attack ships on fire
Subscribe
Sign in
Home
Archive
About
Exploiting TRACE
TL;DR The presence of the TRACE method is generally considered to be at best an informational finding (and in isolation, I wouldn’t disagree with that…
Aug 4
•
attack ships on fire
Share this post
Exploiting TRACE
attackshipsonfi.re
Copy link
Facebook
Email
Notes
Other
New
Exploiting API Framework Flexibility
TL;DR The modern frameworks are often very flexible with what they accept, and will happily treat a POST with a JSON body as interchangeable with a URL…
Dec 17, 2022
•
attack ships on fire
1
Share this post
Exploiting API Framework Flexibility
attackshipsonfi.re
Copy link
Facebook
Email
Notes
Other
Exploiting CORS Misconfigurations
TL;DR If you can find an unrestricted CORS endpoint, that also responds to the HTTP override headers, then potentially you can use it to access…
Nov 26, 2022
•
attack ships on fire
2
Share this post
Exploiting CORS Misconfigurations
attackshipsonfi.re
Copy link
Facebook
Email
Notes
Other
3
attack ships on fire
The unbridled ramblings of a security dinosaur.
Subscribe
attack ships on fire
Subscribe
About
Archive
Sitemap
Share this publication
attack ships on fire
attackshipsonfi.re
Copy link
Facebook
Email
Notes
Other
attack ships on fire
The unbridled ramblings of a security dinosaur.
Launched 10 months ago
Subscribe
No thanks
By registering you agree to Substack's
Terms of Service
, our
Privacy Policy
, and our
Information Collection Notice
This site requires JavaScript to run correctly. Please
turn on JavaScript
or unblock scripts