Practice
Cases
Real situations from QA Automation and Application Security: what went wrong, how it was diagnosed, what was changed
Below are examples of typical cases from product development. No company names or sensitive details — but with engineering logic: symptom → root cause → fix.
-
10,000 points in 1 second: how an API allowed an economy hack
Black-box audit of Game API & Admin API. CRITICAL: points-awarding business logic bypass in
POST /v1/scoreswith emptypathPoints(leaderboard fraud) + HIGH: mass assignment inPATCH /v1/me/game-state(monetization bypass). Open case →
Want a review of your case?
Share the context and constraints — I’ll suggest where to look for the root cause and which checks/automated tests will give the most impact.
Message on Telegram