mirror of
https://github.com/autistic-symposium/sec-pentesting-toolkit.git
synced 2025-05-02 06:46:07 -04:00
websecurity
This commit is contained in:
bt3gl
parent
c8705de960
commit
e36532ca5e
1 changed files with 4 additions and 3 deletions
|
|
@ -162,7 +162,7 @@ Now, there is a further step that can make this address even more obscure. You c
|
|||
|
||||
#### Great @
|
||||
|
||||
-Everything between "http://" and "@" is completely irrelevant
|
||||
- Everything between "http://" and "@" is completely irrelevant
|
||||
|
||||
```
|
||||
http://doesn'tmatter@www.google.org
|
||||
|
|
@ -260,8 +260,8 @@ Set-Cookie: SID=472ndsw;expires=DATE;path=/;domain=SITE,HttpOnly
|
|||
-----
|
||||
## Tools
|
||||
|
||||
- [Burp Suite]
|
||||
- [FireBug] in Firefox
|
||||
- Burp Suite
|
||||
- FireBug] in Firefox
|
||||
|
||||
----
|
||||
|
||||
|
|
@ -390,6 +390,7 @@ $string = "<script>alert('XSS');</script>";
|
|||
$string = mb_convert_encoding($string, 'UTF-7');
|
||||
echo htmlentities($string);
|
||||
?>
|
||||
```
|
||||
|
||||
### XSS Defenses
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue