| | Listen to the whispers: web timing attacks that work (portswigger.net) |
|
188 points by saikatsg 20 days ago | past | 33 comments
|
| | New Doyensec Prototype Pollution BurpSuite Extension (portswigger.net) |
|
2 points by tony-ds 47 days ago | past
|
| | Listen to the whispers: web timing attacks that work (portswigger.net) |
|
2 points by rrampage 77 days ago | past
|
| | Splitting the email atom: exploiting parsers to bypass access controls (portswigger.net) |
|
2 points by hackvertor 3 months ago | past | 1 comment
|
| | Listen to the whispers: web timing attacks that work (portswigger.net) |
|
5 points by dytir 4 months ago | past
|
| | Listen to the whispers: web timing attacks that work (portswigger.net) |
|
3 points by chillax 4 months ago | past
|
| | SignSaboteur: forge signed web tokens with ease (portswigger.net) |
|
2 points by jdmark 6 months ago | past
|
| | HTTP/2 desync attacks. (2021) (portswigger.net) |
|
1 point by fanf2 8 months ago | past
|
| | uBlock, I exfiltrate: exploiting ad blockers with CSS (2021) (portswigger.net) |
|
3 points by ReadCarlBarks 8 months ago | past
|
| | Blind CSS Exfiltration: exfiltrate unknown web pages (portswigger.net) |
|
2 points by pentestercrab 10 months ago | past
|
| | Web LLM Attacks (portswigger.net) |
|
1 point by beny23 10 months ago | past
|
| | Top web hacking techniques of 2023 – nominations open (portswigger.net) |
|
1 point by celesian 11 months ago | past
|
| | Implementing Tic Tac Toe with 170mb of HTML – No JavaScript or CSS (portswigger.net) |
|
31 points by fagnerbrack on Nov 14, 2023 | past | 31 comments
|
| | Implementing Tic Tac Toe with 170mb of HTML – No JavaScript or CSS (portswigger.net) |
|
13 points by thunderbong on Nov 11, 2023 | past | 5 comments
|
| | Implementing Tic Tac Toe with 170mb of HTML – No JavaScript or CSS (portswigger.net) |
|
2 points by smusamashah on Nov 10, 2023 | past
|
| | Implementing Tic Tac Toe with 170mb of HTML – No JavaScript or CSS (portswigger.net) |
|
2 points by thunderbong on Nov 9, 2023 | past
|
| | Smashing the state machine: the true potential of web race conditions (portswigger.net) |
|
112 points by chatmasta on Sept 19, 2023 | past | 32 comments
|
| | PESD: Easily diagram web flows right from BurpSuite (portswigger.net) |
|
2 points by tony-ds on Aug 22, 2023 | past
|
| | Smashing the state machine: the true potential of web race conditions (portswigger.net) |
|
8 points by curling_grad on Aug 10, 2023 | past
|
| | Implementing Tic Tac Toe with 170mb of HTML – No JavaScript or CSS (portswigger.net) |
|
5 points by hackvertor on July 21, 2023 | past | 1 comment
|
| | It’s Goodbye to the Daily Swig (portswigger.net) |
|
1 point by carride on April 18, 2023 | past | 1 comment
|
| | The curl quirk that exposed Burp Suite and Google Chrome (portswigger.net) |
|
1 point by albinowax_ on March 28, 2023 | past | 1 comment
|
| | It’s goodbye to The Daily Swig (portswigger.net) |
|
2 points by jenoer on March 5, 2023 | past | 1 comment
|
| | Belgium launches nationwide safe harbor for ethical hackers (portswigger.net) |
|
164 points by raphinou on March 3, 2023 | past | 23 comments
|
| | We are going teetotal: Saying goodbye to The Daily Swig (portswigger.net) |
|
2 points by dfc on March 3, 2023 | past
|
| | Indian transport ministry flaws potentially allowed creation of counterfeit (portswigger.net) |
|
3 points by feross on Feb 28, 2023 | past
|
| | Password managers: A rough guide to enterprise secret platforms (portswigger.net) |
|
3 points by feross on Feb 27, 2023 | past
|
| | Deserialized web security roundup: Twitter 2FA backlash, GoDaddy suffers (portswigger.net) |
|
1 point by feross on Feb 24, 2023 | past
|
| | NIST plots biggest ever reform of Cybersecurity Framework (portswigger.net) |
|
2 points by feross on Feb 23, 2023 | past
|
| | Cisco ClamAV anti-malware scanner vulnerable to serious security flaw (portswigger.net) |
|
3 points by feross on Feb 22, 2023 | past
|
|
|
More |