honoki.net
honoki.net
Cyber entomology
Skip to content

May 2014

There were 2 posts published in May 2014 (this is page 1 of 1).

Grab password with XSS

Automatic completion of passwords in web forms allows attackers to grab your password if an XSS vulnerability exists. We don’t usually associate XSS vulnerabilities with compromised passwords, but it is sometimes possible to steal login credentials through XSS vulnerabilities on a website. Take a look at the example attack below.

in websec | Comment

HTTP Auth Phishing

HTTP Auth offers attackers easy phishing. This post describes how it is done and how the attacker could circumvent the constant reappearing of the authentication prompt.

in websec | Comment
  • GitHub
  • Mastodon
  • Bluesky
  • LinkedIn

Recent Posts

  • WILSON Cloud Respwnder
  • Introducing BBRF: yet another Bug Bounty Reconnaissance Framework
  • CVE-2020-11518: how I bruteforced my way into your Active Directory
  • XXE-scape through the front door: circumventing the firewall with HTTP request smuggling
  • HTTP Request Smuggling – 5 Practical Tips

Recent Comments

  • mohamed on XXE-scape through the front door: circumventing the firewall with HTTP request smuggling
  • Chase Jensen on Introducing BBRF: yet another Bug Bounty Reconnaissance Framework
  • Esonhugh on Introducing BBRF: yet another Bug Bounty Reconnaissance Framework
  • pieter on I’ve Got You Under My Skin, Bill Evans Solo Transcription
  • Frank Barrett on I’ve Got You Under My Skin, Bill Evans Solo Transcription

Archives

  • July 2021
  • October 2020
  • August 2020
  • March 2020
  • February 2020
  • June 2019
  • May 2019
  • March 2019
  • December 2018
  • April 2017
  • October 2015
  • July 2015
  • January 2015
  • May 2014
  • September 2013
  • April 2013
  • November 2011
  • January 2011

Categories

  • Computers
  • Music
  • Programming
  • websec
  • Words

Meta

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org
Independent Publisher empowered by WordPress Mastodon