In this episode of The BlueHat Podcast, host Nic Fillingham and Wendy Zenone are joined by Felix Boulet fresh off his participation in Zero Day Quest. Felix talks about his unique journey from industrial maintenance to becoming a full-time vulnerability researcher, and how that background fuels his passion for hacking and bug bounty work. He explains his method for finding bugs in Microsoft products—particularly in identity systems—and why identity is such a valuable target for attackers. Felix also shares highlights from the Zero Day Quest event, where he focused on building connections, learning from Microsoft engineers, and experiencing the collaborative side of the security community.
In This Episode You Will Learn:
Why identity-based bugs are especially valuable and dangerous in the security world
When breaking identity controls can be the key to pivoting through an entire system
How SharePoint's concept of "virtual files" impacts vulnerability validation
Some Questions We Ask:
What was your first bug bounty experience?
Can you explain what the flash challenges were and what your experience was like?
Do you think sharing bug ideas could cost you a bounty?
Resources:
View Felix Boulet on LinkedIn
View Wendy Zenone on LinkedIn
View Nic Fillingham on LinkedIn
Related Microsoft Podcasts:
Microsoft Threat Intelligence Podcast
Afternoon Cyber Tea with Ann Johnson
Uncovering Hidden Risks
Discover and follow other Microsoft podcasts at microsoft.com/podcasts
The BlueHat Podcast is produced by Microsoft and distributed as part of N2K media network.
