Bypassing CSP via DOM clobbering Published: 05 June 2023 at 14:00 UTC... 2023-6-5 22:0:0 | 阅读: 5 | 收藏 | PortSwigger Research - portswigger.net clobbering invader ehy bypass

Ambushed by AngularJS: a hidden CSP bypass in Piwik PRO Published: 28 April 2023 at 12:00 UTC... 2023-4-28 20:0:0 | 阅读: 9 | 收藏 | PortSwigger Research - portswigger.net angularjs debugger bypass piwik mar

New: Burp Suite Enterprise Edition Pay as you scan pricing Matt Atkinson |25 April 2023 at 1... 2023-4-25 22:6:53 | 阅读: 11 | 收藏 | PortSwigger Blog - portswigger.net burp pays 999 pricing unlimited

New: Burp Suite Enterprise Edition Unlimited pricing Matt Atkinson |30 March 2023 at 1... 2023-3-30 21:17:12 | 阅读: 20 | 收藏 | PortSwigger Blog - portswigger.net unlimited pricing burp concurrent 999

The curl quirk that exposed Burp Suite & Google Chrome Published: 28 March 2023 at 13:13 UTC... 2023-3-28 21:13:51 | 阅读: 26 | 收藏 | PortSwigger Research - portswigger.net burp ssh albinowax portswigger malicious

Exploiting prototype pollution in Node without the filesystem Published: 23 March 2023 at 15:00 UTC... 2023-3-23 23:0:0 | 阅读: 11 | 收藏 | PortSwigger Research - portswigger.net pwnd academy pollution designing entrypoint

Burp Suite Enterprise Edition Power Tools: Unleashing the power to the command line, Python, and more Ollie Whitehouse |21 March 2023 a... 2023-3-21 22:30:0 | 阅读: 21 | 收藏 | PortSwigger Blog - portswigger.net shop ginandjuice catalog bseept iterable

Server-Side Prototype Pollution Scanner Gareth Heyes |13 March 2023 at 15... 2023-3-13 23:0:0 | 阅读: 19 | 收藏 | PortSwigger Blog - portswigger.net pollution burp spacing security

Server-side prototype pollution: Black-box detection without the DoS Published: 15 February 2023 at 16:30 UTC... 2023-2-16 00:30:0 | 阅读: 19 | 收藏 | PortSwigger Research - portswigger.net pollution preceding polluted library occurred

Top 10 web hacking techniques of 2022 Published: 08 February 2023 at 14:20 UTC... 2023-2-8 22:20:30 | 阅读: 52 | 收藏 | PortSwigger Research - portswigger.net security nominations desync poisoning client

Burp Suite roadmap update: January 2023 Matt Atkinson |27 January 2023 at... 2023-1-27 22:48:49 | 阅读: 25 | 收藏 | PortSwigger Blog - portswigger.net burp roadmap wip client

Packetlabs Ltd delivers advanced testing capabilities with Burp Suite Certified Practitioners Emma Stocks |27 January 2023 at 1... 2023-1-27 19:11:24 | 阅读: 13 | 收藏 | PortSwigger Blog - portswigger.net burp testers packetlabs ltd denis

Top 10 web hacking techniques of 2022 - nominations open Published: 04 January 2023 at 13:52 UTC... 2023-1-4 21:52:52 | 阅读: 19 | 收藏 | PortSwigger Research - portswigger.net nominations security ten nominate shortlist

Browser powered scanning 2.0 Tom Shelton-Lefley |15 December 2... 2022-12-15 22:30:0 | 阅读: 13 | 收藏 | PortSwigger Blog - portswigger.net burp wheel chromium scratch desk

New Burp Suite API: we want your feedback! Sean Burns |08 December 2022 at 1... 2022-12-8 18:45:4 | 阅读: 7 | 收藏 | PortSwigger Blog - portswigger.net burp montoya richer exciting bapp

The Burp challenge Emma Stocks |30 November 2022 at... 2022-11-30 17:35:52 | 阅读: 32 | 收藏 | portswigger.net thursday winners draw burp prize

Hijacking service workers via DOM Clobbering Published: 29 November 2022 at 14:00 UTC... 2022-11-29 22:0:2 | 阅读: 25 | 收藏 | portswigger.net sw cdndomain invader innertext

Stealing passwords from infosec Mastodon - without bypassing CSP Published: 15 November 2022 at 14:00 UTC... 2022-11-15 22:0:3 | 阅读: 15 | 收藏 | portswigger.net aria abbr mastodon seemed tabindex

Detecting web message misconfigurations for cross-domain credential theft Published: 09 November 2022 at 14:13 UTC... 2022-11-9 22:13:0 | 阅读: 11 | 收藏 | portswigger.net invader supersecret breakpoints

Safari is hot-linking images to semi-random websites Published: 31 October 2022 at 14:58 UTC... 2022-10-31 22:58:0 | 阅读: 12 | 收藏 | portswigger.net zon loaded happening payload seemed