{"id":32807,"date":"2022-05-25T21:18:03","date_gmt":"2022-05-25T18:18:03","guid":{"rendered":"https:\/\/kutaybilen.com.tr\/?p=32807"},"modified":"2022-05-25T21:18:03","modified_gmt":"2022-05-25T18:18:03","slug":"kusur-avi-programlarinin-mukafatlari-en-az-%26-artti","status":"publish","type":"post","link":"https:\/\/kutaybilen.com.tr\/?p=32807","title":{"rendered":"Kusur Av\u0131 Programlar\u0131n\u0131n M\u00fckafatlar\u0131 En Az %26 Artt\u0131"},"content":{"rendered":"<p>Her g\u00fcn kulland\u0131\u011f\u0131m\u0131z toplumsal medya platformlar\u0131 ve neredeyse t\u00fcm uygulamalar her vakit muhakkak bir <strong>g\u00fcvenlik a\u00e7\u0131\u011f\u0131na yahut yan\u0131lg\u0131ya<\/strong> konut sahipli\u011fi yap\u0131yorlar. \u0130rili ufakl\u0131 pek \u00e7ok bi\u00e7imde kar\u015f\u0131m\u0131za \u00e7\u0131kan bu yanl\u0131\u015flar ve a\u00e7\u0131klar\u0131 tespit etmek, platformlar\u0131 ve uygulamalar\u0131 sadece geli\u015ftirenler taraf\u0131ndan yap\u0131lamayabiliyor.<\/p>\n<p>Bu nedenle g\u00fcn\u00fcm\u00fczde neredeyse bir meslek h\u00e2line d\u00f6n\u00fc\u015fen <strong>yan\u0131lg\u0131 av\u0131 (bug bounty)<\/strong>\u00a0isimli programlar\u00a0bulunuyor. Bu program sayesinde rastgele bir yere ba\u011f\u0131ml\u0131 olmayan rastgele bir ki\u015fi, g\u00f6rd\u00fc\u011f\u00fc yan\u0131lg\u0131y\u0131 \u015firketlere bildirerek yan\u0131lg\u0131n\u0131n yahut a\u00e7\u0131\u011f\u0131n ehemmiyetine nazaran <strong>\u00e7e\u015fitli m\u00fckafatlar<\/strong> kazanabiliyor.<\/p>\n<p><b>Da\u011f\u0131t\u0131lan \u00f6d\u00fcl \u00f6l\u00e7\u00fcs\u00fc en az %26 artt\u0131:<\/b><\/p>\n<p><img decoding=\"async\" src=\"https:\/\/www.webtekno.com\/images\/editor\/default\/0002\/88\/1b8e28ec8ce6d93ea8dc1920bdaf65f6cc94b9aa.jpeg\"\/><\/p>\n<p>Son y\u0131llarda pop\u00fclerlik kazanmaya devam eden kusur av\u0131 program\u0131, bilhassa bu y\u0131l <strong>tepe noktas\u0131na<\/strong> ula\u015ft\u0131. \u015eirketler, son 1 y\u0131l i\u00e7inde yan\u0131lg\u0131 bulanlara verdikleri \u00f6d\u00fcl \u00f6l\u00e7\u00fcs\u00fcn\u00fcn ne kadar artt\u0131\u011f\u0131n\u0131 a\u00e7\u0131klad\u0131. \u015eirketlerin a\u00e7\u0131klad\u0131\u011f\u0131 bilgiler, kusur av\u0131\u00a0programlar\u0131nda <strong>en fazla \u00f6d\u00fcl verilen kusur tiplerini<\/strong> de ortaya koydu.<\/p>\n<p>Yan\u0131lg\u0131 av\u0131 programlar\u0131nda bu y\u0131l <strong>en fazla \u00f6d\u00fcl verilen yan\u0131lg\u0131 \u00e7e\u015fidi XSS <\/strong>oldu. \u015eirketler, bu sene i\u00e7inde XSS kusuru bulan avc\u0131lara toplamda <strong>4 milyon 211 bin 6 dolar<\/strong> \u00f6dedi. XSS yan\u0131lg\u0131lar\u0131na verilen m\u00fckafatlar 1 y\u0131l i\u00e7inde <strong>%26&#8217;l\u0131k bir art\u0131\u015f<\/strong> ya\u015fad\u0131. XSS&#8217;i takip eden a\u00e7\u0131k tipiyse ge\u00e7ti\u011fimiz y\u0131la nazaran \u00f6d\u00fcl \u00f6l\u00e7\u00fcs\u00fcnde %134 art\u0131\u015f ya\u015fayan <strong>Improper Access Control<\/strong> (Uygun Olmayan Eri\u015fim Kontrol\u00fc) oldu.<\/p>\n<p>\u00dcstteki grafikte de g\u00f6r\u00fcld\u00fc\u011f\u00fc \u00fczere \u015firketler, son 1 y\u0131l i\u00e7inde g\u00fcvenlik a\u00e7\u0131klar\u0131 ve kusur bulan avc\u0131lara verdikleri \u00f6d\u00fcl \u00f6l\u00e7\u00fcs\u00fcn\u00fc bir olduk\u00e7a art\u0131rd\u0131. O denli ki <strong>eksi say\u0131lar i\u015fin i\u00e7ine kat\u0131lmad\u0131\u011f\u0131 takdirde<\/strong> yanl\u0131\u015fa nazaran \u00f6d\u00fcl \u00f6l\u00e7\u00fcs\u00fc en az %26 oran\u0131nda artt\u0131. 2020 y\u0131l\u0131 i\u00e7inde toplamda <strong>23,5 milyon dolar<\/strong> \u00f6d\u00fcl da\u011f\u0131t\u0131ld\u0131.<\/p>\n<div> <\/div>\n","protected":false},"excerpt":{"rendered":"<p>Her g\u00fcn kulland\u0131\u011f\u0131m\u0131z toplumsal medya platformlar\u0131 ve neredeyse t\u00fcm uygulamalar her vakit muhakkak bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131na yahut yan\u0131lg\u0131ya konut &#8230;<\/p>\n","protected":false},"author":1,"featured_media":32808,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[854],"tags":[5245,888,1311],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/32807"}],"collection":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=32807"}],"version-history":[{"count":1,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/32807\/revisions"}],"predecessor-version":[{"id":32809,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/32807\/revisions\/32809"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/media\/32808"}],"wp:attachment":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=32807"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=32807"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=32807"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}