Reflected XSS protected by very strict CSP, with dangling markup attack (Video solution, Audio)
Рет қаралды 15,190
Күн бұрын
@vidchan4247 2 жыл бұрын
This video would be far more helpful if you actually explained the mechanism (WHY it works), instead of just going through the steps which can be read in the solutions to the lab as well.
@cair0_ 3 жыл бұрын
i can't even imaging how did u think of this solution :(
@mazleens 2 жыл бұрын
instead of assuming that there is an XSS vuln in the email param, why don't you demonstrate it? the challenge does not mention anything (find out yourself).
@chadurdy7555 3 жыл бұрын
Aloha! okay so I've tried every possible (to my limited knowledge) scenerio and can't seem to get the DNS/ HTTP interactions to show in the poll collaborator interactions window. Any insight would be greatly appreciated. Also thank you so much for your videos!! Truely a great and helpful suppliment to the Portswigger labs.
@chadurdy7555 Жыл бұрын
@Simon Hitchens unfortunately no I did not.
@bhaveshtank1588 13 күн бұрын
same
@kilohsakul 6 ай бұрын
Giving us the solution is nice enough, but I was expecting an exaplanation too.
@camilohurtado4814 6 ай бұрын
Has anybody been able to solve this lab recently?
@mscreative3262 5 ай бұрын
Nooo, have you solved or not ?
@Karmik_bhavya 5 ай бұрын
@@mscreative3262 i tried every freaking method even with burp collaborator its just not getting the robot user to click on the link
@defaultbykoyomi4371 5 ай бұрын
I cannot resolve as well. the burp collaborator is not getting for robot user to click.
@camilohurtado4814 5 ай бұрын
I wasn't able to either.
@fmworld4219 2 ай бұрын
Same here
@Nul1Secur1ty 10 ай бұрын
;)
Michael Sommer
Рет қаралды 16 М.
Rana Khalil
Рет қаралды 4,5 М.
Руслан Гладенко
Рет қаралды 7 МЛН
МАРГУЛАН СЕЙСЕМБАЙ
Рет қаралды 6 МЛН
BUBBLEGUN
Рет қаралды 3,9 МЛН
CNBC Television
Рет қаралды 304 М.
Jan Goebel
Рет қаралды 49 М.
Michael Sommer
Рет қаралды 22 М.
Rana Khalil
Рет қаралды 6 М.
Руслан Гладенко
Рет қаралды 7 МЛН