This talk is a fun, fast-moving survey of some of the best recent bug bounty finds against some of the largest and best-known applications in the world. Some of the bugs are really simple, some are super complex, but all are entertaining. As we go through these, we’ll take a look at what caused the issue, and how to fix it.
John is currently a Principal Member of Technical Staff at Oracle. His previous positions have been focused on secure software engineering, in the technology, financial and defense sectors. He has spent his entire career in software development and security. In his spare time, he leads the OWASP AppSensor project.