今日热榜

更多开发者作品

今日历 全球最全的日历,日历届的航空母舰!
今日解忧 赛博修行,舒缓静心,21世纪解压神器!
今日热卖 淘宝京东拼多多等热卖热榜线报聚合
百晓生 AI 人工智能聊天兼全能创作助手
榜眼数据 今日热榜官方数据 API 开放平台
Soroush Dalili (@irsdl) – سروش
订阅

最新

1. Cookieless DuoDrop: IIS Auth Bypass & App Pool Privesc in ASP.NET Framework (CVE-2023-36899 & CVE-2023-36560) My Advisories ‧ Soroush Dalili
2. Anchor Tag XSS Exploitation in Firefox with Target=”_blank” My Advisories ‧ Soroush Dalili
3. Thirteen Years On: Advancing the Understanding of IIS Short File Name (SFN) Disclosure! Security Posts ‧ Soroush Dalili
4. My MDSec Blog Posts so far in 2020/2021! My Advisories ‧ Soroush Dalili
5. File Upload Attack using XAMLX Files Security Posts ‧ Soroush Dalili
6. Uploading web.config for Fun and Profit 2 Security Posts ‧ Soroush Dalili
7. IIS Application vs. Folder Detection During Blackbox Testing Security Posts ‧ Soroush Dalili
8. Danger of Stealing Auto Generated .NET Machine Keys Security Posts ‧ Soroush Dalili
9. x-up-devcap-post-charset Header in ASP.NET to Bypass WAFs Again! Security Posts ‧ Soroush Dalili
10. Exploiting Deserialisation in ASP.NET via ViewState Security Posts ‧ Soroush Dalili
11. Yet Other Examples of Abusing CSRF in Logout Security Posts ‧ Soroush Dalili
12. How to win BIG and even more! Security Posts ‧ Soroush Dalili
13. Finding and Exploiting .NET Remoting over HTTP using Deserialisation Security Posts ‧ Soroush Dalili
14. More research on .NET deserialization My Advisories ‧ Soroush Dalili
15. Feel honoured to be there again after 8 years: Top 10 Web Hacking Techniques of 2017 Security Posts ‧ Soroush Dalili
16. Story of my two (but actually three) RCEs in SharePoint in 2018 Security Posts ‧ Soroush Dalili
17. ASP.NET resource files (.RESX) and deserialization issues My Advisories ‧ Soroush Dalili
18. MS 2018 Q4 – Top 5 Bounty Hunter for 2 RCEs in SharePoint Online My Advisories ‧ Soroush Dalili
19. WAF Bypass Techniques – Using HTTP Standard and Web Servers’ Behaviour Security Posts ‧ Soroush Dalili
20. SMB hash hijacking & user tracking in MS Outlook My Advisories ‧ Soroush Dalili
更新于 55 分钟前

