A curated list of awesome web security articles, resources and other awesomeness.
- Samesite by Default and What It Means for Bug Bounty Hunters
- Information Leaks via Safari’s Intelligent Tracking Prevention
- XSS in GMail’s AMP4Email via DOM Clobbering
- From Markdown to RCE in Atom
- Dangling markup injection
- HTTP Request Smuggler
- (January 21, 2020) - Google Bug Bounty: CSRF in learndigital.withgoogle.com