Abstract

Did you know that Google gave out $410,000 last year for over 1,100 bugs? Did you know that Facebook paid $40,000 in just three weeks? I personally made more than $4K from Google and Facebook by reporting just 7 bugs. These bugs belong to a category of web vulnerabilities called ‘UI Redressing’ vulnerabilities. And these are serious enough for companies to pay money to those who report them. Want to know how to identify, exploit and fix these bugs in applications? then you must attend this talk where I go over my personal real-world experience on how I discovered these issues, what approach to follow and how to create a reliable PoC.