book.hacktricks.xyz
Resources curated from this publisher and indexed across appsec.fyi topic pages. Last item added: 2026-04-17.
| Date Added | Resource | Excerpt |
|---|---|---|
| 2026-04-17 2026 | Basic .Net deserialization ObjectDataProvider gadget (HackTricks)Deser | Basic .Net deserialization ObjectDataProvider gadget (HackTricks) |
| 2026-04-11 2026 | Rate Limit Bypass - HackTricksAPI Sec | Rate Limit Bypass - HackTricks |
| 2026-04-10 2026 | HackTricks: Jinja2 SSTISSTI | HackTricks: Jinja2 SSTI |
| 2026-04-10 2026 | HackTricks: SSTI (Server Side Template Injection)SSTI | HackTricks: SSTI (Server Side Template Injection) |
| 2026-04-10 2026 | HackTricks: JWT vulnerabilitiesJWT | HackTricks: JWT vulnerabilities |
| 2026-04-03 2026 | CSRF (Cross Site Request Forgery) | HackTricksCSRF | CSRF (Cross Site Request Forgery) | HackTricks |
| 2026-04-03 2026 | GraphQL | HackTricksGraphQL | GraphQL | HackTricks |
| 2026-04-03 2026 | IDOR - HackTricksAuthZIDOR | IDOR - HackTricks |
| 2025-08-14 2025 | XXE - XEE - XML External Entity - HackTricksXXE | The content focuses on XXE (XML External Entity) attacks, also known as XEE. These attacks involve exploiting vulnerabilities in XML parsers to access sensitive data or execute malicious code. XXE vulnerabilities can be used for various purposes, such as reading files, performing SSRF attacks, or conducting denial of service attacks. Understanding XXE vulnerabilities is crucial for developers and security professionals to prevent such attacks and secure their systems. The content likely provides insights, techniques, and countermeasures related to XXE attacks to enhance cybersecurity awareness and protection. |
| 2025-08-14 2025 | URL Format Bypass - HackTricksSSRF | The content titled "URL Format Bypass - HackTricks" likely delves into techniques or methods related to bypassing URL formats for various purposes. It may provide insights, tips, or tricks on how to manipulate or exploit URL formats for specific objectives. The content seems to be part of the HackTricks series, which typically offers practical information and guidance on hacking-related topics. |
| 2025-08-14 2025 | Cloud SSRFSSRF | The content provided is very brief and lacks specific details or context. It seems to refer to a topic or concept related to Cloud SSRF (Server-Side Request Forgery), which involves exploiting vulnerabilities in cloud services to manipulate server requests. However, without further information, it is challenging to provide a detailed summary. |
| 2025-08-14 2025 | SSRF (Server Side Request Forgery) - HackTricksSSRF | The content is about SSRF (Server Side Request Forgery) and is part of the HackTricks series. SSRF is a vulnerability that allows an attacker to make requests on behalf of the server, potentially accessing internal systems or performing malicious actions. The HackTricks series likely provides information on exploiting and defending against SSRF attacks. |