How to generate a random value?
How to generate a random value with Java
Month / May 2016
Malicious redirect & bypass “Redirect Notice” at Google.com
The last few months, when I’m working around with “Open Redirect” vulnerability, I found something interesting that a hacker can bypass confirmation page and redirect the user to the malicious website by using the Google.com domain.
Text injection on form
Đây là một lỗi khá thú vị, nó có thể được dùng để khai thác và đánh lừa người dùng (phishing).
XSS collection for testing
This is a list of strings that can be used for XSS testing and bypass filter.