n
<\/p>\n\n\n\n
<\/p>\n\n\n\n
Like Page Hack ‘Em All<\/strong><\/span><\/h3>\n\n\n\n