Links for Episode 26
Hunting for Nginx Alias Traversals in the wild
PortSwigger Tweet about popover
TwitterSoroush's Follow-up
Soroush's Follow-up
Tweet about magic math element
Generic HTML Sanitizer Bypass Investigation
Lupin’s follow-up:
Mr.Tuxracer's article on patch diffing
Changes to CVSS 4.0:
CALL TO ACTION - Ask FIRSTdotORG what's going on
New TomNomNom Tool - Jsluise:
import() - JavaScript | MDN
JavaScript for hackers by Gareth Heyes
CSP Evaluator
DOM clobbering | Web Security Academy
base - cheat-sheets
Gareth Heyes website...er...game
