09 2016 档案

XSS for domain takeover
摘要:TLDR C'mon, show me the XSS domain takeover 5 mins later… So how did you take over the domain? So is this bad? 阅读全文
posted @ 2016-09-21 23:34 独裁者 阅读(286) 评论(0) 推荐(0) 编辑
XSS via XML POST
摘要:I was bug hunting on a site which looked like this: POST /snip/snippet.php HTTP/1.1 <?xml version="1.0"?> I tested in BURP for XSS in XML, and it work 阅读全文
posted @ 2016-09-21 22:44 独裁者 阅读(373) 评论(0) 推荐(0) 编辑
dns 查询中的ANY类型
摘要:dig @8.8.8.8 ANT photo.facebook.com 意思查询所有的参数 阅读全文
posted @ 2016-09-11 21:24 独裁者 阅读(1362) 评论(1) 推荐(0) 编辑

点击右上角即可分享
微信分享提示