From f2d104f6269bcbb49368f7cd8b78cd20b00e4c72 Mon Sep 17 00:00:00 2001 From: Boik Date: Tue, 25 Jun 2019 10:33:04 +0800 Subject: [PATCH] Add the 'Web Cache Poisoning' section --- README-jp.md | 7 +++++++ README-zh.md | 8 ++++++++ README.md | 7 +++++++ 3 files changed, 22 insertions(+) diff --git a/README-jp.md b/README-jp.md index 4927656..72f9da0 100644 --- a/README-jp.md +++ b/README-jp.md @@ -31,6 +31,7 @@ If you enjoy this awesome list and would like to support it, check out my [Patre - [CSRF](#csrf---cross-site-request-forgery) - [SSRF](#ssrf---server-side-request-forgery) - [Web Cache Poisoning](#web-cache-poisoning) + - [Relative Path Overwrite](#relative-path-overwrite) - [Open Redirect](#open-redirect) - [Upload](#upload) - [Rails](#rails) @@ -188,6 +189,12 @@ If you enjoy this awesome list and would like to support it, check out my [Patre - [Practical Web Cache Poisoning](https://portswigger.net/blog/practical-web-cache-poisoning) - Written by [@albinowax](https://twitter.com/albinowax). + +### Relative Path Overwrite + +- [Large-scale analysis of style injection by relative path overwrite](https://blog.acolyer.org/2018/05/28/large-scale-analysis-of-style-injection-by-relative-path-overwrite/) - Written by [The Morning Paper](https://blog.acolyer.org/). +- [MBSD Technical Whitepaper - A few RPO exploitation techniques](https://www.mbsd.jp/Whitepaper/rpo.pdf) - Written by [Mitsui Bussan Secure Directions, Inc.](https://www.mbsd.jp/). + ### Open Redirect diff --git a/README-zh.md b/README-zh.md index 69e94a0..95e776d 100644 --- a/README-zh.md +++ b/README-zh.md @@ -31,6 +31,7 @@ If you enjoy this awesome list and would like to support it, check out my [Patre - [CSRF](#csrf---cross-site-request-forgery) - [SSRF](#ssrf---server-side-request-forgery) - [Web Cache Poisoning](#web-cache-poisoning) + - [Relative Path Overwrite](#relative-path-overwrite) - [Open Redirect](#open-redirect) - [Upload](#upload) - [Rails](#rails) @@ -202,6 +203,13 @@ If you enjoy this awesome list and would like to support it, check out my [Patre - [Practical Web Cache Poisoning](https://portswigger.net/blog/practical-web-cache-poisoning) - Written by [@albinowax](https://twitter.com/albinowax). + +### Relative Path Overwrite + +- [Large-scale analysis of style injection by relative path overwrite](https://blog.acolyer.org/2018/05/28/large-scale-analysis-of-style-injection-by-relative-path-overwrite/) - Written by [The Morning Paper](https://blog.acolyer.org/). +- [MBSD Technical Whitepaper - A few RPO exploitation techniques](https://www.mbsd.jp/Whitepaper/rpo.pdf) - Written by [Mitsui Bussan Secure Directions, Inc.](https://www.mbsd.jp/). +- [RPO攻击方式的探究](https://www.freebuf.com/articles/web/166731.html) - Written by [K0rz3n](https://www.freebuf.com/author/K0rz3n). + ### Open Redirect diff --git a/README.md b/README.md index ed27ddf..95f88fa 100644 --- a/README.md +++ b/README.md @@ -31,6 +31,7 @@ If you enjoy this awesome list and would like to support it, check out my [Patre - [CSRF](#csrf---cross-site-request-forgery) - [SSRF](#ssrf---server-side-request-forgery) - [Web Cache Poisoning](#web-cache-poisoning) + - [Relative Path Overwrite](#relative-path-overwrite) - [Open Redirect](#open-redirect) - [Upload](#upload) - [Rails](#rails) @@ -185,6 +186,12 @@ If you enjoy this awesome list and would like to support it, check out my [Patre - [Practical Web Cache Poisoning](https://portswigger.net/blog/practical-web-cache-poisoning) - Written by [@albinowax](https://twitter.com/albinowax). + +### Relative Path Overwrite + +- [Large-scale analysis of style injection by relative path overwrite](https://blog.acolyer.org/2018/05/28/large-scale-analysis-of-style-injection-by-relative-path-overwrite/) - Written by [The Morning Paper](https://blog.acolyer.org/). +- [MBSD Technical Whitepaper - A few RPO exploitation techniques](https://www.mbsd.jp/Whitepaper/rpo.pdf) - Written by [Mitsui Bussan Secure Directions, Inc.](https://www.mbsd.jp/). + ### Open Redirect