Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Login
Top
New
Best
Ask
Show
Jobs
1.
▲
Targeting HTTP's Hidden Attack-Surface
(blog.portswigger.net)
207 points
skybrian
9 years ago
13 comments
2.
▲
Web Storage: the lesser evil for session tokens
(blog.portswigger.net)
195 points
kkl
10 years ago
69 comments
3.
▲
Executing non-alphanumeric JavaScript without parentheses
(blog.portswigger.net)
123 points
kkl
10 years ago
19 comments
4.
▲
Web App Hacker's Handbook 2nd Edition - Preview
(blog.portswigger.net)
70 points
wglb
15 years ago
14 comments
5.
▲
Bypassing CSP using polyglot JPEGs
(blog.portswigger.net)
43 points
inian
10 years ago
15 comments
6.
▲
Cracking the Lens: Targeting HTTP's Hidden Attack-Surface
(blog.portswigger.net)
36 points
j_s
9 years ago
discuss
7.
▲
Detecting and exploiting path-relative stylesheet import vulnerabilities
(blog.portswigger.net)
18 points
restlessmedia
11 years ago
discuss
8.
▲
JSON hijacking for the modern web
(blog.portswigger.net)
10 points
dsr12
10 years ago
discuss
9.
▲
Backslash Powered Scanning: Hunting Unknown Vulnerability Classes
(blog.portswigger.net)
4 points
cujanovic
10 years ago
discuss
10.
▲
Detecting and exploiting path-relative stylesheet import vulnerabilities
(blog.portswigger.net)
3 points
mbrubeck
11 years ago
discuss
11.
▲
When Security Features Collide
(blog.portswigger.net)
3 points
dsr12
9 years ago
discuss
12.
▲
JSON hijacking for the modern web
(blog.portswigger.net)
3 points
albinowax_
10 years ago
discuss
13.
▲
PortSwigger Web Security Blog: Server-Side Template Injection
(blog.portswigger.net)
3 points
gregmolnar
11 years ago
discuss
14.
▲
Microsoft Edge XSS Filter Bypass
(blog.portswigger.net)
2 points
rshetty10
10 years ago
1 comment
15.
▲
Burp Suite Free Edition v1.4 released
(blog.portswigger.net)
2 points
wglb
15 years ago
discuss
16.
▲
How I Accidentally Framed Myself for a Hacking Frenzy
(blog.portswigger.net)
2 points
kobayashi
9 years ago
discuss
17.
▲
Introducing Burp Collaborator: Web Security Testing
(blog.portswigger.net)
2 points
potench
10 years ago
discuss
18.
▲
Abusing Chrome's XSS auditor to steal tokens
(blog.portswigger.net)
2 points
matthewbauer
11 years ago
discuss
19.
▲
Burp is voted #1 web scanner
(blog.portswigger.net)
1 point
wglb
15 years ago
1 comment
20.
▲
Burp Collaborator from Portswigger released today
(blog.portswigger.net)
1 point
jeronimo-gr
11 years ago
discuss
21.
▲
Burp v1.4 preview - Session handling: putting it all together
(blog.portswigger.net)
1 point
wglb
15 years ago
discuss
22.
▲
Comparing web application scanners
(blog.portswigger.net)
1 point
mattyb
16 years ago
discuss
23.
▲
Backslash Powered Scanning: Hunting Unknown Vulnerability Classes
(blog.portswigger.net)
1 point
danso
10 years ago
discuss
24.
▲
Exploiting CORS Misconfigurations for Bitcoins and Bounties
(blog.portswigger.net)
1 point
albinowax_
10 years ago
discuss
25.
▲
XSS Without HTML: Client-Side Template Injection with AngularJS
(blog.portswigger.net)
1 point
restlessmedia
10 years ago
discuss
26.
▲
XSS Without HTML: Client-Side Template Injection with AngularJS
(blog.portswigger.net)
1 point
wolframio
10 years ago
discuss