Tale of Forgotten disclosure and lesson's learned.

This presentation takes you to a tour of how not to handle vulnerability disclosures and how not to add a third party library in your system without keeping a track on the upstream.

The presentation is visual version of blog post A story of forgotten disclosure and DOM XSS


Anant Shrivastava

Anant Shrivastava is a Information Security Consultant.
He specialize in Web Application Security, and Mobile Security.

He has been Speaker / Trainer at various conferences like

  • BlackHat USA - 2015, Europe - 2015
  • RuxCon 2015
  • Nullcon 2012,2015
  • C0c0n 2011,2012,2013,2014,2015
  • Rootconf 2014
  • Clubhack 2011
  • G0s 2013

He holds various certifications like

  • CEH
  • RHCE.

He is the project Lead for


Starts at Saturday May 16 2015, 11:10 AM. The sessions runs for about 1 hour.