How I got a Bug At Apple that lead’s to takeover accounts of any user who view my profile

Self-XSS to ATO via Site Features

Interesting Story of an Account Takeover Vulnerability

How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack

Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities

Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN