Cookie Bomb
Last updated
Last updated
Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)
Cookie bomb
inahusisha kuongeza idadi kubwa ya cookies kubwa kwenye domain na subdomains zake zikilenga mtumiaji. Kitendo hiki kinapelekea mwathirika kutuma maombi makubwa ya HTTP kwa seva, ambayo baadaye yanakataliwa na seva. Matokeo yake ni kuanzishwa kwa Denial of Service (DoS) inayolenga mtumiaji ndani ya domain hiyo na subdomains zake.
Mfano mzuri unaweza kuonekana katika andiko hili: https://hackerone.com/reports/57356
Na kwa maelezo zaidi, unaweza kuangalia uwasilishaji huu: https://speakerdeck.com/filedescriptor/the-cookie-monster-in-your-browsers?slide=26
Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)