HACKR.GG
Career Track

From zero to your
first paid bounty.

The complete, hands-on path to becoming a bug bounty hunter. 35 modules, live browser labs, and real exploits — built so you’re actually finding bugs, not just reading about them.

Start the track — free →See the curriculum ↓
35 modulesLive browser labsBeginner friendlyCertificate included
Bug bounty hunter
01
You exploit, you don’t memorize
Every module ends in a real exploit you run yourself — in a live, isolated browser lab. No slides, no “trust me”.
02
Zero setup
No Kali VM, no VPN, no broken installs. Spin up a vulnerable target in one click and start hacking.
03
A real methodology
Not a list of bugs — a repeatable process: recon → attack surface → exploit → report. The way actual hunters work.
04
Proof you can show
Earn a verifiable certificate as you finish, and a public profile that tracks every module and lab you clear.
// The path

Five phases. 35 modules. One hunter.

Work top to bottom and you go from “what’s an HTTP request” to working a live program. Or jump to any module — it’s all unlocked.

01
Foundations
The groundwork every hunter needs — how the web, auth, and APIs actually work.
5 modules
01Linux & CLI Fundamentals02How the Web Works03How Authentication Works04APIs & Modern Web Apps05Browser DevTools for Hackers
02
Core Web Vulnerabilities
The bugs that pay the bills. Learn each one by exploiting it for real.
11 modules
01Cross-Site Scripting (XSS)02SQL Injection03IDOR — Broken Access Control04IDOR — Going Deeper05SSRF — Server-Side Request Forgery06SSRF — Make the Server Fetch For You07Command Injection08File Upload Vulnerabilities09CSRF — Cross-Site Request Forgery10Open Redirect11CORS Misconfiguration
03
Logic & Advanced Attacks
The high-value, harder-to-find bugs scanners never catch.
9 modules
01Business Logic Flaws02Parameter Tampering03Race Conditions04Host Header Attacks05Web Cache Poisoning06API Rate Limiting & Bypass07WebSocket Security08DOM Clobbering09HTTP Request Smuggling
04
Recon & Tooling
Find the attack surface nobody else looked at — and the tools to work it fast.
9 modules
01Recon — Content Discovery02Recon — Asset Discovery03Recon — Google Dorking04Recon — Shodan05Subdomain Takeover06Burp Suite — The Hacker's Proxy07Network Scanning with Nmap08Password Attacks09Web Server Misconfiguration
05
The Hunt
Put it together: pick a target, work a program, and write the report that gets paid.
1 modules
01Bug Bounty Methodology
// By the end, you can
Read and exploit the OWASP Top 10 by hand
Run full recon on a target and map its attack surface
Drive Burp Suite (and our in-browser interceptor) like a pro
Find logic flaws and chained bugs that scanners miss
Write a clear, reproducible report that earns the payout

Your first bounty starts with module 01.

Free to start. No credit card. No setup.

Start the Bug Bounty Track →