maride/hacktricks
1
0
Fork 0
mirror of https://github.com/HackTricks-wiki/hacktricks.git synced 2025-10-10 18:36:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
904 Commits 33 Branches 17 Tags
Commit Graph

166 Commits

Author SHA1 Message Date
SirBroccoli
58f3cc12ed Merge branch 'master' into update_HTB__TheFrizz_20250827_141120 2025-09-07 23:25:06 +02:00
carlospolop
29abb79f0c f 2025-09-07 16:49:20 +02:00
carlospolop
228223bf83 f 2025-09-05 13:01:05 +02:00
carlospolop
5bab7ec384 f 2025-09-05 12:50:07 +02:00
SirBroccoli
98184cce10 Merge pull request #1372 from HackTricks-wiki/update_The_Art_of_PHP__CTF_born_exploits_and_techniques_20250830_123618 
The Art of PHP CTF‑born exploits and techniques
 2025-09-03 20:02:25 +02:00
carlospolop
3db7d5f74f Drop unwanted changes in deserialization/README.md and av-bypass.md 2025-09-03 12:59:34 +02:00
carlospolop
58595d7fb1 updates 2025-09-03 12:55:30 +02:00
SirBroccoli
67710555e3 Merge branch 'master' into update_HTB__TheFrizz_20250827_141120 2025-09-03 12:11:17 +02:00
HackTricks News Bot
85fa2a0dee Add content from: The Art of PHP: CTF‑born exploits and techniques 
- Remove searchindex.js (auto-generated file)
 2025-08-30 12:47:45 +00:00
SirBroccoli
954b1d48e1 Merge pull request #1341 from HackTricks-wiki/update_Inline_Style_Exfiltration__leaking_data_with_chain_20250826_182859 
Inline Style Exfiltration leaking data with chained CSS cond...
 2025-08-29 02:05:10 +02:00
SirBroccoli
adb6272876 Merge pull request #1345 from HackTricks-wiki/update_From__Low-Impact__RXSS_to_Credential_Stealer__A_JS_20250827_063121 
From "Low-Impact" RXSS to Credential Stealer A JS-in-JS Walk...
 2025-08-28 20:02:18 +02:00
SirBroccoli
acbc6203ee Merge pull request #1360 from HackTricks-wiki/update_HTB_Nocturnal__IDOR___Command_Injection___Root_via_20250827_191622 
HTB Nocturnal IDOR → Command Injection → Root via ISPConfig ...
 2025-08-28 16:02:10 +02:00
carlospolop
ebfa5c6be1 Merge branch 'master' of github.com:HackTricks-wiki/hacktricks 2025-08-28 13:44:18 +02:00
SirBroccoli
ff4d1db05b Update command-injection.md 2025-08-28 12:05:50 +02:00
SirBroccoli
ba87c9a330 Fix formatting in README.md for file upload section 2025-08-28 11:45:38 +02:00
carlospolop
093bac3bad f 2025-08-28 11:44:38 +02:00
HackTricks News Bot
399a99eefa Add content from: HTB Nocturnal: IDOR → Command Injection → Root via ISPConfig... 
- Remove searchindex.js (auto-generated file)
 2025-08-27 19:21:10 +00:00
HackTricks News Bot
147535f8bf Add content from: HTB: TheFrizz 
- Remove searchindex.js (auto-generated file)
 2025-08-27 14:56:20 +02:00
HackTricks News Bot
e43a1147c1 Add content from: From "Low-Impact" RXSS to Credential Stealer: A JS-in-JS Wal... 2025-08-27 06:35:05 +00:00
HackTricks News Bot
3acbdf095c Add content from: Inline Style Exfiltration: leaking data with chained CSS con... 2025-08-26 18:34:43 +00:00
HackTricks News Bot
7d05801e3f Add content from: VTENEXT 25.02 – a three-way path to RCE 2025-08-26 12:57:50 +00:00
SirBroccoli
50c33567a2 Update proxy-waf-protections-bypass.md 2025-08-22 13:06:29 +02:00
SirBroccoli
6f039920c0 Fix reference formatting in HTTP request smuggling README 
Updated reference formatting in README for clarity.
 2025-08-22 13:05:45 +02:00
HackTricks News Bot
f740b52e29 Add content from: Research Update: Enhanced src/pentesting-web/xs-search/cooki... 2025-08-22 01:29:27 +00:00
SirBroccoli
4d90890835 Merge branch 'master' into update_Android_Malware_Promises_Energy_Subsidy_to_Steal_F_20250820_125045 2025-08-21 14:49:47 +02:00
SirBroccoli
c131632a85 Merge branch 'master' into update_FiberGateway_GR241AG_-_Full_Exploit_Chain_20250820_124033 2025-08-21 12:28:41 +02:00
SirBroccoli
8074b77c61 Merge pull request #1302 from HackTricks-wiki/update_How_I_found_a_0-Click_Account_takeover_in_a_public_20250819_012746 
How I found a 0-Click Account takeover in a public BBP and l...
