Eduardo "sirdarckcat" Vela Nava leads Google's Product Security Response Team, and is a professional slacker that does web security research when he can escape from his day job. Presented in several industry conferences, and focused mostly on offensive web security. Loves collecting vulnerabilities and having fun with mitigations.
Don't Trust the DOM: Bypassing XSS Mitigations via Script Gadgets