Day 84/100 Hack and Improvement

less than 1 minute read

Day 84 comes with some readings on DOM XSS due to the usage of paraminer.

From param miner to DOM XSS

From Sam (CoffeeJunkie). Lately spending some times in PortSwigger Academy, came to realization (for a newbie) that paraminer ended up being pretty useful, not only to guess parameters in different endpoints, also to guess body parameters, headers, and cookies! This case, in this write up there is a the usefulness from paraminer which gave to the attacker a pretty nice DOM XSS. You can check teh write up here.


Leave a comment