Overview
Explore an innovative solution for streamlining the process of reproducing and triaging security bugs in this 45-minute conference talk from APPSEC Cali 2018. Learn about ReproNow, an open-source browser extension designed to capture and playback vulnerability walkthroughs, significantly reducing the time and effort required for security engineers to validate reported issues. Discover how this tool records both screen activity and network requests, allowing for easy searching and navigation of specific payloads. Gain insights from Vinayendra Nataraja, Senior Product Security Engineer at Salesforce, and Lakshmi Sudheer, Security Researcher at Adobe, as they discuss the challenges of bug bounty programs and demonstrate how ReproNow can enhance an organization's security posture by enabling more efficient vulnerability reproduction and resolution.
Syllabus
Intro
Welcome
Agenda
Triaging
Bounty Platform
ReproNow
Video Formats
Demo
Questions
Sepik
QA
Taught by
OWASP Foundation