hacktricks/pentesting-web/xss-cross-site-scripting/sniff-leak.md
Carlos Polop 7aaa08ff92 a
2024-02-09 01:38:08 +01:00

2.8 KiB

Sniff Leak

Learn AWS hacking from zero to hero with htARTE (HackTricks AWS Red Team Expert)!

Other ways to support HackTricks:

Leak script content by converting it to UTF16

This writeup leaks a text/plain because there is no X-Content-Type-Options: nosniff header by adding some initial characters that will make javascript think that the content is in UTF-16 so th script doesn't breaks.

Leak script content by treating it as an ICO

The next writeup leaks the script content by loading it as if it was an ICO image accessing the width parameter.

Learn AWS hacking from zero to hero with htARTE (HackTricks AWS Red Team Expert)!

Other ways to support HackTricks: