Research Grant
Trying something new....
Google sometimes is generous enough to provide me with research grants so that I can spend more time researching on product that I like and see if I can find vulnerabilities. Even if I do not find any vulnerabilities, I end up writing a document and submit it to Google because I want to prove that their money was used for good use and that I spent some quality time to research the product trying to find vulnerabilities on it. Even though bug bounty is a competitive market, I like to think that sharing what I tried to test can help the next researcher probably find a valid vulnerability which could help secure Google. Due to this, I have decided that after 15 days of me submitting my research document to Google, I will publish the document here on my blog for others to check out and read. Let me know what you think!
Product tested: Google Hangouts Chat