0xDjango - Code4rena and Immunefi Bounty Hunting

0xDjango went full time in web3 security as an independent researcher this year, and has found success on both Code4rena and Immunefi earning over 400k combined in bounty rewards.

In this conversation we talk about how he transitioned into web3 security, bounty hunting and tips for beginners getting started in this field.

Links:
https://code4rena.com/
https://immunefi.com/

Learning Resources:
https://medium.com/immunefi/hacking-the-blockchain-an-ultimate-guide-4f34b33c6e8b

The Saloon:
https://discord.gg/qE8wpbP5rW
https://twitter.com/saloonfinance

Follow Django:
https://twitter.com/0xdjangoonchain

OUTLINE:
00:00 - Background
2:07 - Learning Solidity
4:11 - Learning Web3 Security
6:51 - Audit Methodology
8:33 - Bounty Hunting Full Time
9:52 - Immunefi
17:25 - Picking Targets
20:40 - Million $ Bounties
22:04 - Code4rena vs Immunefi
29:58 - Auditing as a Team
31:40 - Upskilling Quickly
34:53 - Traditional Auditing vs Decentralized Audit Models
39:43 - Immunefi Audit Methodology
48:09 - Diverse Backgrounds of Auditors
49:28 - New Bug Bounty Platform - The Saloon
1:02:49 - How to Learn Blockchain and Smart Contract Hacking
1:06:33 - Future Predictions of Web3 Bug Bounties