search

Combined

Too many tips, can't keep adding new subpages.

hashtag
1. Read minified JS files.

LogoRCE due to Dependency Confusion — $5000 bounty!Mediumchevron-right
Extracting JavaScript from SourcemapsPulse Securitychevron-right
LogoGitHub - denandz/sourcemapper: Extract JavaScript source trees from Sourcemap filesGitHubchevron-right

More js endpiint extraction: https://lnkd.in/gcwrJSxCarrow-up-right

this extension: https://github.com/jenish-sojitra/JSAnalyzerarrow-up-right

hashtag
2. Dependency confusion

Apart from famoous alex blog

LogoRCE via Dependency ConfusionMediumchevron-right

hashtag
Tool to check: https://github.com/visma-prodsec/confusedarrow-up-right

hashtag
How to publish packages:

hashtag
https://dhiyaneshgeek.github.io/web/security/2021/09/04/dependency-confusion/arrow-up-right

hashtag
3. Null byte injection in JSON data type.

%00 is null character and it often leads to unexpected behavior in applications. Don't believe me? search for sam curry null byte overflow writeup. You will love it.

However if you send %00 in JSON data it might not be treated as null character by JSOn parser.

You should instead use \u0000 .

one more e.g https://medium.com/@0xold/null-byte-on-steroids-23f8104a25ecarrow-up-right

Extra tip \u2063 is also a special space like character might be useful in fuzzing.

hashtag
4. recollapse tool by 0xacb

This tool can be useful for validation bypass checks

LogoGitHub - 0xacb/recollapse: REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applicationsGitHubchevron-right

hashtag
5. Portswigger URL validation cheatsheet

good resource for url validation scenarios.

LogoURL validation bypass cheat sheet for SSRF/CORS/Redirect - 2024 Edition | Web Security AcademyWebSecAcademychevron-right

PreviousTips & TricksNextCSP Bypasses & open redirect

Last updated