I was recently reading about bug bounty hunter who made $60K while Pawnium Bug Bounty Contest. Thought of digging into what techniques they used to find bugs, but was left blank.

How do they find bugs and how do they check the source code. What might be their background ( language profiency ).
What technologies they used to find bugs.

Just curious about bug hunting.

I interviewed a bug hunter at the end of last year for PC Pro magazine, so you might find some of what he had to say of interest. The interview is here, and a broader feature about zero-day bounty hunters is here.

@happygeek: Thanx :-)

I interviewed a bug hunter at the end of last year for PC Pro magazine,

Well i got your point. I was looking for the technical details. Let me get this straight.

How do you find vulnerabilities, for ex is XSS present in Javascript ?
As far as Chrome Browser is concerned what technique is used in them ?

Thanx.