HK
Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Top
New
Best
Ask
Show
Jobs
Request
1.
▲
Targeting HTTP's Hidden Attack-Surface
blog.portswigger.net
13 comments
9 years ago
skybrian
207 points
2.
▲
Web Storage: the lesser evil for session tokens
blog.portswigger.net
69 comments
10 years ago
kkl
195 points
3.
▲
Executing non-alphanumeric JavaScript without parentheses
blog.portswigger.net
19 comments
10 years ago
kkl
123 points
4.
▲
Web App Hacker's Handbook 2nd Edition - Preview
blog.portswigger.net
14 comments
15 years ago
wglb
70 points
5.
▲
Bypassing CSP using polyglot JPEGs
blog.portswigger.net
15 comments
10 years ago
inian
43 points
6.
▲
Cracking the Lens: Targeting HTTP's Hidden Attack-Surface
blog.portswigger.net
discuss
9 years ago
j_s
36 points
7.
▲
Detecting and exploiting path-relative stylesheet import vulnerabilities
blog.portswigger.net
discuss
11 years ago
restlessmedia
18 points
8.
▲
JSON hijacking for the modern web
blog.portswigger.net
discuss
10 years ago
dsr12
10 points
9.
▲
Backslash Powered Scanning: Hunting Unknown Vulnerability Classes
blog.portswigger.net
discuss
10 years ago
cujanovic
4 points
10.
▲
Detecting and exploiting path-relative stylesheet import vulnerabilities
blog.portswigger.net
discuss
11 years ago
mbrubeck
3 points
11.
▲
When Security Features Collide
blog.portswigger.net
discuss
9 years ago
dsr12
3 points
12.
▲
JSON hijacking for the modern web
blog.portswigger.net
discuss
10 years ago
albinowax_
3 points
13.
▲
PortSwigger Web Security Blog: Server-Side Template Injection
blog.portswigger.net
discuss
11 years ago
gregmolnar
3 points
14.
▲
Microsoft Edge XSS Filter Bypass
blog.portswigger.net
1 comment
10 years ago
rshetty10
2 points
15.
▲
Burp Suite Free Edition v1.4 released
blog.portswigger.net
discuss
15 years ago
wglb
2 points
16.
▲
How I Accidentally Framed Myself for a Hacking Frenzy
blog.portswigger.net
discuss
9 years ago
kobayashi
2 points
17.
▲
Introducing Burp Collaborator: Web Security Testing
blog.portswigger.net
discuss
10 years ago
potench
2 points
18.
▲
Abusing Chrome's XSS auditor to steal tokens
blog.portswigger.net
discuss
11 years ago
matthewbauer
2 points
19.
▲
Burp is voted #1 web scanner
blog.portswigger.net
1 comment
15 years ago
wglb
1 points
20.
▲
Burp Collaborator from Portswigger released today
blog.portswigger.net
discuss
11 years ago
jeronimo-gr
1 points
21.
▲
Burp v1.4 preview - Session handling: putting it all together
blog.portswigger.net
discuss
15 years ago
wglb
1 points
22.
▲
Comparing web application scanners
blog.portswigger.net
discuss
16 years ago
mattyb
1 points
23.
▲
Backslash Powered Scanning: Hunting Unknown Vulnerability Classes
blog.portswigger.net
discuss
10 years ago
danso
1 points
24.
▲
Exploiting CORS Misconfigurations for Bitcoins and Bounties
blog.portswigger.net
discuss
10 years ago
albinowax_
1 points
25.
▲
XSS Without HTML: Client-Side Template Injection with AngularJS
blog.portswigger.net
discuss
10 years ago
restlessmedia
1 points
26.
▲
XSS Without HTML: Client-Side Template Injection with AngularJS
blog.portswigger.net
discuss
10 years ago
wolframio
1 points