https://netsec.expert/categories/cheatsheet/ Recent content in cheatsheet on Sam's Hacking Wonderland Hugo -- gohugo.io en the@netsec.expert (Sam Anttila) the@netsec.expert (Sam Anttila) ©{year} Sun, 07 Feb 2021 12:00:00 +0000 weekly https://netsec.expert/posts/xss-in-2021/ Sun, 07 Feb 2021 12:00:00 +0000 the@netsec.expert (Sam Anttila) Sun, 07 Feb 2021 12:00:00 +0000 https://netsec.expert/posts/xss-in-2021/ It’s been a year since my last XSS cheatsheet, and a year of developments in XSS exploitology. Here’s a new and updated version jam-packed full of goodies that I use myself! Note: This cheat-sheet focuses on up to date and relevant items only. Would you take a cheat sheet with you to an exam that has a bunch of irrelevant stuff? No, of course not. I hate cheat sheets that Sam Anttila bug hunting vulnerabilities cheatsheet https://netsec.expert/posts/xss-in-2020/ Sat, 01 Feb 2020 12:00:00 +0000 the@netsec.expert (Sam Anttila) Sat, 01 Feb 2020 12:00:00 +0000 https://netsec.expert/posts/xss-in-2020/ I dislike most XSS cheat sheets out there. Many attempt to be copy-and-paste sources (and never clean up things that stopped working 10 years ago) while ignoring that in most instances where you’re doing more difficult than trivial injection literally none of it will work for one reason or another (be it WAF or a XSS filter), and if it is trivial XSS then you just need one vector and not a million. Sam Anttila bug hunting vulnerabilities cheatsheet