When you have that feeling an input is vulnerable to XSS but something is blocking or removing the payload, you can use this relatively simple trick using Burp Suite’s Intruder to discover which XSS tags and attributes are able to bypass the block.
[Read More]
It’s common knowledge Google dorking is a powerful tool for finding just about anything on targets. Furthermore it’s extra nice that Google has done the majority of the hard work for us, we just know have to know how to search for it.
[Read More]