AngularJS CSP bypass in 56 characters read file error: read notes: is a directory... 2019-10-14 22:04:06 | 阅读: 143 | 收藏 | portswigger.net orderby angularjs payload bypass signifies

XS-Leak: Leaking IDs using focus read file error: read notes: is a directory... 2019-10-08 22:35:53 | 阅读: 167 | 收藏 | portswigger.net trynextid onblur test2 subdomain1 portswigger

HTTP Desync Attacks: what happened next read file error: read notes: is a directory... 2019-10-03 21:54:49 | 阅读: 187 | 收藏 | portswigger.net desync positives smuggler intruder victim

One XSS cheatsheet to rule them all read file error: read notes: is a directory... 2019-09-27 00:00:00 | 阅读: 122 | 收藏 | portswigger.net tabindex autofocus onfocus php someurl

HTTP Desync Attacks: Request Smuggling Reborn | Blog - PortSwigger AbstractHTTP requests are traditionally viewed as isolated... 2019-08-17 19:41:48 | 阅读: 154 | 收藏 | portswigger.net 1host victim comcontent newrelic chunked

HTTP Desync Attacks: Request Smuggling Reborn Published: 07 August 2019 at 21:00 UTC... 2019-08-08 06:00:00 | 阅读: 100 | 收藏 | portswigger.net 1host victim comcontent newrelic chunked

Bypassing CSP with policy injection Published: 05 June 2019 at 13:10 UTC... 2019-06-05 22:10:20 | 阅读: 264 | 收藏 | portswigger.net directive bypass directives chrome

Provoking browser quirks with behavioural fuzzing Published: 28 May 2019 at 13:33 UTC... 2019-05-28 22:33:27 | 阅读: 141 | 收藏 | portswigger.net hackvertor 1114110 behaviour x10fffe

Abusing jQuery for CSS powered timing attacks Published: 22 May 2019 at 13:15 UTC... 2019-05-22 22:15:44 | 阅读: 159 | 收藏 | portswigger.net selector jquery hashchange selectors

XSS without parentheses and semi-colons Published: 15 May 2019 at 14:54 UTC... 2019-05-15 23:54:03 | 阅读: 110 | 收藏 | portswigger.net uncaught semi 1337 parentheses assignment

Introducing the Web Security Academy We are pleased to announce the launch of the Web Security... 2019-04-02 22:00:29 | 阅读: 101 | 收藏 | portswigger.net security academy announce

Top 10 web hacking techniques of 2018 Published: 27 February 2019 at 15:45 UTC... 2019-02-28 00:45:56 | 阅读: 115 | 收藏 | portswigger.net nominations php security formula voting

Turbo Intruder: Embracing the billion-request attack Published: 25 January 2019 at 11:17 UTC... 2019-01-25 20:17:22 | 阅读: 191 | 收藏 | portswigger.net intruder turbo burp network boring

Top 10 web hacking techniques of 2018 - nominations open Published: 03 January 2019 at 14:43 UTC... 2019-01-03 23:43:33 | 阅读: 89 | 收藏 | portswigger.net injection security nominations dhiraj chrome

Exposing Intranets with reliable Browser-based Port scanning Published: 09 November 2018 at 14:47 UTC... 2018-11-09 23:47:51 | 阅读: 134 | 收藏 | portswigger.net chrome anchor iframes validports

Top 10 Web Hacking Techniques of 2017 Published: 11 October 2018 at 14:40 UTC... 2018-10-11 23:40:39 | 阅读: 90 | 收藏 | portswigger.net security voting whitepaper ssrf nominations

Burp 2.0: How do I throttle requests? When performing scans, you might want to limit the rate at... 2018-10-11 00:04:26 | 阅读: 132 | 收藏 | portswigger.net burp throttling spider xyou applicable

Bypassing WAFs and cracking XOR with Hackvertor Published: 09 October 2018 at 14:53 UTC... 2018-10-09 23:53:21 | 阅读: 124 | 收藏 | portswigger.net hackvertor repeater 01011010 00110101 conversion

Bypassing Web Cache Poisoning Countermeasures Published: 05 October 2018 at 15:00 UTC... 2018-10-06 00:00:50 | 阅读: 115 | 收藏 | portswigger.net poisoning 1host partyx tesla bypass

Burp 2.0: Where is live scanning? Burp 1.x had some features tucked away within the Spider a... 2018-10-04 23:00:00 | 阅读: 128 | 收藏 | portswigger.net burp proxy spider introduces monitored