How response Manipulation got me a little, but sweet Bounty

When Certificates Fail: A Story of Bypassed MFA in Remote Access

2FA Bypass - IDN Mischief

How I Got $150 on HackerOne for My First Bug

Data Theft in Salesforce: Manipulating Public Links

SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff