Ambassador Highlight: Adnan Malik | HackerOne

Who’re you?

My identify is Adnan Malik. I’m an internet software safety researcher, penetration tester and bug hunter. I at present run a startup named “Secure Purple,” which is cyber security and digital wellness consultancy for finish customers.

What made you need to turn out to be an envoy?

I’ve all the time been tremendous smitten by neighborhood constructing as a result of I consider, “If you want to go fast, go alone, and if you want to go far, go together.” People are social animals who want one another to develop, nourish and groom. So, bringing like-minded folks from the identical space of labor, to advertise peer-to-peer studying, made me need to turn out to be an envoy.

Why do you suppose folks ought to be a part of this program?

Hacking, notably the bug bounty neighborhood, is a singular area the place everybody contributes to the neighborhood by constructing instruments, writing weblog posts, and sharing suggestions & methods. The journey of each hacker is a cycle of studying from the neighborhood, rising with it, growing your profession, and paying it again. Subsequently, one ought to be a part of this program as a result of it’s among the best methods to contribute to the neighborhood, acquire data, and develop collectively.

What’s your function as an envoy?

As an envoy, you’re accountable for beginning a neighborhood, bringing hackers below the identical roof, and selling hacking/bug bounty amongst them. You’re the face of your neighborhood. As the pinnacle of your neighborhood, you construct a tradition and secure area the place everyone seems to be welcome. You inspire with an perspective that claims, “No one becomes a master in [anything] overnight, so be ready for frustration and the pain of learning something new. But don’t worry, you won’t be alone!”

Peshawar HackerOne Membership first in individual meetup

What’s the hacking scene like in your metropolis/area?

It was 25 years in the past that Amjad Farooq Alvi and his brother Basit, in Lahore (Pakistan), created the primary virus to hit a private pc. Since then, our area has been very energetic in varied fields of infosec, particularly bug bounties. Tons of of them are identified worldwide for his or her contribution to infosec. There weren’t many communities that existed then, however now, there are a number of infosec communities actively working in numerous cities. College students are forming cyber safety golf equipment of their respective universities. The federal government has began a cyber safety hackathon to assist younger expertise and encourage others to discover cyber safety. I hope we are going to see the impression of those efforts of presidency, non-public stakeholders, hacking communities, and pupil golf equipment quickly.

Hackathon meetup

Adnan Malik speaking about HackerOne at Cyber Safety Hackathon finale the place President of Pakistan was chief visitor

What was your final meet-up about?

Our final meet-up was in Could 2022. Hackers from completely different cities met within the capital for the gathering. We have been joined by bug hunters, malware analysts, builders, authorities officers, and infosec specialists from the business. The aim was to meet up with fellow hackers and encourage everybody to construct their community. As an example, you may community with business leaders and discover alternatives within the authorities sector, whereas eliminating doubts folks might have on their path ahead. Better of all, we met lifetime associates and shared recollections.

Last Peshawar meetup

Final meetup of Peshawar HackerOne Membership on the capital

How constantly do you meet up? Do you have got a predetermined location?

To rearrange a meet-up, we have a look at the feasibility for everybody and a location to fulfill at. As we’re the one membership in Pakistan, our most important precedence is to rearrange meet-ups in new areas to succeed in out to as many hackers as attainable. We prepare meet-ups as soon as each 4 months, which we publicize on our social media handles.

These are the cities we have now meet-ups thus far:

  • Peshawar
  • Lahore
  • Islamabad

We encourage newbies and specialists to hitch us in our meet-ups to allow them to make new associates, assist one another, be taught and collaborate.

Have you ever ever hacked a program as a workforce?

Hacking a program is an effective way to enhance your ability. Final yr we began a web based meetup named “Hack Hour” to work collectively. This was unique to the workforce members of the membership. We used to spend 2 hours each week looking collectively, and we discovered some neat bugs as a workforce. We plan to start out it up once more with extra folks from completely different infosec backgrounds later this yr.

What do you consider brings most individuals into hacking?

