Explore methods for discovering high-impact vulnerabilities in OAuth 2.0 integrations through this 50-minute conference talk. Delve into the history and basics of OAuth 2.0, understand its various grant types, and learn where it's commonly implemented. Uncover secret methodologies for token stealing, code stealing, CSRF attacks, and token impersonation. Examine real-world case studies, proof of concepts, and attack workflows to enhance your understanding of OAuth 2.0 security. Gain valuable insights into identifying and exploiting vulnerabilities in OAuth 2.0 implementations for ethical hacking and bug bounty purposes.