Web Security Academy - your questions answered We're nearly at 200 labs on our ever-popular Web Security... 2020-12-04 00:31:12 | 阅读: 366 | 收藏 | portswigger.net burp security academy

The latest PortSwigger research is coming to Black Hat Europe 2020 At PortSwigger, we are research obsessed - from the traini... 2020-12-03 00:44:51 | 阅读: 401 | 收藏 | portswigger.net portswigger gareth kettle heyes conferences

Burp Suite Enterprise Edition: six months of new features Over the past six months, we've added a number of new feat... 2020-12-01 00:20:00 | 阅读: 389 | 收藏 | portswigger.net burp cloud sequences security scanners

PortSwigger is recognized as a 2020 Gartner Peer Insights Customers' Choice for Application Security Testing* The PortSwigger team is excited to announce that we have b... 2020-11-13 23:42:51 | 阅读: 336 | 收藏 | portswigger.net security burp portswigger reviews shape

Evading defences using VueJS script gadgets Published: 12 October 2020 at 13:00 UTC... 2020-10-12 22:00:00 | 阅读: 354 | 收藏 | portswigger.net vuejs noscript teleport mutation xmp

Bypassing DOMPurify again with mutation XSS Published: 07 October 2020 at 14:17 UTC... 2020-10-07 23:17:50 | 阅读: 283 | 收藏 | portswigger.net mglyph dompurify mxss chrome mutation

Burp Suite tips from power user and "hackfluencer" Stök In his own words, Stök is "that hacker that your friends t... 2020-09-29 23:29:41 | 阅读: 336 | 收藏 | portswigger.net burp stök intruder repeater

Redefining Impossible: XSS without arbitrary JavaScript Published: 23 September 2020 at 13:01 UTC... 2020-09-23 22:01:53 | 阅读: 360 | 收藏 | portswigger.net charcodeat behaviour matched loaded injection

Finding your first bug: bounty hunting tips from the Burp Suite community More and more people are getting into bug bounty hunting.... 2020-08-26 21:25:38 | 阅读: 487 | 收藏 | portswigger.net advice security james hunters academy

Security is everybody's problem: The key to breaking the AppSec barrier. 2020-08-21 00:00:27 | 阅读: 162 | 收藏 | portswigger.net

When alert fails: exploiting transient events Published: 11 August 2020 at 13:01 UTC... 2020-08-11 22:01:53 | 阅读: 276 | 收藏 | portswigger.net sendbeacon onpagehide onunload yourid navigator

Web Cache Entanglement: Novel Pathways to Poisoning Published: 05 August 2020 at 18:30 UTC... 2020-08-06 03:30:00 | 阅读: 294 | 收藏 | portswigger.net 1host poisoning akamai comhttp caches

The state of DevSecOps: the latest stats and trends in 2020 It's been 8 years now since Neil MacDonald coined the term... 2020-08-01 00:49:37 | 阅读: 337 | 收藏 | portswigger.net security adoption hype respondents

Three priorities every AppSec leader should be focused on The challenges faced by AppSec managers in the current dig... 2020-07-27 22:50:32 | 阅读: 264 | 收藏 | portswigger.net security appsec toward agile

What steps can you take toward evolving your organization's security maturity? 2020-07-17 22:25:34 | 阅读: 166 | 收藏 | portswigger.net

Attacking and defending JavaScript sandboxes Published: 15 July 2020 at 13:12 UTC... 2020-07-15 22:12:35 | 阅读: 447 | 收藏 | portswigger.net proxy freeze generators 1337

Burp Suite roadmap update: July 2020 We’re half-way through 2020, and we’ve made a lot of progr... 2020-07-14 20:22:26 | 阅读: 275 | 收藏 | portswigger.net burp wip roadmap underway analysis

Escaping JavaScript sandboxes with parsing issues Published: 10 July 2020 at 13:16 UTC... 2020-07-10 22:16:39 | 阅读: 257 | 收藏 | portswigger.net 10ffdc escapes caja treated

A one million milestone for the Web Security Academy 13 years ago, I wrote The Web Application Hacker’s Handboo... 2020-05-26 22:55:25 | 阅读: 306 | 收藏 | portswigger.net academy security milestone portswigger marks

Documenting the impossible: Unexploitable XSS labs Published: 22 May 2020 at 13:08 UTC... 2020-05-22 22:08:28 | 阅读: 417 | 收藏 | portswigger.net injection solved cheat frameset beat