0x00 前言
对自己学习xss所遇到的情况以及练习记录,以及自己的感悟进行一个总结。
0x01 DVWA
1.low
无过滤。
https://blog.csdn.net/qq_36869808/article/details/82726751
2.Medium
大小写绕过
https://blog.csdn.net/qq_36869808/article/details/82731762
3.High
img绕过
https://blog.csdn.net/qq_36869808/article/details/82731766
4.impossible
不可绕过
https://blog.csdn.net/qq_36869808/article/details/82734199
5.总结
做了很多关于xss的题目,突然发现,DVWA里的xss简直是简单的不能再简单了。所以做了DVWA一定要看看其他的题目。这样才能进步,比如说下面的游戏网站就是你值得拥有的。
0x02 xss-quiz.int21h.jp
Stage #1
无过滤
https://blog.csdn.net/qq_36869808/article/details/82734685
Stage #2
闭合绕过
https://blog.csdn.net/qq_36869808/article/details/82735511
Stage #3
抓包绕过
https://blog.csdn.net/qq_36869808/article/details/82736874
Stage #4
抓包绕过
https://blog.csdn.net/qq_36869808/article/details/82737734
Stage #5
长度绕过
https://blog.csdn.net/qq_36869808/article/details/82740780
Stage #6
附加属性绕过
https://blog.csdn.net/qq_36869808/article/details/82744996
Stage #7
附加属性绕过
https://blog.csdn.net/qq_36869808/article/details/82745531
Stage #8
伪协议绕过
https://blog.csdn.net/qq_36869808/article/details/82753415
Stage #10
domain过滤
https://blog.csdn.net/qq_36869808/article/details/82760160
Stage # 11
%09;绕过
https://blog.csdn.net/qq_36869808/article/details/82776098
Stage # 15
<svg>
绕过,16进制编码
https://blog.csdn.net/qq_36869808/article/details/82779362
Stage # 16
<svg>
绕过,unicode编码
https://blog.csdn.net/qq_36869808/article/details/82779659