• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar

LinuxSec Exploit

Nothing is Ever Locked

  • XSS Payloads
  • About Us

XSS

Memanfaatkan Bug XSS untuk Mencuri Cookie

March 2, 2020 by Jack Wilder Leave a Comment

Memanfaatkan Bug XSS untuk Mencuri Cookie. Kalian mungkin bertanya-tanya kenapa para bug hunter yang berhasil menemukan celah XSS selalu diberi hadiah besar. Kalian mungkin berpikir bahwa celah XSS … [Read more...] about Memanfaatkan Bug XSS untuk Mencuri Cookie

Filed Under: XSS

MIME Type Sniffing pada Form Upload Gambar

June 21, 2019 by Jack Wilder 10 Comments

MIME Type Sniffing pada Form Upload Gambar. Oke kali ini saya akan membahas mengenai cara mengeksploitasi form upload pada sebuah web sehingga memunculkan XSS. Kita bisa memodifikasi request saat … [Read more...] about MIME Type Sniffing pada Form Upload Gambar

Filed Under: Web Hacking, XSS

Cross-site Scripting Payloads Cheat Sheet

January 21, 2018 by Jack Wilder 52 Comments

Cross-site Scripting Payloads Cheat Sheet - Cross-Site Scripting (XSS) attacks are a type of injection, in which malicious scripts are injected into otherwise benign and trusted web sites. XSS attacks … [Read more...] about Cross-site Scripting Payloads Cheat Sheet

Filed Under: Cheat Sheet, XSS

Primary Sidebar

Popular Post

Exploit WPStore Themes Upload Vulnerability

Laravel PHPUnit Remote Code Execution

FastMail Custom Domain or Subdomain Takeover

Zendesk Custom Domain or Subdomain Takeover

Tool Deface Opencart Bruteforce and Upload Image

Download 1n73ct10n / 1n73ction Privat Web Shell by X’1N73CT

Deface dengan Metode Timthumb Remote Code Execution

Woocommerce Custom Tshirt Desginer CSRF Shell Upload Vulnerability

Upload Backdoor Lewat MySQL Database (phpMyAdmin)

Heroku Custom Domain or Subdomain Takeover

LinuxSec / 5 queries in 0.09 seconds