Community

XSS and bug bounty

New tool for finding mutated XSS, $20k Chromium sandbox escape, Live bug bounty results from Ekoparty – ethical hacker news roundup

YesWeHack vulnerability triage chief Adrien Jeanneau on the art of triaging bug bounty vulnerability reports in this YesWeHack interview

‘Happy hunters equal happy customers and vice versa’: YesWeHack vulnerability triage chief Adrien Jeanneau on creating a virtuous Bug Bounty circle

Ethical hacker HakuPiku talks on camera to YesWeHack about his Bug Bounty career and his preference for hacking Android apps and open-source code

‘I like Android apps and open-source code’: HakuPiku on Bug Bounty, CTFs and his favourite targets

Web timing attacks, Apache HTTP confusion attacks, email parsing discrepancies – ethical hacker news roundup

Hacking for €10k rewards and a secure open source ecosystem: Bug Bounty opportunities from the Sovereign Tech Fund

ORM leaks, CSRF is alive, lockpicking lessons – ethical hacker news roundup

Sam Curry modem masterclass, PHP threat to Windows Servers, Calls for AI safety Bug Bounties – ethical hacker news roundup

YesWeHack Bug Bounty Hunter RL

‘Hunters’ biggest mistake? Expecting immediate results’: ‘RL’ on building a Bug Bounty career

‘I stay on targets for a long, long time’: Chackal and Serizao on passion, persistence and partnerships in Bug Bounty

‘Adapt payloads to your targets’: Brumens’ Bug Bounty tips for newbies

YesWeHack Bug Bounty Hunter Icare

‘Be curious, be persistent’: Icare on thriving as a Bug Bounty hunter

YesWeHack hunter achievements: Unveiling the Galactic Guardians series