diff --git a/SUMMARY.md b/SUMMARY.md
index 514625187..f3d561127 100644
--- a/SUMMARY.md
+++ b/SUMMARY.md
@@ -541,7 +541,6 @@
   * [Cookie Bomb](pentesting-web/hacking-with-cookies/cookie-bomb.md)
 * [CORS - Misconfigurations & Bypass](pentesting-web/cors-bypass.md)
 * [CRLF (%0D%0A) Injection](pentesting-web/crlf-0d-0a.md)
-* [WebSocket Attacks](pentesting-web/websocket-attacks.md)
 * [CSRF (Cross Site Request Forgery)](pentesting-web/csrf-cross-site-request-forgery.md)
 * [Dangling Markup - HTML scriptless injection](pentesting-web/dangling-markup-html-scriptless-injection/README.md)
   * [SS-Leaks](pentesting-web/dangling-markup-html-scriptless-injection/ss-leaks.md)
@@ -635,6 +634,7 @@
 * [Reverse Tab Nabbing](pentesting-web/reverse-tab-nabbing.md)
 * [Unicode Injection](pentesting-web/unicode-injection/README.md)
   * [Unicode Normalization](pentesting-web/unicode-injection/unicode-normalization.md)
+* [WebSocket Attacks](pentesting-web/websocket-attacks.md)
 * [Web Tool - WFuzz](pentesting-web/web-tool-wfuzz.md)
 * [XPATH injection](pentesting-web/xpath-injection.md)
 * [XSLT Server Side Injection (Extensible Stylesheet Languaje Transformations)](pentesting-web/xslt-server-side-injection-extensible-stylesheet-languaje-transformations.md)
diff --git a/pentesting-web/websocket-attacks.md b/pentesting-web/websocket-attacks.md
index c96b7cfea..c1f2ced8a 100644
--- a/pentesting-web/websocket-attacks.md
+++ b/pentesting-web/websocket-attacks.md
@@ -23,7 +23,7 @@ WebSockets are particularly useful in situations where **low-latency or server-i
 WebSocket connections are normally created using client-side JavaScript like the following:
 
 ```javascript
-var ws = new WebSocket("wss://normal-website.com/chat");
+var ws = new WebSocket("wss://normal-website.com/ws");
 ```
 
 The **`wss`** protocol establishes a WebSocket over an encrypted **TLS** connection, while the **`ws`** protocol uses an **unencrypted** connection.