High frequency security bug hunting: 120 days, 120 bugs

1) Intro & Motivations 2) Findings 3) Analysis 4) Methodology 5) Advice 6) Notable bug I: Second order subdomain/page takeovers 7) Notable bug II: DOM Based XSS via subtitle tracks 1) Intro & Motivations At the start of of this year, I set myself a personal goal of finding

Click to view the original at