1767707668033969..toString(36) // "helloworld"卖萌的语法~
0.==.0Hack 小技巧:检测 console 是否被打开
Demo: https://www.etherdream.com/FunnyScript/console_detect/
发现有程序猿在调试,哥就封了它~
最新原创: 《HttpOnly Cookie 隐私嗅探》
https://fex.baidu.com/blog/2014/08/sensitive-data-sniffer/
《XSS 前端防火墙》系列
https://fex.baidu.com/blog/2014/06/xss-frontend-firewall-1/
https://fex.baidu.com/blog/2014/06/xss-frontend-firewall-2/
https://fex.baidu.com/blog/2014/06/xss-frontend-firewall-3/
https://fex.baidu.com/blog/2014/06/xss-frontend-firewall-4/
https://fex.baidu.com/blog/2014/06/xss-frontend-firewall-5/
Demo: https://www.etherdream.com/FunnyScript/csp/battle/
该项目除了监控 XSS 之外,还可用于运营商/浏览器插件的流量劫持监控。过些时候开源~
微博账号 @EtherDream 发布的已全部在此,之后更新在其他论坛发布的...