Skip to content

Commit

Permalink
add parsing docs
Browse files Browse the repository at this point in the history
  • Loading branch information
xanhacks committed May 1, 2024
1 parent 10ff132 commit 38dc0d3
Show file tree
Hide file tree
Showing 3 changed files with 13 additions and 1 deletion.
7 changes: 6 additions & 1 deletion content/docs/getting-started/vulnerability-reports.md
Original file line number Diff line number Diff line change
Expand Up @@ -44,9 +44,10 @@ toc: true
- [Article - XSS with bypass on ProtonMail webclient](https://www.sonarsource.com/blog/code-vulnerabilities-leak-emails-in-proton-mail/)
- [Article - Fetch Diversion](https://acut3.net/posts/2023-01-03-fetch-diversion/)

## Server-Side
## Parser

- [Article - Exploiting HTTP Parsers Inconsistencies](https://rafa.hashnode.dev/exploiting-http-parsers-inconsistencies)
- [Exploring IPv6 Zone Identifier](https://blog.slonser.info/posts/ipv6-zones/)

## PHP

Expand Down Expand Up @@ -94,6 +95,10 @@ toc: true
- [Shockwave Identifies Web Cache Deception and Account Takeover Vulnerability affecting OpenAI's ChatGPT](https://www.shockwave.cloud/blog/shockwave-works-with-openai-to-fix-critical-chatgpt-vulnerability)
- [ChatGPT Account Takeover - Wildcard Web Cache Deception](https://nokline.github.io/bugbounty/2024/02/04/ChatGPT-ATO.html)

## Cryptography

- [Unsecure time-based secret and Sandwich Attack](https://www.aeth.cc/public/Article-Reset-Tolkien/secret-time-based-article-en.html)

## Others

- [Article - Detecting uBlock on Chrome Browser](https://blog.ankursundara.com/checking-enumerating-a-users-browser-extensions/)
Expand Down
4 changes: 4 additions & 0 deletions content/docs/others/parsing.md
Original file line number Diff line number Diff line change
Expand Up @@ -17,6 +17,10 @@ toc: true

Parsing refers to the process of analyzing and converting input data into a more usable format. While essential for data processing, parsing can introduce security mistakes.

## HTTP

- [Exploiting HTTP Parsers Inconsistencies](https://rafa.hashnode.dev/exploiting-http-parsers-inconsistencies)

## IPv6

- [Exploring IPv6 Zone Identifier](https://blog.slonser.info/posts/ipv6-zones/)
3 changes: 3 additions & 0 deletions hugo_stats.json
Original file line number Diff line number Diff line change
Expand Up @@ -329,6 +329,7 @@
"cross-origin-read-blocking-corb",
"cross-origin-resource-policy-corp",
"cross-origin-resource-sharing-cors",
"cryptography",
"csp",
"csp-bypass",
"cve-2021-41773---path-traversal--potential-rce",
Expand Down Expand Up @@ -377,6 +378,7 @@
"hostonly",
"how-corb-works",
"html-parser-fuzzing",
"http",
"httponly",
"in-scope",
"infinite-levels-deep",
Expand Down Expand Up @@ -423,6 +425,7 @@
"other-attributes",
"others",
"out-of-scope",
"parser",
"parsing",
"passing-request-headers",
"path-traversal",
Expand Down

0 comments on commit 38dc0d3

Please sign in to comment.