Week: Zajęcia 15: 25 stycznia 2019 | 53m1n4r1um dl4 h4k3rØw | SKOS

Section outline

Jan Góra: XS-Search, URL-Search, DNS-rebinding

Materiały:

1. Top 10 web hacking techniques of 2018

https://portswigger.net/polls/top-10-web-hacking-techniques-2018

2. URL-Search
https://homakov.blogspot.com/2013/02/url-detection-with-hash-history-i-know.html

3. XS-Search (35c3 CTF - "Filemanager")
https://gist.github.com/l4wio/3a6e9a7aea5acd7a215cdc8a8558d176

4. Port scanning
https://portswigger.net/blog/exposing-intranets-with-reliable-browser-based-port-scanning

5. DNS-Rebinding
https://medium.com/@brannondorsey/attacking-private-networks-from-the-internet-with-dns-rebinding-ea7098a2d325
- Select activity presentation-files
  
  presentation-files