Merge pull request #1025 from HackCommander/update-hacking-with-cookies-readme

Update hacking-with-cookies/README.md
2025-10-10 18:36:50 +00:00 · 2025-05-18 05:00:18 +02:00 · 2025-05-18 05:00:18 +02:00 · c04dd4b8a8
commit c04dd4b8a8
parent 0e10258a5b b7eb9d9a7b
1 changed files with 1 additions and 1 deletions
--- a/src/pentesting-web/hacking-with-cookies/README.md
+++ b/src/pentesting-web/hacking-with-cookies/README.md
@ -58,7 +58,7 @@ This avoids the **client** to access the cookie (Via **Javascript** for example:

 #### **Bypasses**

- If the page is **sending the cookies as the response** of a requests (for example in a **PHPinfo** page), it's possible to abuse the XSS to send a request to this page and **steal the cookies** from the response (check an example in [https://hackcommander.github.io/posts/2022/11/12/bypass-httponly-via-php-info-page/](https://hackcommander.github.io/posts/2022/11/12/bypass-httponly-via-php-info-page/).
+- If the page is **sending the cookies as the response** of a requests (for example in a **PHPinfo** page), it's possible to abuse the XSS to send a request to this page and **steal the cookies** from the response (check an example in [https://blog.hackcommander.com/posts/2022/11/12/bypass-httponly-via-php-info-page/](https://blog.hackcommander.com/posts/2022/11/12/bypass-httponly-via-php-info-page/)).
 - This could be Bypassed with **TRACE** **HTTP** requests as the response from the server (if this HTTP method is available) will reflect the cookies sent. This technique is called **Cross-Site Tracking**.
  - This technique is avoided by **modern browsers by not permitting sending a TRACE** request from JS. However, some bypasses to this have been found in specific software like sending `\r\nTRACE` instead of `TRACE` to IE6.0 SP2.
 - Another way is the exploitation of zero/day vulnerabilities of the browsers.