Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
The ha.ckers.org and sla.ckers.org web application security lab house rules and a place for you to introduce yourself if you like. 

Current Page: 1 of 1
Results 1 - 3 of 3
5 years ago
Syme
I gather that it's not a new attack (although I still quite like the idea). I wouldn't want to use the classic cookie stealing xss, because as I have little direct control of who views your user agent, it would probably get me into more trouble than it's worth, and out of my depth. I've just written a variant on it which simply reciprocates what they tried to do to you by logging their referrer, u
Forum: OMG Ponies
5 years ago
Syme
I wonder what the chance of people's user agents being viewed in a manner that's vulnerable to XSS is. If the chance is decent then I just had an interesting (and probably legal to implement!) idea. Also, please don't strangle me for posting on an old thread.
Forum: OMG Ponies
5 years ago
Syme
Hey. Looks like a talented community of people hang out here. For the moment I'll be lurking rather than posting, as I have a pathetic amount of knowledge compared with you lot. Hopefully in time I'll learn enough to be able to contribute meaningfully. Till then you can call me paranoid Syme.
Forum: Intro
Current Page: 1 of 1