Nitectf Web un(documented)-js-api DOM clobbering, domain takeovers, shared process slowdowns, and CSS exfiltration, oh my!
Sekaictf Web Issues: Another JWT Challenge Oh, JWTs. A well-intentioned standard, for sure ā but my god, the number of implementation mistakes you can make.