Top 10 web hacking techniques of 2022 - nominations open Published: 04 January 2023 at 13:52 UTC... 2023-1-4 21:52:52 | 阅读: 30 | 收藏 | PortSwigger Research - portswigger.net nominations security ten nominate shortlist

Browser powered scanning 2.0 Tom Shelton-Lefley |15 December 2... 2022-12-15 22:30:0 | 阅读: 24 | 收藏 | PortSwigger Blog - portswigger.net burp wheel chromium scratch desk

New Burp Suite API: we want your feedback! Sean Burns |08 December 2022 at 1... 2022-12-8 18:45:4 | 阅读: 21 | 收藏 | PortSwigger Blog - portswigger.net burp montoya richer exciting bapp

The Burp challenge Emma Stocks |30 November 2022 at... 2022-11-30 17:35:52 | 阅读: 43 | 收藏 | portswigger.net thursday winners draw burp prize

Hijacking service workers via DOM Clobbering Published: 29 November 2022 at 14:00 UTC... 2022-11-29 22:0:2 | 阅读: 47 | 收藏 | portswigger.net sw cdndomain invader innertext

Stealing passwords from infosec Mastodon - without bypassing CSP Published: 15 November 2022 at 14:00 UTC... 2022-11-15 22:0:3 | 阅读: 30 | 收藏 | portswigger.net aria abbr mastodon seemed tabindex

Detecting web message misconfigurations for cross-domain credential theft Published: 09 November 2022 at 14:13 UTC... 2022-11-9 22:13:0 | 阅读: 25 | 收藏 | portswigger.net invader supersecret breakpoints

Safari is hot-linking images to semi-random websites Published: 31 October 2022 at 14:58 UTC... 2022-10-31 22:58:0 | 阅读: 25 | 收藏 | portswigger.net zon loaded happening payload seemed

Free: Dastardly from Burp Suite Matt Atkinson |27 October 2022 at... 2022-10-27 21:3:30 | 阅读: 29 | 收藏 | portswigger.net dastardly security burp analysis noise

Coming very soon: Dastardly, from Burp Suite Matt Atkinson |27 October 2022 at... 2022-10-27 21:3:30 | 阅读: 23 | 收藏 | portswigger.net seven burp dastardly security matt

Meet PortSwigger's first women in tech scholars Emma Stocks |26 October 2022 at 1... 2022-10-26 20:43:32 | 阅读: 15 | 收藏 | portswigger.net scholarship portswigger career charlotte

HTTP/3 connection contamination: an upcoming threat? Published: 19 October 2022 at 13:28 UTC... 2022-10-19 21:28:9 | 阅读: 32 | 收藏 | portswigger.net wordpress proxy coalescing reverse wildcard

Our favourite community contributions to the XSS cheat sheet Published: 03 October 2022 at 14:28 UTC... 2022-10-3 22:28:12 | 阅读: 37 | 收藏 | portswigger.net cheat hahwul sheetnumber angularjs bypass

Making HTTP header injection critical via response queue poisoning Published: 22 September 2022 at 14:00 UTC... 2022-9-22 22:0:0 | 阅读: 32 | 收藏 | portswigger.net injection 20http desync 20redacted 0ahost

The seventh way to call a JavaScript function without parentheses Published: 12 September 2022 at 13:00 UTC... 2022-9-12 21:0:0 | 阅读: 26 | 收藏 | portswigger.net tagged x281337 1337 x29

How to turn security research into profit: a CL.0 case study Published: 06 September 2022 at 12:55 UTC... 2022-9-6 20:55:0 | 阅读: 32 | 收藏 | portswigger.net desync 7content bounties security

Using Hackability to uncover a Chrome infoleak Published: 01 September 2022 at 13:00 UTC... 2022-9-1 21:0:0 | 阅读: 24 | 收藏 | portswigger.net blank baseuri inspector sop

Burp Suite price increases Emma Stocks |31 August 2022 at 07... 2022-8-31 15:47:54 | 阅读: 23 | 收藏 | portswigger.net burp security prices 999

Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling Published: 10 August 2022 at 18:00 UTC... 2022-8-11 02:0:0 | 阅读: 69 | 收藏 | portswigger.net desync 1host client victim csd

Framing without iframes Published: 27 July 2022 at 14:57 UTC... 2022-7-27 22:57:48 | 阅读: 23 | 收藏 | portswigger.net portswigger cheat chrome framing movie