Collaborate Disseminate
I am testing a cross-site scripting attack on a website, as we all know the Request.Form function validates the input so the user couldn’t insert a <script> inside the input.
My focus in this question isn’t how to bypass the Request…. Continue reading force XSS after bypassing Request.Form using URL Encoding
I have actual value ‘29714856’ and via RFID reading I am receiving ‘0113A70CA811’.
Now I am trying to find in which way the actual value encoded. I have tryed with hex and couple of more thinks but didn’t get it.
Continue reading How to find, in which format the number encoded? [closed]
This is the first we’ve heard of Parametric Press — a digital magazine with some deep dives into a variety of subjects (such as particle physics, “big data” and such) …read more Continue reading Parametric Press Unravels The JPEG Format
I downloaded a PDF file that I can view, print, modify … but can’t do a simple text copy.
From a brief search I could not find how this was achieved.
I have tried with macOS preview app and chrome’s pdf viewer.
On the preview app I get … Continue reading Can view/read a pdf content but can’t extract text [migrated]
Today this came to my attention.
When generating random secrets for e.g. JWT (in node.js the most common way is using the crypto.randomBytes() method), I have noticed a lot of people save these tokens in a base64-encoded manner (i.e. crypt… Continue reading Randomly generated secrets: encoding the random bytes in base64 vs keeping them
What would the results of this command line be? Does not appear to be Base64. UTF16 translates it into some form of kanji, but who knows if that’s reliable. Also tried to throw it in an encoding identifier in dcode, but it just spit back B… Continue reading Is this Hex encoding; system codes; or some kind of Base64; or, something else? [duplicate]
A question requires you to submit a flag and our team has already
shared the flag below. However, in the process of sharing the flag,
they wanted to make sure the confidentiality is intact, so they
encoded it somehow. They consulted the c… Continue reading Decode the data and get the flag from it [closed]
I’m signing my messages using my code below:
def sign_msg_hash(self, msg_hash: HexBytes):
signature = self._kms_client.sign(
KeyId=self._key_id,
Message=msg_hash,
MessageType="DIGEST",
… Continue reading AWS KMS to sign messages – trouble using python’s ecdsa lib when getting the verifiying key [migrated]
I’m learning Web Pentesting using Juice Shop and I successfully used Burp Suite to generate an SQL injection payload in the repeater that exposed the plain text email and encoded password of the admin.
By using Burp Suite Decoder, I decode… Continue reading Burp Suite: alphanumeric payload decoded to base64 exposes password, but as an encoded string
which encryption is this
|y����� �~��I �0���[�r����2�.’o����;�\�s��o���j�ng5`)(4y>{�g34�t��@^�Vn3
Continue reading which encryption is this encoding and decoding [duplicate]