1nfornography

The following is my documentation on PortSwigger’s Academy labs. End goal: Perform a cross-site scripting attack that breaks out of the select element and calls the alert function What you’ll need: <1> First, we navigate to a product page in the lab, right-click the “Check stock” button on the bottom of the page, and inspect […]

The following is my documentation on PortSwigger’s Academy labs. End goal: Perform a cross-site scripting attack that breaks out of the JavaScript string and calls the alert function Remember when we did this? Well this lab has accounted for our previous method of calling the alert function by placing our search queries into a JavaScript […]

The following is my documentation on PortSwigger’s Academy labs. End Goal: Submit a comment that calls the alert function when the author name is clicked In our last lab, we called an alert function by injecting our payload into a search bar. Our “end goal” already alluded that we are likely going to take advantage […]

The following is my documentation on PortSwigger’s Academy labs. Goal: Perform a cross-site scripting attack that injects an attribute and calls the “alert” function This was, overall, a simple and quick lab, but one that highlights why certain prevention methods are super important. We’ll begin, by taking a look at the website and then popping […]

The following is my documentation on Portswigger’s Academy labs. Goal: Deliver an exploit that calls print() in the user’s browser. We are going to commit “blogger sin” and show you the solution first and work our way backward. That’s because I want to be helpful in my learning journey, but also because as someone who […]