近期历史最近 100 条记录

2023-08-09 Cookieless DuoDrop: IIS Auth Bypass & App Pool Privesc in ASP.NET Framework (CVE-2023-36899 & CVE-2023-36560) My Advisories ‧ Soroush Dalili
2023-08-01 Anchor Tag XSS Exploitation in Firefox with Target=”_blank” My Advisories ‧ Soroush Dalili
2023-08-01 Thirteen Years On: Advancing the Understanding of IIS Short File Name (SFN) Disclosure! Security Posts ‧ Soroush Dalili
2023-07-21 My MDSec Blog Posts so far in 2020/2021! My Advisories ‧ Soroush Dalili
2023-07-21 File Upload Attack using XAMLX Files Security Posts ‧ Soroush Dalili
2023-07-21 Uploading web.config for Fun and Profit 2 Security Posts ‧ Soroush Dalili
2023-07-21 IIS Application vs. Folder Detection During Blackbox Testing Security Posts ‧ Soroush Dalili
2023-07-21 Danger of Stealing Auto Generated .NET Machine Keys Security Posts ‧ Soroush Dalili
2023-07-21 x-up-devcap-post-charset Header in ASP.NET to Bypass WAFs Again! Security Posts ‧ Soroush Dalili
2023-07-21 Exploiting Deserialisation in ASP.NET via ViewState Security Posts ‧ Soroush Dalili
2023-07-21 Yet Other Examples of Abusing CSRF in Logout Security Posts ‧ Soroush Dalili
2023-07-21 How to win BIG and even more! Security Posts ‧ Soroush Dalili
2023-07-21 Finding and Exploiting .NET Remoting over HTTP using Deserialisation Security Posts ‧ Soroush Dalili
2023-07-21 More research on .NET deserialization My Advisories ‧ Soroush Dalili
2023-07-21 Feel honoured to be there again after 8 years: Top 10 Web Hacking Techniques of 2017 Security Posts ‧ Soroush Dalili
2023-07-21 Story of my two (but actually three) RCEs in SharePoint in 2018 Security Posts ‧ Soroush Dalili
2023-07-21 ASP.NET resource files (.RESX) and deserialization issues My Advisories ‧ Soroush Dalili
2023-07-21 MS 2018 Q4 – Top 5 Bounty Hunter for 2 RCEs in SharePoint Online My Advisories ‧ Soroush Dalili
2023-07-21 WAF Bypass Techniques – Using HTTP Standard and Web Servers’ Behaviour Security Posts ‧ Soroush Dalili
2023-07-21 SMB hash hijacking & user tracking in MS Outlook My Advisories ‧ Soroush Dalili
2023-07-21 Bug Bounty vs Penetration Testing (Simple Unbiased Comparison) Security Posts ‧ Soroush Dalili
2023-07-21 Rare ASP.NET request validation bypass using request encoding My Advisories ‧ Soroush Dalili
2023-07-21 Additional notes on “A Forgotten HTTP Invisibility Cloak” talk! Security Posts ‧ Soroush Dalili
2023-06-01 My MDSec Blog Posts so far in 2020/2021! My Advisories ‧ Soroush Dalili
2023-06-01 File Upload Attack using XAMLX Files Security Posts ‧ Soroush Dalili
2023-06-01 Uploading web.config for Fun and Profit 2 Security Posts ‧ Soroush Dalili
2023-06-01 IIS Application vs. Folder Detection During Blackbox Testing Security Posts ‧ Soroush Dalili
2023-06-01 Danger of Stealing Auto Generated .NET Machine Keys Security Posts ‧ Soroush Dalili
2023-06-01 x-up-devcap-post-charset Header in ASP.NET to Bypass WAFs Again! Security Posts ‧ Soroush Dalili
2023-06-01 Exploiting Deserialisation in ASP.NET via ViewState Security Posts ‧ Soroush Dalili
2023-06-01 Yet Other Examples of Abusing CSRF in Logout Security Posts ‧ Soroush Dalili
2023-06-01 How to win BIG and even more! Security Posts ‧ Soroush Dalili
2023-06-01 Finding and Exploiting .NET Remoting over HTTP using Deserialisation Security Posts ‧ Soroush Dalili
2023-06-01 More research on .NET deserialization My Advisories ‧ Soroush Dalili
2023-06-01 Feel honoured to be there again after 8 years: Top 10 Web Hacking Techniques of 2017 Security Posts ‧ Soroush Dalili
2023-06-01 Story of my two (but actually three) RCEs in SharePoint in 2018 Security Posts ‧ Soroush Dalili
2023-06-01 ASP.NET resource files (.RESX) and deserialization issues My Advisories ‧ Soroush Dalili
2023-06-01 MS 2018 Q4 – Top 5 Bounty Hunter for 2 RCEs in SharePoint Online My Advisories ‧ Soroush Dalili
2023-06-01 WAF Bypass Techniques – Using HTTP Standard and Web Servers’ Behaviour Security Posts ‧ Soroush Dalili
2023-06-01 SMB hash hijacking & user tracking in MS Outlook My Advisories ‧ Soroush Dalili
2023-06-01 Bug Bounty vs Penetration Testing (Simple Unbiased Comparison) Security Posts ‧ Soroush Dalili
2023-06-01 Rare ASP.NET request validation bypass using request encoding My Advisories ‧ Soroush Dalili
2023-06-01 Additional notes on “A Forgotten HTTP Invisibility Cloak” talk! Security Posts ‧ Soroush Dalili
