Following are some of the write-ups of Bugs I have found.

1. How I found IDOR on Twitter’s Acquisition –

2. How I was able to Bypass XSS Protection on HackerOne’s Private Program

3. HackerOne URL Redirection

4. Microsoft XSS

5. Shopify XSS

6. Hackerrank Stored XSS

7. Hackerrank XSS-2

8. SurveyMonkey XSS-1

8. SurveyMonkey XSS-2

8. SurveyMonkey XSS-3

9. Internshala CSRF to Account Takeover

10. Eventbrite CSRF

11. Giftcards CSRF

12. Yanomo Broken Authentication