Blog Post Listing
Sometimes I write things. Here's some of them.
| Date | Title | Description |
|---|---|---|
| 20 January 2021 Published here 20 March 2023 |
Browsers vs. Data and JavaScript URLs | An explanation/interactive demo page of data/JavaScript URLs. By storing data directly in URL bars and as text within the DOM, they can help you turn open redirects into reflected XSS and more - without even using a webserver! |
| 24 May 2019 Published here 20 March 2023 |
Automatically Fetching and Analyzing Token Values in Burp Suite | How to use Burp Suite Macros to automate around certain kinds of CSRF tokens, as well as very basic use of the Sequencer. |
| 21 Feb 2018 | @WorstPasswords-Twitter-Bot | Explanation of the Worstpasswords Twitter Bot |
| 8 Feb 2018 | Password Advice For Everyone | Not quite the same as the article from 31 January, but with some overlap |
| 31 January 2018 | Actionable Password Advice Based on the Probable Wordlists | As titled |
