What we are up against. Have you ever wondered how hackers find bugs on websites? What does it take to hunt for bugs and responsibly disclose them? In this article, we will be focusing mainly on a single bug called DOM-based XSS (cross-site scripting), which is found very often on web pages. This XSS bug alone has paid out 4.2 million dollars to hackers on the HackerOne platform, according to 2020 statistics. After reading this article, you will be able to find this bug faster. You will understa...