 2025-08-21 08:02:20 +02:00
SirBroccoli
f7ed4e8aeb Merge pull request #1305 from HackTricks-wiki/research_update_src_pentesting-web_dependency-confusion_20250819_082704 
Research Update Enhanced src/pentesting-web/dependency-confu...
 2025-08-21 04:29:40 +02:00
carlospolop
20c36ad7a4 f 2025-08-20 21:24:24 +02:00
SirBroccoli
1f9975e782 Merge pull request #1308 from HackTricks-wiki/update_Beware_the_false_false_positive__how_to_distinguis_20250819_184719 
Beware the false false‑positive how to distinguish HTTP pipe...
 2025-08-20 18:02:08 +02:00
SirBroccoli
0a9d007403 Merge pull request #1310 from HackTricks-wiki/update_Marshal_madness__A_brief_history_of_Ruby_deseriali_20250820_063337 
Marshal madness A brief history of Ruby deserialization expl...
 2025-08-20 16:01:52 +02:00
HackTricks News Bot
0ef4e28704 Add content from: Android Malware Promises Energy Subsidy to Steal Financial D... 2025-08-20 12:52:33 +00:00
HackTricks News Bot
4b90965712 Add content from: FiberGateway GR241AG - Full Exploit Chain 2025-08-20 12:46:23 +00:00
SirBroccoli
b48c4084e5 Update README.md 2025-08-20 12:53:48 +02:00
carlospolop
e8f19acfe9 f 2025-08-20 10:56:12 +02:00
HackTricks News Bot
a919fe6dc4 Add content from: Marshal madness: A brief history of Ruby deserialization exp... 2025-08-20 06:36:55 +00:00
SirBroccoli
4172fc66f1 Merge pull request #1242 from HackTricks-wiki/research_update_src_pentesting-web_sql-injection_oracle-injection_20250805_162114 
Research Update Enhanced src/pentesting-web/sql-injection/or...
 2025-08-20 02:05:30 +02:00
carlospolop
2a97a31214 f 2025-08-19 23:49:07 +02:00
SirBroccoli
06d3a6fa31 Merge pull request #1253 from HackTricks-wiki/research_update_src_pentesting-web_xss-cross-site-scripting_iframes-in-xss-and-csp_20250807_014324 
Research Update Enhanced src/pentesting-web/xss-cross-site-s...
 2025-08-19 22:02:05 +02:00
HackTricks News Bot
6e1ab178f5 Add content from: Beware the false false‑positive: how to distinguish HTTP pip... 2025-08-19 18:58:27 +00:00
HackTricks News Bot
f72294e745 Add content from: Research Update: Enhanced src/pentesting-web/dependency-conf... 2025-08-19 08:31:53 +00:00
HackTricks News Bot
d6a776e9d0 Add content from: How I found a 0-Click Account takeover in a public BBP and l... 2025-08-19 01:31:47 +00:00
SirBroccoli
831661ebb6 Update iframes-in-xss-and-csp.md 2025-08-18 15:50:48 +02:00
HackTricks News Bot
5d3a70fc01 Add content from: From Support Ticket to Zero Day 2025-08-16 12:42:17 +00:00
SirBroccoli
c4207757ce Merge pull request #1271 from HackTricks-wiki/research_update_src_pentesting-web_nosql-injection_20250811_082826 
Research Update Enhanced src/pentesting-web/nosql-injection....
 2025-08-14 02:05:20 +02:00
HackTricks News Bot
8af174c0ea Add content from: Extraction of Synology Encrypted Archives - Pwn2Own Ireland ... 2025-08-11 12:49:04 +00:00
HackTricks News Bot
76c4ff33ed Add content from: Research Update: Enhanced src/pentesting-web/nosql-injection... 2025-08-11 08:31:13 +00:00
SirBroccoli
358b8dcfa5 Merge pull request #1245 from HackTricks-wiki/research_update_src_pentesting-web_deserialization_exploiting-__viewstate-parameter_20250806_014331 
Research Update Enhanced src/pentesting-web/deserialization/...
 2025-08-10 20:01:59 +02:00
SirBroccoli
b22c60801c Update exploiting-__viewstate-parameter.md 2025-08-10 14:29:54 +02:00
HackTricks News Bot
189ace9158 Add content from: Research Update: Enhanced src/pentesting-web/xss-cross-site-... 2025-08-07 01:45:59 +00:00