Название: jаvascript for hackers : Learn to think like a hacker Автор: Gareth Heyes Издательство: Leanpub Год: 2023-01-16 Язык: английский Формат: pdf (true), djvu Размер: 10.1 MB
Learn how to find interesting behaviors and flaws in jаvascript. In this book, you will learn about the latest and most effective methods for hacking jаvascript and generating XSS payloads. The book also covers how to create jаvascript using only text. Have you heard about DOM Clobbering? This book gives you all the details.
Have you ever wondered how hackers find flaws in browsers and jаvascript? This book explains how they think and gives you the tools to find flaws on your own. The book covers the basics of jаvascript hacking and then explains how to create a jаvascript payload without parentheses.
jаvascript has always been a passion of mine, and I'm fascinated by ways to further understand JS. I often see people tweeting about how to call functions without parentheses, crazy XSS vectors, and generally how to better understand certain functions. People often ask how tweets can be applied to bypass WAFs and browser exploits. Sure, you can use the jаvascript function call method without parentheses to bypass WAFs, but the point of my tweets is to quickly gain knowledge that can be applied later.
By looking for ways to hack jаvascript, you learn about the function and then apply that knowledge to achieve your goal. If you have no goal you can be staring at a blank page not getting anywhere. A goal enables you to make sure you’re always trying something and it can be flexible too. For instance one of my goals was “execute jаvascript without parentheses”. If you’ve set a good goal it will almost likely never end and good ones also mutate into another goal for example the goal I mentioned earlier mutated into “execute jаvascript functions without parentheses and pass arguments”. Now you can see how these two goals are useful because now you have a clear idea what you have to do and you can abuse jаvascript features to achieve that goal. In the example above the second goal is more challenging than the first but the second goal enables you to gain knowledge to achieve the more difficult goal.
Скачать jаvascript for hackers : Learn to think like a hacker (2023)
Внимание
Уважаемый посетитель, Вы зашли на сайт как незарегистрированный пользователь.
Мы рекомендуем Вам зарегистрироваться либо войти на сайт под своим именем.
Информация
Посетители, находящиеся в группе Гости, не могут оставлять комментарии к данной публикации.