2020-11-01 My MDSec Blog Posts so far in 2020! My Advisories ‧ Soroush Dalili
2020-07-19 File Upload Attack using XAMLX Files Security Posts ‧ Soroush Dalili
2020-07-19 Uploading web.config for Fun and Profit 2 Security Posts ‧ Soroush Dalili
2020-07-19 IIS Application vs. Folder Detection During Blackbox Testing Security Posts ‧ Soroush Dalili
2020-07-19 Danger of Stealing Auto Generated .NET Machine Keys Security Posts ‧ Soroush Dalili
2020-07-19 x-up-devcap-post-charset Header in ASP.NET to Bypass WAFs Again! Security Posts ‧ Soroush Dalili
2020-07-19 Exploiting Deserialisation in ASP.NET via ViewState Security Posts ‧ Soroush Dalili
2020-07-19 Yet Other Examples of Abusing CSRF in Logout Security Posts ‧ Soroush Dalili
2020-07-19 How to win BIG and even more! Security Posts ‧ Soroush Dalili
2020-07-19 Finding and Exploiting .NET Remoting over HTTP using Deserialisation Security Posts ‧ Soroush Dalili
2020-07-19 More research on .NET deserialization My Advisories ‧ Soroush Dalili
2020-07-19 Feel honoured to be there again after 8 years: Top 10 Web Hacking Techniques of 2017 Security Posts ‧ Soroush Dalili
2020-07-19 Story of my two (but actually three) RCEs in SharePoint in 2018 Security Posts ‧ Soroush Dalili
2020-07-19 ASP.NET resource files (.RESX) and deserialization issues My Advisories ‧ Soroush Dalili
2020-07-19 MS 2018 Q4 – Top 5 Bounty Hunter for 2 RCEs in SharePoint Online My Advisories ‧ Soroush Dalili
2020-07-19 WAF Bypass Techniques – Using HTTP Standard and Web Servers’ Behaviour Security Posts ‧ Soroush Dalili
2020-07-19 SMB hash hijacking & user tracking in MS Outlook My Advisories ‧ Soroush Dalili
2020-07-19 Bug Bounty vs Penetration Testing (Simple Unbiased Comparison) Security Posts ‧ Soroush Dalili
2020-07-19 Rare ASP.NET request validation bypass using request encoding My Advisories ‧ Soroush Dalili
2020-07-19 Additional notes on “A Forgotten HTTP Invisibility Cloak” talk! Security Posts ‧ Soroush Dalili
2020-07-19 Request encoding to bypass web application firewalls My Advisories ‧ Soroush Dalili
2019-09-21 File Upload Attack using XAMLX Files Security Posts ‧ Soroush Dalili
2019-08-17 Uploading web.config for Fun and Profit 2 Security Posts ‧ Soroush Dalili
2019-07-10 IIS Application vs. Folder Detection During Blackbox Testing Security Posts ‧ Soroush Dalili
2019-05-11 Danger of Stealing Auto Generated .NET Machine Keys Security Posts ‧ Soroush Dalili
2019-05-08 x-up-devcap-post-charset Header in ASP.NET to Bypass WAFs Again! Security Posts ‧ Soroush Dalili
2019-05-08 Exploiting Deserialisation in ASP.NET via ViewState Security Posts ‧ Soroush Dalili
2019-05-08 Yet Other Examples of Abusing CSRF in Logout Security Posts ‧ Soroush Dalili
2019-05-08 How to win BIG and even more! Security Posts ‧ Soroush Dalili
2019-05-08 Finding and Exploiting .NET Remoting over HTTP using Deserialisation Security Posts ‧ Soroush Dalili
2019-05-08 More research on .NET deserialization My Advisories ‧ Soroush Dalili
2019-05-08 Feel honoured to be there again after 8 years: Top 10 Web Hacking Techniques of 2017 Security Posts ‧ Soroush Dalili
2019-05-08 Story of my two (but actually three) RCEs in SharePoint in 2018 Security Posts ‧ Soroush Dalili
2019-05-08 ASP.NET resource files (.RESX) and deserialization issues My Advisories ‧ Soroush Dalili
2019-05-08 MS 2018 Q4 – Top 5 Bounty Hunter for 2 RCEs in SharePoint Online My Advisories ‧ Soroush Dalili
2019-05-08 WAF Bypass Techniques – Using HTTP Standard and Web Servers’ Behaviour Security Posts ‧ Soroush Dalili
2019-05-08 SMB hash hijacking & user tracking in MS Outlook My Advisories ‧ Soroush Dalili
2019-05-08 Bug Bounty vs Penetration Testing (Simple Unbiased Comparison) Security Posts ‧ Soroush Dalili
2019-05-08 Rare ASP.NET request validation bypass using request encoding My Advisories ‧ Soroush Dalili
2019-05-08 Additional notes on “A Forgotten HTTP Invisibility Cloak” talk! Security Posts ‧ Soroush Dalili
2019-05-08 Request encoding to bypass web application firewalls My Advisories ‧ Soroush Dalili
2019-05-08 When a web application SSRF causes the cloud to rain credentials & more Security Posts ‧ Soroush Dalili
2019-05-08 CVE-2017-8592 – XMLHttpRequest in IE followed 307 redirections with additional or customised headers
2019-05-08 Using Firefox Profiles in Security Testing
2019-05-08 Flash it baby!

