About Me

Author: YoKo Kho | Posted in About Me No comments

InfoSec Professional | Top 150 Bugcrowd (Sept 2019) & 2018 Bugcrowd MVP | OSCP, SISE, LPT (Master), C|EHv8, ECSAv9, C|NDv1, CEIv2.

Twitter | Blog | | Linkedin | Mail: yk[at]firstsight.me


[Bahasa] FREE | ebook Bug Hunting 101 – Web Application Security

Together with Faisal Yudo, Tomi, and Azhar, we create an ebook that could be used for readers to learn the Web Application Security Testing topic (from the bug hunting point of view).

Was completed with the very basic explanation, the ebook also covers the various techniques (recon and attack) with various real cases from around the world.

Here are the things that readers could see and learn at the first edition:

  • The difference point of view between various security testing activity (VA, PenTest, Security Assessment);
  • Much of Recon Step;
  • The reason why we need an interceptor and forwarder tools in our testing activity;
  • Basic concept of HTTP Method related GET dan POST;
  • Various techniques such as Sub-domain Takeover, Session Mechanism, Account and Password Mechanism, SQL Injection, SSTI, XSS, Content Injection, and more.

Download now for FREE at:
https://alfursan.id
https://leanpub.com/bughunting101

InshaAllah we will cover much issues at the second edition.


Sekilas Al-Fursan ID: Al-Fursan ID merupakan salah satu wadah yang dapat dimanfaatkan untuk mempelajari hal terkait pengujian keamanan terhadap aplikasi, terutama dengan pendekatan sudut pandang Bug Hunting.

Atas izin Allah, Al-Fursan ID didirikan pada tahun 2019 oleh YoKo Kho dan Faisal Yudo Hernawan. Di dalam perjalanannya, Insyaallah Al-Fursan ID akan terus berusaha menghasilkan karya yang dapat bermanfaat di dalam ranah pengujian keamanan (dan tentunya insyaallah akan selalu dapat diperoleh tanpa berbayar).

Al-Fursan ID berdiri secara independen, bersifat non-profit, dan tidak terafiliasi oleh perusahaan ataupun komunitas tertentu.

Add Your Comment