'/%3e%3cpath%20d='M50.3943%2022.237V39.5876H43.5185V22.7481C43.5185%2019.2029%2042.0411%2017.3949%2039.036%2017.3949C35.7325%2017.3949%2034.0778%2019.5338%2034.0778%2023.7585V32.9759H27.2434V23.7585C27.2434%2019.5338%2025.5857%2017.3949%2022.2822%2017.3949C19.2949%2017.3949%2017.8027%2019.2029%2017.8027%2022.7481V39.5876H10.9298V22.237C10.9298%2018.6918%2011.835%2015.8754%2013.6453%2013.7877C15.5128%2011.7049%2017.9623%2010.6355%2021.0028%2010.6355C24.522%2010.6355%2027.1813%2011.9885%2028.9542%2014.6917L30.665%2017.5633L32.3788%2014.6917C34.1517%2011.9885%2036.811%2010.6355%2040.3243%2010.6355C43.3619%2010.6355%2045.8114%2011.7049%2047.6847%2013.7877C49.4931%2015.8734%2050.3963%2018.6899%2050.3943%2022.237Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_89_8'%20x1='30.5'%20y1='0'%20x2='30.5'%20y2='65'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%236364FF'/%3e%3cstop%20offset='1'%20stop-color='%23563ACC'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e)
Konstantin :C_H:<p><script>alert(1)</script> - 403 Forbidden<br><img src=x onerror=console.log(1)> - 403 Forbidden<br><svg onload=print()> - 403 Forbidden</p><p>I've recently encountered a web application firewall in a pentest, blocking all my attempts to insert an XSS payload.</p><p>In such cases, I love to use the <a href="https://infosec.exchange/tags/PortSwigger" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PortSwigger</span></a> cross-site scripting cheat sheet: <a href="https://portswigger.net/web-security/cross-site-scripting/cheat-sheet" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">portswigger.net/web-security/c</span><span class="invisible">ross-site-scripting/cheat-sheet</span></a></p><p>I copied all payloads to the clipboard, pasted them into the Intruder's word list and hit the "Start attack" button.</p><p>Within seconds, I had a working proof of concept.</p><p>How do you use the XSS cheat sheet? I'm keen to know!</p><p><a href="https://infosec.exchange/tags/Pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pentesting</span></a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AppSec</span></a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://infosec.exchange/tags/BugBounty" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BugBounty</span></a> <a href="https://infosec.exchange/tags/Hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Hacking</span></a></p>
101010.pl is one of the many independent Mastodon servers you can use to participate in the fediverse.
101010.pl czyli najstarszy polski serwer Mastodon. Posiadamy wpisy do 2048 znaków.
Administered by:
Server stats:
506active users
101010.pl: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.0-beta.1
#portswigger
0 posts · 0 participants · 0 posts today
crafteando<p>🔐 ¡Arrancamos con Cybersec Live!<br>Hoy es un día especial porque nos sumergimos en el mundo de la seguridad web resolviendo máquinas virtuales de Portswigger.</p><p>Aprenderemos juntos, nos enfrentaremos a desafíos y, sobre todo, nos divertiremos en el proceso. No importa si eres nuevo o ya tienes experiencia, aquí todos somos parte de la misma comunidad. 💻✨</p><p>📅 Hoy (Anunciaré por aquí cuando este live)<br>🔗 <a href="https://youtube.com/@CrafteandoLive" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">youtube.com/@CrafteandoLive</span><span class="invisible"></span></a></p><p>Tu apoyo y tu curiosidad son lo que hacen que este proyecto crezca. ¡Vamos a resolver estos desafíos juntos y a celebrar cada pequeño logro! 🚀</p><p><a href="https://techhub.social/tags/cybersec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersec</span></a> <a href="https://techhub.social/tags/ethicalhacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ethicalhacking</span></a> <a href="https://techhub.social/tags/tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tech</span></a> <a href="https://techhub.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> <a href="https://techhub.social/tags/training" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>training</span></a> <a href="https://techhub.social/tags/portswigger" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>portswigger</span></a></p>
G33kst4 :verified:<p>🔍 Geeksta CyberLab | S1E3 🔍</p><p>Today, we’re diving into PortSwigger—exploring web security, breaking things (ethically), and learning how to patch them. If you're into cybersecurity, this one’s for you.</p><p>I’ll be live soon, feel free to drop by.</p><p><a href="https://hachyderm.io/tags/Geeksta" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Geeksta</span></a> <a href="https://hachyderm.io/tags/CyberLab" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberLab</span></a> <a href="https://hachyderm.io/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://hachyderm.io/tags/PortSwigger" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PortSwigger</span></a> <a href="https://hachyderm.io/tags/EthicalHacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EthicalHacking</span></a> <a href="https://hachyderm.io/tags/WebSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WebSecurity</span></a> </p><p><a href="https://youtube.com/@geekstaparadise" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">youtube.com/@geekstaparadise</span><span class="invisible"></span></a></p>
Doyensec<p>Nice to see Maxence Schmitt's CSPT research (a nominee for <a href="https://infosec.exchange/tags/Portswigger" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Portswigger</span></a>'s top 10 web hacking techniques for 2024) getting a shout out on the Critical Thinking Bug Bounty podcast ! </p><p>Check out the review and comments here: <a href="https://youtu.be/3rkg1CUDpjA?si=yu4AtH6eLwu0F5n8&t=2687" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">youtu.be/3rkg1CUDpjA?si=yu4AtH</span><span class="invisible">6eLwu0F5n8&t=2687</span></a></p><p><a href="https://infosec.exchange/tags/doyensec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>doyensec</span></a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> <a href="https://infosec.exchange/tags/CSPT2CSRF" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CSPT2CSRF</span></a></p>
Doyensec<p>This year, Doyensec is excited to have 4⃣ great nominations in Portswigger's Top 10 Web Hacking Techniques! 🥳</p><p>Check them all out and vote for your favorites (hopefully ours🤞) today!</p><p><a href="https://portswigger.net/research/top-10-web-hacking-techniques-of-2024-nominations-open" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">portswigger.net/research/top-1</span><span class="invisible">0-web-hacking-techniques-of-2024-nominations-open</span></a></p><p><a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> <a href="https://infosec.exchange/tags/portswigger" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>portswigger</span></a> <a href="https://infosec.exchange/tags/doyensec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>doyensec</span></a></p>
Konstantin :C_H:<p>You can easily install the extension from the official <a href="https://infosec.exchange/tags/PortSwigger" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PortSwigger</span></a> BApp Store: <a href="https://portswigger.net/bappstore/866df66d339d4bcd9b599772aff32efd" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">portswigger.net/bappstore/866d</span><span class="invisible">f66d339d4bcd9b599772aff32efd</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload