Bypassing AngularJS bind HTML Published: 07 November 2019 at 14:51 UTC... 2019-11-07 23:51:15 | 阅读: 227 | 收藏 | portswigger.net angularjs xlink clickable subdomain1 bypass

Responsible denial of service with web cache poisoning Published: 24 October 2019 at 12:13 UTC... 2019-10-24 21:13:55 | 阅读: 196 | 收藏 | portswigger.net poisoning earned hackerone

AngularJS CSP bypass in 56 characters Published: 14 October 2019 at 13:04 UTC... 2019-10-14 22:04:06 | 阅读: 138 | 收藏 | portswigger.net orderby angularjs payload bypass signifies

XS-Leak: Leaking IDs using focus Published: 08 October 2019 at 13:35 UTC... 2019-10-08 22:35:53 | 阅读: 163 | 收藏 | portswigger.net trynextid onblur test2 subdomain1 portswigger

HTTP Desync Attacks: what happened next Published: 03 October 2019 at 12:54 UTC... 2019-10-03 21:54:49 | 阅读: 182 | 收藏 | portswigger.net desync positives smuggler intruder victim

One XSS cheatsheet to rule them all Published: 26 September 2019 at 15:00 UTC... 2019-09-27 00:00:00 | 阅读: 118 | 收藏 | portswigger.net tabindex autofocus onfocus php someurl

HTTP Desync Attacks: Request Smuggling Reborn | Blog - PortSwigger AbstractHTTP requests are traditionally viewed as isolated... 2019-08-17 19:41:48 | 阅读: 150 | 收藏 | portswigger.net 1host victim comcontent newrelic chunked

HTTP Desync Attacks: Request Smuggling Reborn Published: 07 August 2019 at 21:00 UTC... 2019-08-08 06:00:00 | 阅读: 95 | 收藏 | portswigger.net 1host victim comcontent newrelic chunked

Bypassing CSP with policy injection Published: 05 June 2019 at 13:10 UTC... 2019-06-05 22:10:20 | 阅读: 257 | 收藏 | portswigger.net directive bypass directives chrome

Provoking browser quirks with behavioural fuzzing Published: 28 May 2019 at 13:33 UTC... 2019-05-28 22:33:27 | 阅读: 137 | 收藏 | portswigger.net hackvertor 1114110 behaviour x10fffe

Abusing jQuery for CSS powered timing attacks Published: 22 May 2019 at 13:15 UTC... 2019-05-22 22:15:44 | 阅读: 155 | 收藏 | portswigger.net selector jquery hashchange selectors

XSS without parentheses and semi-colons Published: 15 May 2019 at 14:54 UTC... 2019-05-15 23:54:03 | 阅读: 104 | 收藏 | portswigger.net uncaught semi 1337 parentheses assignment

Introducing the Web Security Academy We are pleased to announce the launch of the Web Security... 2019-04-02 22:00:29 | 阅读: 97 | 收藏 | portswigger.net security academy announce

Top 10 web hacking techniques of 2018 Published: 27 February 2019 at 15:45 UTC... 2019-02-28 00:45:56 | 阅读: 111 | 收藏 | portswigger.net nominations php security formula voting

Turbo Intruder: Embracing the billion-request attack Published: 25 January 2019 at 11:17 UTC... 2019-01-25 20:17:22 | 阅读: 181 | 收藏 | portswigger.net intruder turbo burp network boring

Top 10 web hacking techniques of 2018 - nominations open Published: 03 January 2019 at 14:43 UTC... 2019-01-03 23:43:33 | 阅读: 85 | 收藏 | portswigger.net injection security nominations dhiraj chrome

Exposing Intranets with reliable Browser-based Port scanning Published: 09 November 2018 at 14:47 UTC... 2018-11-09 23:47:51 | 阅读: 129 | 收藏 | portswigger.net chrome anchor iframes validports

Top 10 Web Hacking Techniques of 2017 Published: 11 October 2018 at 14:40 UTC... 2018-10-11 23:40:39 | 阅读: 86 | 收藏 | portswigger.net security voting whitepaper ssrf nominations

Burp 2.0: How do I throttle requests? When performing scans, you might want to limit the rate at... 2018-10-11 00:04:26 | 阅读: 127 | 收藏 | portswigger.net burp throttling spider xyou applicable

Bypassing WAFs and cracking XOR with Hackvertor Published: 09 October 2018 at 14:53 UTC... 2018-10-09 23:53:21 | 阅读: 116 | 收藏 | portswigger.net hackvertor repeater 01011010 00110101 conversion