Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I appreciate the effort, however that list of payloads is a great way to get your IP address banned by Akamai and others. There are better ways to discover injection points without poking trigger-happy WAFs.



I don't think OP is suggesting that the payload list is the interesting thing here, rather the overall approach




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: