Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
Blokirali ste korisnika/cu @PortSwiggerRes
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @PortSwiggerRes
-
PortSwigger Research proslijedio/la je Tweet
@ngalongc,@EdOverflow, and I are starting a new security blog. In our first write-up, we will discuss the impact of "SameSite by default" and how it affects web app sec. Feel free to request future topics you would like us to cover. https://blog.reconless.com/samesite-by-default/ …pic.twitter.com/5R23YmpksT
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Many thanks for all your votes! The community has spoken, and selected 15 nominees for the Top 10 Web Hacking Techniques of 2019. We've just launched the final stage, in which the panel -
@irsdl,@filedescriptor,@Agarri_FR and@albinowax - will confer and select the final top 10Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
SVG animate XSS vector by
@garethheyeshttps://portswigger.net/research/svg-animate-xss-vector …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
PortSwigger Research proslijedio/la je Tweet
We've added 11 new XSS labs, with learning materials. There is new content on CSP, dangling markup injection, and escaping the AngularJS sandbox.https://portswigger.net/web-security/cross-site-scripting …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
PortSwigger Research proslijedio/la je Tweet
Did you know that the address '<a@b.com>c@d.com' when given to SES will send an email to a@b.com? this could lead to interesting exploit scenarios with some email parsing libraries/code https://nathandavison.com/blog/exploiting-email-address-parsing-with-aws-ses …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
PortSwigger Research proslijedio/la je Tweet
HTTP Request Smuggler now supports overriding the request method!
@eur0pa_ spotted that using an alternative method like DELETE can sometimes let you exploit otherwise-secure targets. (If you accidentally delete someone's homepage, that's on your head!)https://github.com/PortSwigger/http-request-smuggler …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
This weekend is your last chance to vote for the Top 10 (new) Web Hacking Techniques of 2019! Voting closes Monday.https://portswigger.net/polls/top-10-web-hacking-techniques-2019 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
PortSwigger Research proslijedio/la je Tweet
This blind XXE technique for out-of-band exfiltration was one of the core use cases we had in mind when developing Burp Collaborator:https://portswigger.net/web-security/xxe/blind/lab-xxe-with-out-of-band-exfiltration …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ok let's close the script. That can't possibly work right? <script> x = '<!--<script>' </script>/-alert(1) </script>
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
PortSwigger Research proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
We're really quite excited for HTTP/2 support in
@Burp_Suitehttps://portswigger.net/blog/burp-suite-roadmap-for-2020 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Voting is now open for the top 10 new web hacking techniques of 2019:https://portswigger.net/polls/top-10-web-hacking-techniques-2019 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
PortSwigger Research proslijedio/la je Tweet
Just posted Remote Code Execution in Three Acts: Chaining Exposed Actuators and H2 Database Aliases in Spring Boot 2. Using a payload containing three different programming languages :)https://spaceraccoon.dev/remote-code-execution-in-three-acts-chaining-exposed-actuators-and-h2-database …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
PortSwigger Research proslijedio/la je Tweet
This weekend is your last chance to nominate research for the top 10 new web hacking techniques of 2019. Voting begins on Monday!https://portswigger.net/research/top-10-web-hacking-techniques-of-2019-nominations-open …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
PortSwigger Research proslijedio/la je Tweet
Released a new version of
#J2EEScan with multiple improvements:70+ unique#security checks, improved scan performance, new fuzzy logic to bypass weak WAF rules.#DAST#Spring#Secdevops#Burpsuite cc@Burp_Suite@PortSwiggerRes. https://github.com/ilmila/J2EEScan pic.twitter.com/XAHNKSCGPO
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
PortSwigger Research proslijedio/la je Tweet
For the sake of exercising, I looked up some web challenges in a
#tetctf and noticed a cool SQLi one "Secure System". I discovered some cool stuff that you will not find it in tutorials so check it out!
https://medium.com/@terjanq/blind-sql-injection-without-an-in-1e14ba1d4952 …
#ctf#bugbountytips#sqlPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
PortSwigger Research proslijedio/la je Tweet
The top 10 web hacking techniques of 2019 has some new contenders, thanks to community nominations. Keep them coming!https://portswigger.net/research/top-10-web-hacking-techniques-of-2019-nominations-open …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nominations are now open for the top 10 new web hacking techniques of 2019:https://portswigger.net/research/top-10-web-hacking-techniques-of-2019-nominations-open …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
PortSwigger Research proslijedio/la je Tweet
NGINX fixed the security issue that
@francisco_oca and I found recently. See our report: https://bertjwregeer.keybase.pub/2019-12-10%20-%20error_page%20request%20smuggling.pdf … The fix was made public here: https://hg.nginx.org/nginx/rev/d0d6cf5031a3 … We found various places that provided recommended configurations that are vulnerable.Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
PortSwigger Research proslijedio/la je Tweet
Based on community feedback,
@BApp_Store popularity, and the opinions of@PortSwiggerRes, we've compiled this list of the top 10@Burp_Suite extensions for pen testers.https://portswigger.net/testers/penetration-testing-tools …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.