Completed
Leaking code
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Server-Side Prototype Pollution: Detection and Exploitation Techniques - OWASP AppSec Dublin
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Prototype chain
- 3 Merge operation
- 4 Recursive merge function
- 5 Encoding property takes the server down
- 6 Change the maximum allowed parameters
- 7 Allow multiple question marks in param
- 8 Convert a parameter into an object
- 9 Change the charset of a JSON response
- 10 Investigating the charset technique
- 11 Change the padding of a JSON response
- 12 Change the status code
- 13 Generic prototype pollution detection in Blitz
- 14 A generic prototype pollution technique
- 15 Asynchronous payloads problem
- 16 Leaking code
- 17 Detecting JavaScript engines
- 18 Open source tool
- 19 Preventing prototype pollution