mirror of
https://github.com/carlospolop/hacktricks
synced 2024-11-14 08:57:55 +00:00
GitBook: [#3055] No subject
This commit is contained in:
parent
e611cdb14f
commit
e159006546
3 changed files with 115 additions and 0 deletions
|
@ -458,6 +458,7 @@
|
|||
* [XSS Tools](pentesting-web/xss-cross-site-scripting/xss-tools.md)
|
||||
* [Iframes in XSS and CSP](pentesting-web/xss-cross-site-scripting/iframes-in-xss-and-csp.md)
|
||||
* [Other JS Tricks](pentesting-web/xss-cross-site-scripting/other-js-tricks.md)
|
||||
* [Steal Info JS](pentesting-web/xss-cross-site-scripting/steal-info-js.md)
|
||||
* [XSSI (Cross-Site Script Inclusion)](pentesting-web/xssi-cross-site-script-inclusion.md)
|
||||
* [XS-Search](pentesting-web/xs-search.md)
|
||||
|
||||
|
|
|
@ -688,6 +688,12 @@ Past known protocols: `mailto://`, `//x:1/`, `ws://`, `wss://`, _empty Location
|
|||
|
||||
## XSS common payloads
|
||||
|
||||
### Several payloads in 1
|
||||
|
||||
{% content-ref url="steal-info-js.md" %}
|
||||
[steal-info-js.md](steal-info-js.md)
|
||||
{% endcontent-ref %}
|
||||
|
||||
### Retrieve Cookies
|
||||
|
||||
```javascript
|
||||
|
|
108
pentesting-web/xss-cross-site-scripting/steal-info-js.md
Normal file
108
pentesting-web/xss-cross-site-scripting/steal-info-js.md
Normal file
File diff suppressed because one or more lines are too long
Loading…
Reference in a new issue