Hacking is an on a regular basis problem. I consider folks settle for this problem as a result of they need to outsmart the system. It’s like having a superpower, and I believe this sense brings most individuals into the neighborhood within the first place. It is the sensation that you’re a part of the larger trigger, defending the web and making our on-line world secure. I want to quote Keren Elazari, “Hackers just can’t see something broken in the world and leave it be. They are compelled to either exploit it or try to change it. So they find the vulnerable aspects in our rapidly changing world.”

How did you’re feeling concerning the Ambassador World Cup?

The Ambassador WorldCup was an exceptional expertise because it allow us to get in contact with so many hackers from around the globe and our personal areas. The CTF was enjoyable! Our workforce performed it collectively and certified for the bug bounty part. Attempting to find bugs for 4 days straight was exhilarating. This helped us see different hackers’ methodology and inculcate completely different features of it into our work toolsets. It’s an important occasion to work carefully with fellow hackers, repeatedly chatting, discussing bugs, and sharing memes. Simply typically having a good time.

Adnan OWASP workshop

Adnan Malik presenting workshop on OWASP TOP 10 at WomenTechmaker

What different occasions would you prefer to see sooner or later?

HackerOne’s “Live Hacking Event” is one thing that fascinates each hacker. I want to see the prolonged model of it within the native communities as “H1 Stay Hacking – Prolonged.” The Ambassador should play the role of onboarding local targets and inviting hackers to hunt them. This replica of H1 live hacking events in local communities will hugely impact the bug bounty industry.

What makes an ambassador community successful?

Building a thriving community takes time. The strength of the community lies in the respect each person has for the others. Empathy is the critical element of moving your community forward. The community consists of newbies, experts, and people in different stages of life. It’s your responsibility to push forward every member of your community.

What difficulties do you and your group face?

There were numerous challenges that we faced initially. Communicating with club members was one of them. Most club members were frequent users of Facebook and WhatsApp rather than discord. This initially caused communication problems and issues onboarding new members to the club. That’s where we planned to start using both of these applications in parallel, to ensure we had everyone’s preferred method of communication.

What can you offer to people just starting out in bug hunting?

If you are new to bug hunting or planning to start, reach out to us on our social media handles or WhatsApp group. We can help you initially in kicking off your bug hunting journey. The community is always here to resolve any confusion, questions, doubts, and difficulties. Furthermore, we periodically provide premium resources like HTB or pentesterlab PRO to help you sharpen your skills.
In addition, we arrange different workshops, training, and meetups. This is an excellent chance for everyone to make friends, collaborate, and learn from each other.

Did the ambassador program help you build your professional career?

Oh yeah! The HackerOne Ambassador Program helped a lot in terms of exposure, learning, networking, and spotlight. HackerOne Ambassadorship brings many job opportunities, collaborations, and community partnerships with private and public stakeholders. Working with HackerOne became an integral part of my career, polishing my leadership, management, community building, hacking, marketing, outreach, and speaking skills.

Adnan cyber security assembly

Adnan Malik teaching kids about cyber safety

What would you like to see next in the ambassador program? What’s the next step?

I want to see the H1 Ambassador Program as one of the top communities in infosec. A place where everyone is welcome to learn and contribute. Local communities have the power to shape the culture of the bug bounty industry. I want every community to be cohesive, inclusive, content-rich, professional, and safe. A place that encourages participatory development and welcomes everyone from any walk of life.

The club of H1 should arrange virtual events with clubs from other countries. This will not only create an impact globally, but also help hackers make friends across borders. A goal to learn and collaborate.

Check out a quick clip from their last meet-up!

Date: 2022-08-23 13:00:25

Source link



Related articles

Alina A, Toronto
Alina A, Toronto
Alina A, an UofT graduate & Google Certified Cyber Security analyst, currently based in Toronto, Canada. She is passionate for Research and to write about Cyber-security related issues, trends and concerns in an emerging digital world.


Please enter your comment!
Please enter your name here