MAHE-ISAC Certified Bug Bounty Researcher - Overview

The MAHE-ISAC Certified Bug Bounty Researcher Program(MICBBR) is a unique opportunity offered by MAHE and ISAC to experienced as well as inexperienced cybersecurity enthusiasts to get trained and earn rewards and recognition for reporting bugs, especially those related to security exploits and vulnerabilities, legally and ethically.

The Certified Bug Bounty Researcher program allows you to quickly start your career in this challenging, adventurous, and rewarding field with hands-on Instructor-led training and virtual labs.

Course Fees:

MAHE staff: Rs. 590/- 

MAHE students: Rs. 1500/- 

Other participants: Rs. 53,100/-


Registration Link

For registration, please use the following link:

The classes will be held from 3 to 5 pm on the following days: 

September 2022: 3, 4, 10, 11, 17, 18, 24

Course Contents:

Day One

  • Top 10 Rules for Bug Bounties
  • What is Bug Bounty & Basics
  • VAPT vs Bug Bounty
  • Motivation
  • Google Dorking
  • Become an Author of Google Dorks
  • OWASP 2013 vs 2017
  • XSS & Techniques
  • Reflected XSS
  • Stored XSS

Day Two

  • Burp suite Lab Setup
  • Owasp ZAP vs Burp suite
  • Authentication Bypass
  • OTP Bypass
  • Captcha Bypass
  • Rate Limiting Attack
  • Race Conditions Attacks

Day Three

  • CSRF Attacks & Techniques
  • Open Redirect Attacks
  • Cross-Origin Resource Sharing Attacks
  • ClickJacking Attacks
  • Sensitive Data Exposure Attacks

Day Four

  • HTML Injection Attacks
  • Broken Link Hijacking
  • Session Hijacking
  • Session Fixation
  • Failure to Invalidate Session

Day Five

  • SQL Injection Attacks using SQL map
  • Server Side Request Forgery
  • Local File Inclusion
  • Remote Code Execution
  • Wayback archive

Day Six

  • Shodan
  • Censys
  • Greynoise
  • Github Recon
  • Automation using bash
  • Subdomain Enumeration
  • Subdomain Takeovers

Day Seven

  • Fuzzing Web Application
  • Report writing
  • Reporting Templates
  • Pentesing / Bug Bounty Checklist
  • Mindmaps
  • Tips and Tricks
  • Ethics in Bug Bounty
  • Clean Exit Code of Conduct
  • Capstone Project
  • How to kick start your bug bounty journey



The exam consists of MCQ questions and a CTF.


What you get

30 Days Access to Cyber Range Virtual Labs

Access to e-learning videos

Clean Exit Professional Ethics Certification

Profile in the National Security Database

Opportunity to participate in exclusive hackathons

Bug Bounty Researcher Certificate

Bug Bounty Researcher ID Card

For more information, please visit the following site.

For further details, please contact:

Ms. Nisha P Shetty | +91 9663757321

Key Dates & Deadlines


Last date to Apply


Tentative Course Commencement Date