Web Security Academy | Web Cache Poisoning | 4 - Targeted Web Cache Poisoning Using Unknown Header

preview_player
Показать описание
We solve a Web Cache Poisoning lab in PortSwigger's Web Security Academy Labs.
  1. TJCHacking
Рекомендации по теме
Introduction to the 0:12:11

Introduction to the Web Security Academy Series

What is SQL 0:10:21

What is SQL injection? - Web Security Academy

How I Would 0:07:52

How I Would Learn Cyber Security if I Could Start Over in 2024 (Beginner Roadmap)

Web Security Academy 0:01:55

Web Security Academy - Introduction

A one million 0:03:32

A one million milestone for the Web Security Academy

Aprende Hacking Web 0:04:04

Aprende Hacking Web GRATIS - Web Security Academy

Erase User Profile 0:03:02

Erase User Profile | Web Security Academy Solutions

SSRF via flawed 0:03:52

SSRF via flawed request parsing-Web Security Academy

Install Burp Suite 0:04:09

Install Burp Suite Professional | For Free | portswigger academy | 2025 #burpsuite

2025 Ethical Hacker 0:44:40

2025 Ethical Hacker Roadmap with lots of free training (NOT Sponsored)

Server-Side Vulnerabilities - 1:08:46

Server-Side Vulnerabilities - Part 1 -- [Web Security Academy Learning Path]

FREE Cyber Security 0:09:35

FREE Cyber Security Training for Beginners (HIGH Demand Skills)

Intro to Web 0:03:48

Intro to Web Security Academy

Rozwiązania zadań z 2:47:21

Rozwiązania zadań z Web Security Academy #1

Routing based SSRF-Web 0:04:45

Routing based SSRF-Web Security Academy

How to set 0:01:26

How to set up foxy proxy and burp ? Portswigger Web security academy #websecurity #burp #bugbounty

What is directory 0:05:09

What is directory traversal? (file path traversal) - Web Security Academy

Web Security Academy 0:31:11

Web Security Academy | Websockets | 3 - Cross-Site Websocket Hijacking

How to get 0:07:23

How to get into Web Application Security | PortSwigger Academy

Web Security Academy 0:17:20

Web Security Academy - SQL Injection

Web Security Academy: 0:03:34

Web Security Academy: querying the database type and version on MySQL and Microsoft

What is command 0:07:46

What is command injection? - Web Security Academy

Unprotected Admin Functionality 0:01:11

Unprotected Admin Functionality | Web Security Academy (Audio)

Web Security Academy: 0:03:55

Web Security Academy: Blind SQL injection with time delays

Комментарии
Автор

Also I don't get what's the significance of targeting tracking.js...is it because it is a js file? I'm not unsafe handling of resource imports!!!

pranjalruhela
Автор

If a header (xhost in this case) is supported by the root of a website ie the homepage will it be supported throughout the website... why to test the home page rather than the comments section by the param miner?

pranjalruhela