LearnHacking.io
  • Home
  • About

PortSwigger's "Reflected XSS into attribute with angle brackets HTML-encoded" Walkthrough

Dec 2, 2021 3 min read appsec
This is another of the Reflected XSS Labs from Portswigger. Before we get started, you’ll need a Portswigger Academy account. This level is completed without Burp Suite, but we have a blog

PortSwigger's "Reflected XSS into HTML context with nothing encoded" Walkthrough

Dec 1, 2021 2 min read appsec
This is the first of Portswigger’s XSS Labs. Before we get started, you’ll need a Portswigger Academy account. You can do this level without Burp Suite, but here’s a guide

Add .DS_Store to Your Wordlists (TFC CTF's "MacDonalds" challenge)

Nov 30, 2021 3 min read appsec
One of the CTF challenges from TFC CTF was called “MacDonalds”. This challenge essentially asks you to find a web directory–without using a scanner like dirb–given a few hints. There’s

PortSwigger's "Username enumeration via subtly different responses" Walkthrough

Nov 29, 2021 4 min read appsec
This is the second of Portswigger’s Authentication Labs. Before we get started, you’ll need Burp Suite installed (check out this blog post for setup instructions), and an Portswigger Academy account. After

Portswigger's "Username enumeration via different responses" Walkthrough

Nov 28, 2021 5 min read appsec
This is the first of Portswigger’s Authentication Labs. Before we get started, you’ll need Burp Suite installed (check out this blog post for setup instructions), and an Portswigger Academy account. After
Previous
Page 10 of 19
Next
LearnHacking.io © 2025
  • Sign up
Powered by Ghost