Commit graph

26 commits

Author SHA1 Message Date
Yasin Soliman
11bfe388d1
[XSS] fix Markdown payload syntax 2017-11-19 11:17:46 +00:00
EdOverflow
a201142cb5
Add CSP bypass via JSONP endpoints section. 2017-10-28 19:16:27 +02:00
Yasin Soliman
39f4ab3437 [XSS] amend Unicode payload, add Flash SWF 2017-10-18 16:50:27 +01:00
Yasin Soliman
8737c602a1 [XSS] update Markdown payloads 2017-10-07 08:50:31 +01:00
Yasin Soliman
b8f3aa96e3 [XSS] add video-js example variant 2017-10-01 22:04:49 +01:00
Yasin Soliman
74b9508019 [XSS] add extra SWF refs from notes 2017-10-01 10:19:34 +01:00
Yasin Soliman
3dc01e25d2 [XSS] additional cleanup of Flash refs 2017-09-27 19:57:21 +01:00
Yasin Soliman
c0582d53ab [XSS] clean up Flash payloads and add note 2017-09-27 19:48:38 +01:00
Yasin Soliman
c7775ecdbc [XSS] Add collection of SWF XSS payloads
Sourced from personal notes, Cure53 Flashbang (https://github.com/cure53/Flashbang/blob/master/flash-files/index.html) and other sources
2017-09-27 19:45:22 +01:00
EdOverflow
8ed19686f1 Add Incapsula WAF XSS Bypasses. 2017-09-12 17:18:29 +02:00
EdOverflow
8b34edd05b Add Safari XSS Vector by @mramydnei 2017-08-31 18:43:12 +02:00
EdOverflow
2842feec7b Add unicode XSS payload. 2017-08-28 16:36:49 +02:00
EdOverflow
27cb382451 Merge branch 'master' of github.com:EdOverflow/bugbounty-cheatsheet 2017-08-17 18:20:57 +01:00
EdOverflow
5266c52497 @vivekchsm found the first Chrome XSS-Auditor bypass. 2017-08-17 18:19:56 +01:00
Yasin Soliman
d0d3beabd1 Add LML syntax references & clarify wording 2017-08-16 09:24:39 +01:00
Yasin Soliman
571cf11917 Add version check note & sandbox ref link 2017-08-16 09:22:29 +01:00
Yasin Soliman
28373da605 Add LML and Markdown XSS payloads 2017-08-16 09:01:27 +01:00
EdOverflow
1b98c1ac64 Add another Chrome XSS-Auditor bypass. 2017-08-15 19:08:48 +01:00
EdOverflow
c9de842499 Create "Chrome XSS-Auditor Bypasses" section. 2017-08-10 09:47:39 -04:00
EdOverflow
a4a9136630 Add another Chrome XSS-Auditor bypass. 2017-08-04 21:33:15 -06:00
EdOverflow
8c6e54dd65 Add another Chrome XSS-auditor bypass. 2017-07-23 14:33:13 -07:00
EdOverflow
16653d4e47 Add JS syntax highlighting to AngularJS payloads. 2017-07-16 23:13:15 +01:00
EdOverflow
91a23acf79 Apply style guide to xss.md. 2017-07-16 12:46:53 +01:00
Evgeniy Yakovchuk
9b3073a717 Update xss.md 2017-07-16 14:33:34 +03:00
EdOverflow
6caffc7601 Add an XSS Polyglot. 2017-07-15 20:20:12 +01:00
EdOverflow
6d4aef29a4 Add individual files. 2017-07-14 14:54:44 +01:00