F4stL3arnerSecurity Onion HomeLab WalkthroughSecurity Onion IDS Homelab SetupJun 22, 2022Jun 22, 2022
F4stL3arnerDOM XSS in innerHTML sink using source location.searchStep 1: Test regular functionality of web app, do so by entering “test” in search field. Look how it respondsJun 21, 2022Jun 21, 2022
F4stL3arnerStored XSS into HTML context with nothing encodedStep 1: Click on view post to access the forum. Then find the comment section which is where you will “store” your XSS payload.Jun 21, 2022Jun 21, 2022
F4stL3arnerReflected XSS into HTML context with nothing encoded — Portswigger Web Academy LabStep 1: Test the web app for its regular functionality Search for “test” or something similar ![[Pasted image 20211119155110.png]] Step 2…Dec 8, 2021Dec 8, 2021