Private Audits, Obtaining Clients and Navigating the World of Independent Security Research

We sit down with Pashov and discuss his decision to all in on web3 security as an independent security researcher. Pashov shares alpha on auditing, obtaining clients and building industry connections.

Links:
https://twitter.com/pashovkrum

OUTLINE:
0:00 Intro
3:52 Going Independent
5:47 First High Severity Bug
10:45 Learning Mindset
14:06 Reading code4rena Reports
20:23 Building Intuition for Vulnerabilities
22:46 Focused Hours
24:55 Spearbit
28:49 Understanding Code in Depth
31:34 How Beginners Should Approach code4rena
36:38 First Solo Audit
41:26 Getting Clients
45:52 Solo Auditing and Auditing Partnerships
55:30 Day in the Life of Pashov
59:22 How to Study
1:09:02 Independent Security Researcher vs Auditor Job
1:13:07 Experience Auditing with Spearbit
1:16:28 Deep Understanding of Code
1:20:02 Small vs Large Codebases
1:24:38 Immunefi
1:30:21 Building a Business
1:35:25 Making Industry Connections
1:40:30 Setting a Good Example for Others
1:46:43 Tips for Newbies