SOME INTERESTING THINGS IN ELECTRON(Essays)

2018-06-22

[+] Author:MagicBlue
[+] Team: NeSE security team
[+] From: https://magicbluech.github.io
[+] Create: 2018-06-22

阅读全文

Neglected Web Security thought

2017-12-02

阅读全文

VelocityServlet Expression-language Injection

2017-11-15

[+] Author:MagicBlue
[+] Team: NeSE security team
[+] From: https://magicbluech.github.io
[+] Create: 2017-11-15

阅读全文

一个xss的利用(location.pathname situation)

2017-06-24

[+] Author:MagicBlue
[+] Team: NeSE security team
[+] From: https://magicbluech.github.io
[+] Create: 2017-06-24

阅读全文

百度v3登陆系统架构问题导致点我链接拿到你的bduss(巧用referer)

2017-02-13

[+] Author:MagicBlue
[+] Team: NeSE security team
[+] From: https://magicbluech.github.io
[+] Create: 2017-02-13

阅读全文

SOME攻击可导致点我链接蠕虫+关注

2017-02-06

[+] Author:MagicBlue
[+] Team: NeSE security team
[+] From: https://magicbluech.github.io
[+] Create: 2017-02-06

阅读全文