Aitor Ciberseguridad y Hacking Ético

OS command injection, simple case – PortSwigger Write Up

September 08, 2022

En este post vamos a estar resolviendo el laboratorio de PortSwigger: “OS command injection, simple case.

Blind OS command injection with time delays – PortSwigger Write Up

September 08, 2022

En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Blind OS command injection with time delays.

Burpsuite JavaScript OS Command Injection Practitioner

Blind OS command injection with out-of-band interaction – PortSwigger Write Up

September 08, 2022

En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Blind OS command injection with out-of-band interaction.

Burpsuite JavaScript OS Command Injection Practitioner

Blind OS command injection with output redirection – PortSwigger Write Up

September 08, 2022

En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Blind OS command injection with output redirection.

Burpsuite JavaScript OS Command Injection Practitioner

Reflected XSS into a JavaScript string with single quote and backslash escaped – PortSwigger Write Up

September 07, 2022

En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Reflected XSS into a JavaScript string with single quote and backslash escaped.

Burpsuite JavaScript XSS Practitioner

CSRF vulnerability with no defenses – PortSwigger Write Up

September 07, 2022

En este post vamos a estar resolviendo el laboratorio de PortSwigger: “CSRF vulnerability with no defenses.

Burpsuite JavaScript CSRF Apprentice

Reflected XSS into attribute with angle brackets HTML-encoded – PortSwigger Write Up

September 05, 2022

En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Reflected XSS into attribute with angle brackets HTML-encoded.

Burpsuite JavaScript XSS Apprentice

Manipulating WebSocket messages to exploit vulnerabilities – PortSwigger Write Up

September 05, 2022

En este post vamos a estar resolviendo el laboratorio de PortSwigger: “Manipulating WebSocket messages to exploit vulnerabilities.

Burpsuite JavaScript WebSocket Apprentice

DOM XSS in document.write sink using source location.search inside a select element – PortSwigger Write Up

September 05, 2022

En este post vamos a estar resolviendo el laboratorio de PortSwigger: “DOM XSS in document.write sink using source location.search inside a select element.

Burpsuite JavaScript XSS Practitioner

DOM XSS in AngularJS expression with angle brackets and double quotes HTML-encoded – PortSwigger Write Up

September 05, 2022

En este post vamos a estar resolviendo el laboratorio de PortSwigger: “DOM XSS in AngularJS expression with angle brackets and double quotes HTML-encoded.

Burpsuite JavaScript XSS Practitioner

Aitorgg02

Artículos Recientes

OS command injection, simple case – PortSwigger Write Up

Blind OS command injection with time delays – PortSwigger Write Up

Blind OS command injection with out-of-band interaction – PortSwigger Write Up

Blind OS command injection with output redirection – PortSwigger Write Up

Reflected XSS into a JavaScript string with single quote and backslash escaped – PortSwigger Write Up

CSRF vulnerability with no defenses – PortSwigger Write Up

Reflected XSS into attribute with angle brackets HTML-encoded – PortSwigger Write Up

Manipulating WebSocket messages to exploit vulnerabilities – PortSwigger Write Up

DOM XSS in document.write sink using source location.search inside a select element – PortSwigger Write Up

DOM XSS in AngularJS expression with angle brackets and double quotes HTML-encoded – PortSwigger Write Up