Today we are going to make a special post dedicated to those weird JavaScript moments, where things behave a little bit strange.
“Nobody normal ever accomplished anything meaningful in this world.” — Jonathan, Stranger Things
We will look at some code s... (more…)
Read more »
JavaScript and C both make you maintain your invariants the most painful way possible. Happily, there are better alternatives these days. (more…)
Read more »
Some context: I was assinged on a pentest and found an application that let me place my own links in an a tag's href attribute. As expected, all strange values like javascript: were correctly filte... (more…)
Read more »
Hide a malicious JavaScript library in a PNG image and tweet it, then include it in a vulnerable website by exploiting a XSS bypassing its Content-Security-Policy (CSP). (more…)
Read more »