Burpsuit
关注
分享
扫一扫
文章平均质量分 89
Bursuit靶场学习,重在思路,思路打开,才能挖到漏洞!
Zkaisen
无论怎么样,努力的干下去,迷茫的未来应该会有惊喜在等着我们!
展开
-
Exploiting server-side parameter pollution in a query string
Exploiting server-side parameter pollution in a query stringTarget: log in as the administrator and delete carlos.原创 2024-07-20 23:52:07 · 833 阅读 · 0 评论 -
Exploiting a mass assignment vulnerability
mass assignment(也称为自动绑定)可能会无意中创建隐藏参数。在测试过程中需要关注一下这些潜在的隐藏参数,通过修改这类参数可能你改变应用程序的行为,从而实现某种绕过。原创 2024-07-06 00:45:00 · 1082 阅读 · 0 评论 -
Finding and exploting an unused API endpoint
Finding and exploting an unused API endpointUsing 0$ account buy a piece of lether priced at $133原创 2024-07-05 13:05:02 · 337 阅读 · 0 评论 -
Exploting an API endpoiint using documentation
Exploting an API endpoiint using documentation原创 2024-07-05 10:33:51 · 1205 阅读 · 0 评论