YESWEHACK PROPHILE ON ZAX

June 14, 2021



┌▄──────────────────────────────────────────────────────────────────────▄┐ 
├■▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀■[ YESWEHACK PROPHILE ON ZaX ]■▄▀▄▀▄▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄┤ 
├■──────────────────────────────────────────────────────────────────────■┤ 
├■▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀▄▀■┤
└▀──────────────────────────────────────────────────────────────────────▀┘ 
23th of May, 2021.
╔══════════════════════════════════ WHOIS ═══════════════════════════════╗
║ Handle: ZaX                                                            ║
║ AKA: Brice Augras                                                      ║
║ Age of your body: 30                                                   ║
║ Produced in: FR                                                        ║
║ Urlz: https://bzhunt.fr                                                ║
║ Computers: Buying i9 NUCs too often :D                                 ║
║ Active Since: 2017                                                     ║
║ Superpowers: Deserialization                                           ║
║ Life in a sentence: Forget you don't know and keep learning            ║
╚════════════════════════════════════════════════════════════════════════╝ 

                                 QUOTES 
╔════════════════════════════════════════════════════════════════════════╗
║ "Did I read the manual ? #RTFM"                                        ║
║ "Sharing is caring"                                                    ║
╚════════════════════════════════════════════════════════════════════════╝

                                 ARMORY 
╔════════════════════════════════════════════════════════════════════════╗
║ Hunting with @doomer                                                   ║
║ BurpSuite Pro                                                          ║
║ Nuclei                                                                 ║
║ Ysoserial <3, AspDotNetWrapper                                         ║
╚════════════════════════════════════════════════════════════════════════╝


▀▄█▓▒░ Hello, who are you?
│ ─────────────────────────────────────────────────────────────────────────
└─ Hi, I'm Brice Augras, founder of BZHunt company & Infosec Researcher.
I had the chance to grow with computers, Internet and all this kind of juicy
stuff :)


▀▄█▓▒░ Can you relate your first successful exploitation/abuse of a system?
│ ─────────────────────────────────────────────────────────────────────────
└─ When I was like 15 years old, I had quite severe restrictions at home
regarding allowed time to spent on the Internet (thxs Dad). I needed to find
a way to circumvent the restriction and thanks to Google, I discovered that
it was possible to "crack" WI-FI WEP encryption key of my neighbour (shame
on me, completely illegal). 

15 years later (and after raising a true ethical approach regarding infosec),
this memory is still the strongest one since that was the first time I put a
feet inside "hacking" field. From there, I kept discovering the wild world of
IT, coding and pwning. I literally love the mindset behind hacking :)


▀▄█▓▒░ What moment pushed you in the pro computer security whirlpool?
│ ─────────────────────────────────────────────────────────────────────────
└─ A little bit of chance, a lot of RNG but overall a lot of time spent
learning and improving my technical skills since I didn't had any diploma.
To be honest, I struggled quite a lot 6 years back while trying to find a job.
So, seeing where I am right now is like the biggest gift I could have offered
myself.


▀▄█▓▒░ Memorable people or readings you care to share about?
│ ─────────────────────────────────────────────────────────────────────────
└─ All the hunters publishing #DeutscheQualitat write-ups on online platforms
& open-source tools.


▀▄█▓▒░ What will you learn next?
│ ─────────────────────────────────────────────────────────────────────────
└─ To-Do list is quite big but one of my favorite topic would be : Blockchains
attack scenarios.


▀▄█▓▒░ Three most important rules you would write in a Bug Hunter Manifesto?
│ ─────────────────────────────────────────────────────────────────────────
└─ Eat, Pwn, Sleep, Repeat. 
Be careful with impostor syndrome and burnouts and never forget to enjoy ;)


▀▄█▓▒░ You are active on YesWeHack and have practiced others BB platforms, 
| What are your Do/Don't? 
| What are your expectations ? 
│ ─────────────────────────────────────────────────────────────────────────
└─ Building a long term relationship with the customers. Enjoying programs
with a lot of activity.


▀▄█▓▒░ What advice can you give to someone who wants to start in 
│ bug bounty?
│ ─────────────────────────────────────────────────────────────────────────
└─ Don't be afraid and "JUSTT DOOO ITTTT". I was literraly impressed 3-4 years
ago, doubting about my ability to find even one valid vulnerability. For the
newcomers, I would just say : "start digging with only one kind of target or
vulnerability and keep increasing your knowledge about it. You'll rapidly
notice that this will end up working and success will come!"


▀▄█▓▒░ Is there a life AFK?
│ ─────────────────────────────────────────────────────────────────────────
└─ Fixing old sports car & house renovation. A bit crazy since I almost lost
a finger with this kind of activity (keyboard with 9 fingers, less practical
haha)...


▀▄█▓▒░ How do you see the future?
│ ─────────────────────────────────────────────────────────────────────────
└─ Cybersecurity needs from the companies will keep increasing for sure for
the incoming years. Can't wait to see how infosec stuff will evolve on topics
such as AI, Blockchain, Smart Cities. I would take the bet that we'll discover
new attack vectors.

--------[ EOF