Our favourite community contributions to the XSS cheat sheet Published: 03 October 2022 at 14:28 UTC... 2022-10-3 22:28:12 | 阅读: 40 | 收藏 | portswigger.net cheat hahwul sheetnumber angularjs bypass

Making HTTP header injection critical via response queue poisoning Published: 22 September 2022 at 14:00 UTC... 2022-9-22 22:0:0 | 阅读: 36 | 收藏 | portswigger.net injection 20http desync 20redacted 0ahost

The seventh way to call a JavaScript function without parentheses Published: 12 September 2022 at 13:00 UTC... 2022-9-12 21:0:0 | 阅读: 31 | 收藏 | portswigger.net tagged x281337 1337 x29

How to turn security research into profit: a CL.0 case study Published: 06 September 2022 at 12:55 UTC... 2022-9-6 20:55:0 | 阅读: 35 | 收藏 | portswigger.net desync 7content bounties security

Using Hackability to uncover a Chrome infoleak Published: 01 September 2022 at 13:00 UTC... 2022-9-1 21:0:0 | 阅读: 27 | 收藏 | portswigger.net blank baseuri inspector sop

Burp Suite price increases Emma Stocks |31 August 2022 at 07... 2022-8-31 15:47:54 | 阅读: 28 | 收藏 | portswigger.net burp security prices 999

Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling Published: 10 August 2022 at 18:00 UTC... 2022-8-11 02:0:0 | 阅读: 72 | 收藏 | portswigger.net desync 1host client victim csd

Framing without iframes Published: 27 July 2022 at 14:57 UTC... 2022-7-27 22:57:48 | 阅读: 26 | 收藏 | portswigger.net portswigger cheat chrome framing movie

Burp Suite certification: a year in review Emma Stocks |27 July 2022 at 08:5... 2022-7-27 16:56:8 | 阅读: 175 | 收藏 | portswigger.net burp certified security

Burp Suite roadmap update: July 2022 Matt Atkinson |21 July 2022 at 13... 2022-7-21 21:45:15 | 阅读: 36 | 收藏 | portswigger.net burp wip client progressing

PortSwigginar - 13 July A recap on “what’s new” within the product for those who h... 2022-7-15 19:32:15 | 阅读: 34 | 收藏 | portswigger.net burp activation licensing

New Repeater features to help you test more efficiently If you use Burp Suite Professional or Burp Suite Community... 2022-7-5 16:39:33 | 阅读: 36 | 收藏 | portswigger.net tabs burp repeater intruder grouping

Bypassing Firefox's HTML Sanitizer API Published: 29 June 2022 at 14:00 UTC... 2022-6-29 22:0:0 | 阅读: 32 | 收藏 | portswigger.net sanitizer portswigger filtered php malicious

PortSwigginar - 22 June Thank you to those who attended our recent PortSwigginar o... 2022-6-27 22:44:52 | 阅读: 35 | 收藏 | portswigger.net burp sso activation crawl

Widespread prototype pollution gadgets Published: 22 June 2022 at 13:17 UTC... 2022-6-22 21:17:0 | 阅读: 41 | 收藏 | portswigger.net pollution myobject invader cspp

Finding client-side prototype pollution with DOM Invader Last year we made it significantly easier to find DOM XSS,... 2022-6-20 20:37:0 | 阅读: 54 | 收藏 | portswigger.net pollution invader myobject client

How to see the impact installing BApps might have on Burp Suite If you've ever installed any Burp extensions from the BApp... 2022-6-16 21:50:53 | 阅读: 23 | 收藏 | portswigger.net bapp burp bapps estimate intensive

Bypassing CSP with dangling iframes Published: 14 June 2022 at 14:00 UTC... 2022-6-14 22:0:0 | 阅读: 46 | 收藏 | portswigger.net blank dangling chrome inspector markup

Launching the PortSwigginar Thank you to those who attended our recent PortSwigginar o... 2022-6-10 07:0:0 | 阅读: 18 | 收藏 | portswigger.net burp jira concurrent

Gin and Juice Shop: put your scanner to the test "Word". We heard that a lot of you have been having proble... 2022-5-16 21:44:1 | 阅读: 69 | 收藏 | portswigger.net burp shop juice carlos himself