Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Q and A on cross site request forgeries and breaking into sessions. It's one of the attacks that XSS enables and the attack of the future. For Session, fixations, hijacking, lockout, replay, session riding etc.... 

Current Page: 1 of 1
Results 1 - 2 of 2
6 years ago
n0
I saw this nice java script code that can reveal passwords written in input boxes this is usefull if you have password saved in your browser and you want to retrive it. javascript:(function(){var s,F,j,f,i; s = ""; F = document.forms; for(j=0; j<F.length; ++j) { f = F; for (i=0; i<f.length; ++i) { if (f.type.toLowerCase() == "password") s += f.value + "\n";
Forum: CSRF and Session Info
6 years ago
n0
You can src to a .php file and still get a valid image to be displayed. no need to play with any of php or apache settings just use something like that <?php $filename = "realImage.jpg"; header("Content-Type: image/jpeg"); header("Content-Disposition: inline , filename='dontcare.jpg' " ); header("Content-length: " . files
Forum: CSRF and Session Info
Current Page: 1 of 1