September 27, 2019
如何使用 Collaborator Everywhere <!–more–> 使用方法 https://github.com/PortSwigger/collaborator-everywhere 注意,要现在 scope 中设置范围, collaborator-everywhere 之后才会工作,且只对范围内的请求,修改/添加 HTTP 请求头。 捕获到的请求 GET /wp-content/uploads/2018/05/138-140FP91001-1024×640.jpg HTTP/1.1 Host: wp.blkstone.me User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36 root@hvgwzou2c52d11kl8cd4nr16yx4r8fx.burpcollaborator.net Accept: image/webp,*/* Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2 Accept-Encoding: gzip, deflate Connection: close Referer: http://3gkikafoxrnzmn57tyyq8dmsjjpdn1c.burpcollaborator.net/ref If-Modified-Since: Sat, 19 May 2018 09:49:59 GMT If-None-Match: "19f18-56c8bfdde1fc0" Cache-Control: no-transform X-Wap-Profile: […]
July 10, 2019
XSS payload 中 JavaScript 部分的一个混淆思路
May 14, 2019
【Bug Bounty 阅读笔记】 Hackerone 周报(2019-05-04)
May 7, 2019
【Bug Bounty 阅读笔记】 Hackerone 周报(2019-04-29)
April 16, 2019
Chaining Multiple Vulnerabilities + WAF bypass to Account Takeover in almost all Alibaba’s websites
March 31, 2019
【Bug Bounty 阅读笔记】 Subdomain Takeover 专题
March 29, 2019
PayPal旗下Braintree网站的“不寻常”漏洞(3200美金)
March 29, 2019
【Bug Bounty 阅读笔记】 Google Groups 越权访问
March 18, 2019
Using AWS Metadata API to escalate SSRF to RCE
March 12, 2019
vimeo 从 SSRF 到潜在代码执行报告阅读笔记