Peter Yaworski - Real-World Bug Hunting: A Field Guide to Web Hacking

[GuDron]

Real-World Bug Hunting: A Field Guide to Web Hacking
Peter Yaworski (2019)

You'll learn about the most common types of bugs like cross-site scripting, insecure direct object references, and server-side request forgery. Using real-life case studies of rewarded vulnerabilities from applications like Twitter, Facebook, Google, and Uber, you'll see how hackers manage to invoke race conditions while transferring money, use URL parameter to cause users to like unintended tweets, and more.