HK
Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Top
New
Best
Ask
Show
Jobs
Request
211.
▲
OWASP shakes up web app threat categories with release of draft Top
portswigger.net
1 comment
5 years ago
feross
2 points
212.
▲
Vulnerability in dating site OkCupid could be used to trick users into ‘liking’
portswigger.net
1 comment
5 years ago
feross
2 points
213.
▲
Mashable data breach leaks emails, gender, and social profiles
portswigger.net
1 comment
6 years ago
bluehatbrit
2 points
214.
▲
Browser fingerprinting more prevalent on the web now than ever before – research
portswigger.net
1 comment
6 years ago
XzetaU8
2 points
215.
▲
Microsoft Edge XSS Filter Bypass
blog.portswigger.net
1 comment
10 years ago
rshetty10
2 points
216.
▲
Welcome to the next generation of Burp Suite: elevate your testing with Burp AI
portswigger.net
discuss
a year ago
thomas34298
2 points
217.
▲
New Doyensec Prototype Pollution BurpSuite Extension
portswigger.net
discuss
2 years ago
tony-ds
2 points
218.
▲
Listen to the whispers: web timing attacks that work
portswigger.net
discuss
2 years ago
rrampage
2 points
219.
▲
SignSaboteur: forge signed web tokens with ease
portswigger.net
discuss
2 years ago
jdmark
2 points
220.
▲
Blind CSS Exfiltration: exfiltrate unknown web pages
portswigger.net
discuss
2 years ago
pentestercrab
2 points
221.
▲
Implementing Tic Tac Toe with 170mb of HTML – No JavaScript or CSS
portswigger.net
discuss
3 years ago
smusamashah
2 points
222.
▲
Implementing Tic Tac Toe with 170mb of HTML – No JavaScript or CSS
portswigger.net
discuss
3 years ago
thunderbong
2 points
223.
▲
PESD: Easily diagram web flows right from BurpSuite
portswigger.net
discuss
3 years ago
tony-ds
2 points
224.
▲
We are going teetotal: Saying goodbye to The Daily Swig
portswigger.net
discuss
3 years ago
dfc
2 points
225.
▲
NIST plots biggest ever reform of Cybersecurity Framework
portswigger.net
discuss
3 years ago
feross
2 points
226.
▲
Researcher drops Lexmark RCE zero-day rather than sell vuln ‘for peanuts’
portswigger.net
discuss
3 years ago
todsacerdoti
2 points
227.
▲
Git security audit reveals critical overflow bugs
portswigger.net
discuss
3 years ago
feross
2 points
228.
▲
Squaring the CircleCI: DevOps platform publishes post-mortem on recent breach
portswigger.net
discuss
3 years ago
feross
2 points
229.
▲
The seventh way to call a JavaScript function without parentheses
portswigger.net
discuss
4 years ago
fagnerbrack
2 points
230.
▲
Black Hat Europe 2022: Hacking tools showcased at annual security conference
portswigger.net
discuss
4 years ago
feross
2 points
231.
▲
ChatGPT bid for bogus crypto bug bounty is thwarted
portswigger.net
discuss
4 years ago
feross
2 points
232.
▲
Stealing passwords from infosec Mastodon – without bypassing CSP
portswigger.net
discuss
4 years ago
eloisius
2 points
233.
▲
Zendesk Explore flaws opened the door to account pillage
portswigger.net
discuss
4 years ago
feross
2 points
234.
▲
Malicious proof-of-concepts are exposing GitHub users to malware and more
portswigger.net
discuss
4 years ago
feross
2 points
235.
▲
Free DASTardly: a DAST tool for CI/CD pipelines completes within 10 mins or less
portswigger.net
discuss
4 years ago
digicatII
2 points
236.
▲
GitHub patches bug that could allow access to another user’s repo
portswigger.net
discuss
4 years ago
feross
2 points
237.
▲
Microsoft Office Online Server Open to SSRF-to-RCE Exploit
portswigger.net
discuss
4 years ago
feross
2 points
238.
▲
Zimbra remote code execution vulnerability actively exploited in the wild
portswigger.net
discuss
4 years ago
feross
2 points
239.
▲
Vulnerability in Apache Pulsar allowed manipulator-in-the-middle attacks
portswigger.net
discuss
4 years ago
feross
2 points
240.
▲
The seventh way to call a JavaScript function without parentheses
portswigger.net
discuss
4 years ago
hackvertor
2 points
More