user avatar
Vickie Li
@vickieli7
Infosec nerd. Hacks and secures. Creates god awful infographics. Author of #BugBountyBootcamp. Security @instacart.
vickieli.dev
Joined September 2018
194
Following
31.7K
Followers
  • Pinned
    user avatar
    Vickie Li
    @vickieli7
    Nov 17, 2021
    "Bug Bounty Bootcamp: The Guide to Finding and Reporting Web Vulnerabilities" is now available on NoStarch and Amazon! 😊 nostarch.com/bug-bounty-boo… amazon.com/Bug-Bounty-Boo… This could be your weekend 👇
  • user avatar
    Vickie Li
    @vickieli7
    Mar 18, 2021
    And.... we have a cover! My book about vulnerability hunting (with bug bounty tips) with @nostarch
  • user avatar
    Vickie Li
    @vickieli7
    Aug 12, 2020
    Learn about Reverse engineering and Binary Exploitation: medium.com/swlh/intro-to-… medium.com/swlh/intro-to-… blog.usejournal.com/binary-exploit… blog.usejournal.com/binary-exploit… medium.com/swlh/binary-ex… medium.com/swlh/binary-ex… medium.com/swlh/binary-ex…
    Intro to Reverse Engineering
    From medium.com
  • user avatar
    Vickie Li
    @vickieli7
    Mar 13, 2021
    Gahhhh! My book with @nostarch about hunting for vulnerabilities is in copyedit now!
  • user avatar
    Vickie Li
    @vickieli7
    May 21, 2021
    Did someone say "Early Access"?!! 😮 You can now download the first few chapters of my book at nostarch.com/bug-bounty-boo…. New chapters will become available over the next few weeks.
  • user avatar
    Vickie Li
    @vickieli7
    Aug 23, 2021
    Scare a security person in five words or less!
  • user avatar
    Vickie Li
    @vickieli7
    Nov 9, 2021
    Got something in the mail today 🙈
  • user avatar
    Vickie Li
    @vickieli7
    Aug 18, 2021
    Any recommendations for good books to read in infosec?
  • user avatar
    Vickie Li
    @vickieli7
    Sep 25, 2020
    The basics of reviewing source code to find vulnerabilities:
    vickieli.dev
    Code Review 101
    How to perform source code review to find vulnerabilities in web applications.
  • user avatar
    Vickie Li
    @vickieli7
    Aug 24, 2020
    Recon tips: medium.com/swlh/hacking-g… medium.com/swlh/hacking-p… medium.com/bugbountywrite… medium.com/swlh/wrapping-…
    medium.com
    Hacking Git Directories
    How to reconstruct source code from an exposed .git directory
  • user avatar
    Vickie Li
    @vickieli7
    Feb 2, 2022
    Finished reading Hacking APIs by @hAPI_hacker. Some thoughts about the book, who it's for, prereq skills, etc. Thread 👇 Overall, it's beginner-friendly and a good job building up the required knowledge from beginner to advanced API pentesting techniques.
  • user avatar
    Vickie Li
    @vickieli7
    Aug 6, 2020
    Bug bounty tips: medium.com/bugbountywrite… medium.com/swlh/a-tour-ar… medium.com/swlh/how-to-ge… medium.com/swlh/mastering… medium.com/better-program… medium.com/swlh/how-to-wr… medium.com/swlh/out-of-sc… medium.com/swlh/why-you-f… medium.com/bugbountywrite…
  • user avatar
    Vickie Li
    @vickieli7
    Feb 22, 2022
    The Art of Attack by Maxie Reynolds. One of the more different security books I've read recently. Some thoughts about the book, who it's for, etc. Thread below.
  • user avatar
    Vickie Li
    @vickieli7
    Aug 14, 2020
    All about SSRFs: medium.com/@vickieli/bypa… medium.com/swlh/intro-to-… medium.com/@vickieli/expl… medium.com/swlh/ssrf-in-t…
    Bypassing SSRF Protection
    From vickieli.medium.com