[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] Pentest Paper - Introduction to Web Pentest

To: fulldisclosure@xxxxxxxxxxxx
Subject: [FD] Pentest Paper - Introduction to Web Pentest
From: Andrey Stoykov <mwebsec@xxxxxxxxx>
Date: Mon, 31 Jul 2023 18:55:25 +0300

Just putting this for the new starters.

It is in two languages, Bulgarian and English.

https://drive.google.com/file/d/1mzYeratoSV82Oxaj_dYvu4fg7vSBuhE1/view
https://drive.google.com/file/d/1b8obLloMnmQGI1gqAablzuTyKOFBRZjb/view

Has basic configuration for Burpsuite Proxy, including basic exploitation
of XSS, SQLi, CSRF and Open redirect.

Has brief theory explanation prior to showing how to exploit each flaw.


Kind Regards,
Andrey Stoykov
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: https://seclists.org/fulldisclosure/

Prev by Date: [FD] Stored XSS - Perch
Next by Date: [FD] Unauthorized MFA Code Delivery in EmpowerID
Previous by thread: [FD] Stored XSS - Perch
Next by thread: [FD] Unauthorized MFA Code Delivery in EmpowerID
Index(es):
- Date
- Thread