匿名用户只展示最新 100 条榜单历史,更多历史数据请登录后查看,支持时光机按天筛选

Sponsors

今日解忧 - 赛博修行,舒缓静心,21世纪解压神器!
今日历 - 全球最全的日历,日历届的航空母舰!
百晓生AI - 全能创作助手

猜你喜欢

看雪论坛 ‧ 最新精华
2648位订阅者
Sec-News ‧ 安全文摘
1023位订阅者
先知社区 ‧ 精华推荐
4536位订阅者
FreeBuf ‧ 最新
1862位订阅者
安全客 ‧ 最新
2240位订阅者
安全脉搏 ‧ 最新
1366位订阅者
91Ri ‧ 最新
1391位订阅者
Apple Security Updates
188位订阅者
灯塔实验室
168位订阅者
Paper 安全技术精粹
257位订阅者
先知社区
404位订阅者
知道创宇
130位订阅者
腾讯安全玄武实验室
2151位订阅者
腾讯安全响应中心
791位订阅者
Yuxin's Blog
102位订阅者
阿德马Web安全
320位订阅者
Sky's自留地
262位订阅者
0h1in9e' s Blog | 林歌博客
160位订阅者
嘶吼 RoarTalk
504位订阅者
nmask's Blog
146位订阅者
ADog's Blog
208位订阅者
Nearg1e
194位订阅者
绿盟科技博客
727位订阅者
Vulnspy Blog
124位订阅者
Swing'Blog 有恨无人省
155位订阅者
giantbranch's blog
113位订阅者
Boogle's Blog
301位订阅者
网藤风险感知 – 斗象能力中心
208位订阅者
SecWiki News
173位订阅者
WHEREISK0SHL
172位订阅者
程序人生
283位订阅者
Security Tool Files ≈ Packet Sto
104位订阅者
独自等待-信息安全博客
362位订阅者
hackademix.net
114位订阅者
漏洞时代
382位订阅者
小马's Blog
201位订阅者
体验盒子
402位订阅者
Mark's Blog
416位订阅者
360 核心安全技术博客
938位订阅者
360 Netlab Blog - Network Securi
140位订阅者
Panda - 专注于网络空间安全研究
359位订阅者
网络精灵 | 关注网络安全技术
183位订阅者
信息安全知识库
997位订阅者
每日安全推送
421位订阅者
NaviSec.it – 纳威安全导航
182位订阅者
即刻安全
268位订阅者
FreeBuf ‧ 本周热榜
573位订阅者
安全村
306位订阅者
不安全
373位订阅者
GitHub Security Lab
192位订阅者