Robuta

Making HTTP header injection critical via response queue... portswigger.net making http header via

Top 10 web hacking techniques of 2021 | PortSwigger Research portswigger.net top web hacking

Breaking the chains on HTTP Request Smuggler | PortSwigger... portswigger.net http request chains

Top 10 web hacking techniques of 2019 | PortSwigger Research portswigger.net top web hacking

ZAP – PortSwigger Labs: Username Enumeration with ZAP Scripts www.zaproxy.org zap portswigger labs

Hunting evasive vulnerabilities | PortSwigger Research portswigger.net hunting evasive

Top 10 web hacking techniques of 2018 | PortSwigger Research portswigger.net top web hacking

Practical Web Cache Poisoning | PortSwigger Research portswigger.net practical web cache

HTTP Desync Attacks: what happened next | PortSwigger Research portswigger.net http attacks happened

HTTP/3 connection contamination: an upcoming threat... portswigger.net http connection

The single-packet attack: making remote race-conditions 'local... portswigger.net single packet attack

HTTP/2: The Sequel is Always Worse | PortSwigger Research portswigger.net http sequel always

AngularJS CSP bypass in 56 characters | PortSwigger Research portswigger.net angularjs csp bypass

Server-Side Prototype Pollution Scanner - PortSwigger portswigger.net server side scanner

Refining your HTTP perspective, with bambdas | PortSwigger... portswigger.net refining http

JavaScript without parentheses using DOMMatrix | PortSwigger... portswigger.net javascript without

Bypassing CSP using polyglot JPEGs | PortSwigger Research portswigger.net csp using polyglot

ZAP – PortSwigger Labs: Password Brute-force via Password... www.zaproxy.org brute force zap labs

Burp Scanner - Web Vulnerability Scanner from PortSwigger portswigger.net burp scanner web

Finding DOM Polyglot XSS in PayPal the Easy Way | PortSwigger... portswigger.net finding dom polyglot

Server-Side Template Injection | PortSwigger Research portswigger.net server side template

Top 10 web hacking techniques of 2020 | PortSwigger Research portswigger.net top web hacking

ZAP – PortSwigger Labs: 2FA Broken Logic www.zaproxy.org zap portswigger labs

Top 10 web hacking techniques of 2024 | PortSwigger Research portswigger.net top web hacking

HTTP Desync Attacks: Request Smuggling Reborn | PortSwigger... portswigger.net http attacks request

Evading defences using VueJS script gadgets | PortSwigger... portswigger.net defences using vuejs

Top 10 web hacking techniques of 2022 | PortSwigger Research portswigger.net top web hacking

Turbo Intruder: Embracing the billion-request attack... portswigger.net turbo intruder attack

The curl quirk that exposed Burp Suite & Google Chrome... portswigger.net burp suite curl quirk

Web Security Blog - PortSwigger portswigger.net web security blog

Backslash Powered Scanning: hunting unknown vulnerability... portswigger.net powered scanning

PortSwigger discord.com portswigger

HTTP/1.1 must die: the desync endgame | PortSwigger Research portswigger.net http must die endgame

Top 10 web hacking techniques of 2023 | PortSwigger Research portswigger.net top web hacking

XSS without HTML: Client-Side Template Injection with AngularJS... portswigger.net client side xss html

When security features collide | PortSwigger Research portswigger.net security features

A hacking hat-trick: previewing three PortSwigger Research... portswigger.net hat trick hacking

How I accidentally framed myself for a hacking frenzy... portswigger.net accidentally framed

Introducing the URL validation bypass cheat sheet | PortSwigger... portswigger.net cheat sheet url

So you want to be a web security researcher? | PortSwigger... portswigger.net web security want

Adapting Burp extensions for tailored pentesting | PortSwigger... portswigger.net adapting burp

Bypassing Web Cache Poisoning Countermeasures | PortSwigger... portswigger.net web cache poisoning

Cracking the lens: targeting HTTP's hidden attack-surface... portswigger.net attack surface lens

Portable Data exFiltration: XSS for PDFs | PortSwigger Research portswigger.net portable data xss pdfs

Inline Style Exfiltration: leaking data with chained CSS... portswigger.net inline style leaking

How I choose a security research topic | PortSwigger Research portswigger.net security research

Cracking reCAPTCHA, Turbo Intruder style | PortSwigger Research portswigger.net cracking recaptcha

Shadow Repeater:AI-enhanced manual testing | PortSwigger Research portswigger.net ai enhanced shadow

Responsible denial of service with web cache poisoning... portswigger.net responsible denial

Exploiting CORS misconfigurations for Bitcoins and bounties... portswigger.net exploiting cors

WebSocket Turbo Intruder: Unearthing the WebSocket Goldmine... portswigger.net websocket turbo

Web Cache Entanglement: Novel Pathways to Poisoning... portswigger.net web cache novel

SAML roulette: the hacker always wins | PortSwigger Research portswigger.net saml roulette hacker

XSS in hidden input fields | PortSwigger Research portswigger.net xss hidden input

Top 10 Web Hacking Techniques of 2017 | PortSwigger Research portswigger.net top web hacking

Finding that one weird endpoint, with Bambdas | PortSwigger... portswigger.net finding one weird

ZAP – PortSwigger Labs: Broken Brute-Force Protection, IP Block www.zaproxy.org brute force zap labs

Detecting and exploiting path-relative stylesheet import... portswigger.net exploiting path