Bug Bounty & VDP Participation
Active participation in bug bounty programs and vulnerability disclosure programs. Collection of security findings and vulnerability reports from real-world web applications.
OAuth Misconfiguration at Jobber
Discovered OAuth misconfiguration in Jobber's oauth flow allowing unauthorized account access. The vulnerability permitted attackers to bypass the standard OAuth redirect validation, potentially enabling account takeover attacks.
Web Cache Deception at Contabo
