In this episode of The BlueHat Podcast, host Nic Fillingham and Wendy Zenone are joined by Felix Boulet fresh off his participation in Zero Day Quest. Felix talks about his unique journey from industrial maintenance to becoming a full-time vulnerability researcher, and how that background fuels his passion for hacking and bug bounty work. He explains his method for finding bugs in Microsoft products—particularly in identity systems—and why identity is such a valuable target for attackers. Felix also shares highlights from the Zero Day Quest event, where he focused on building connections, learning from Microsoft engineers, and experiencing the collaborative side of the security community.

In This Episode You Will Learn:

• Why identity-based bugs are especially valuable and dangerous in the security world
• When breaking identity controls can be the key to pivoting through an entire system
• How SharePoint's concept of "virtual files" impacts vulnerability validation

Some Questions We Ask:

• What was your first bug bounty experience?
• Can you explain what the flash challenges were and what your experience was like?
• Do you think sharing bug ideas could cost you a bounty?

Resources:

View Felix Boulet on LinkedIn

View Wendy Zenone on LinkedIn

View Nic Fillingham on LinkedIn

Related Microsoft Podcasts:

• Microsoft Threat Intelligence Podcast
• Afternoon Cyber Tea with Ann Johnson
• Uncovering Hidden Risks

Discover and follow other Microsoft podcasts at microsoft.com/podcasts

Hosted on Acast. See acast.com/privacy for more information.