> For the complete documentation index, see [llms.txt](https://gowthams.gitbook.io/bughunter-handbook/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://gowthams.gitbook.io/bughunter-handbook/list-of-vulnerabilities-bugs/ato.md).

# Account Takeover

**Blogs / Articles:**

* [**https://medium.com/@vasuyadav0786/5-ways-to-do-ato-in-a-single-website-cfe7e5da987e**](https://medium.com/@vasuyadav0786/5-ways-to-do-ato-in-a-single-website-cfe7e5da987e)
* [**https://t.co/19UaCTiPqo?amp=1**](https://t.co/19UaCTiPqo?amp=1)
* [**https://medium.com/@gguzelkokar.mdbf15/xss-via-account-takeover-in-e-signature-feature-worth-2500-435f3f8325bf**](https://medium.com/@gguzelkokar.mdbf15/xss-via-account-takeover-in-e-signature-feature-worth-2500-435f3f8325bf)
* [**https://www.cobalt.io/blog/cobalt-pentest-case-study-oauth-redirect-to-account-takeover**](https://www.cobalt.io/blog/cobalt-pentest-case-study-oauth-redirect-to-account-takeover)

**Cheatsheets / Guides:**

**Tips / Twitter Threads:**

* <https://twitter.com/ehsayaan/status/1255702298044448769>

**Other References:**

*

![](/files/-MIAMtzqQLK8WiI40eJp)
