View on GitHub

References to talks

  1. “Vulnerabilities of mobile OAuth 2.0”:
  2. “Access control vulnerabilities in GraphQL APIs” at OFFZONE 2019, Moscow. Slides available in English, recording available in Russian.

References to articles and write-ups

  1. “Security of mobile OAuth 2.0” [EN|RU]
  2. “GraphQL Voyager as a tool for API security testing” [EN|RU].
  3. “How to cut taxes for bug hunters” (“Охота за уязвимостями на 7% эффективнее”) [RU]

Mozhet ne udalos' :(