Amin Nasiri's Avatar

Amin Nasiri

@aminnasiri.com

Fan of reading RFCs and interested in playing with different versions of HTTP and web-related protocols & also inductive reasoning; a Hitchhiker when I am AFK; https://aminnasiri.com https://github.com/nxenon

256
Followers 109
Following 2
Posts 25.10.2024
Joined
Posts Following

Latest posts by Amin Nasiri @aminnasiri.com

Maybe I can be there:

github.com/nxenon/h2spa...

20.12.2024 13:22 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Preview
Hacking into gRPC-Web Manipulating gRPC Web Payloads and Finding Hidden Services

Maybe these:
infosecwriteups.com/hacking-into...

github.com/nxenon/grpc-...

20.12.2024 13:21 πŸ‘ 2 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0

Extended the starter with shy writers! πŸ˜€ If you're not on the list but write about web security, then feel free to reply with the article you're most proud of, and I will add you to the pack!

Make sure to resubscribe to not not miss on the amazing 🌐research!

go.bsky.app/9JXnB17

10.12.2024 22:29 πŸ‘ 29 πŸ” 10 πŸ’¬ 9 πŸ“Œ 0
Preview
Concealing payloads in URL credentials Last year Johan Carlsson discovered you could conceal payloads inside the credentials part of the URL . This was fascinating to me especially because the payload is not actually visible in the URL in

Learn how to conceal payloads in URL credentials and abuse them for DOM XSS and DOM Clobbering, in this post from @garethheyes.co.uk
portswigger.net/research/con...

25.10.2024 07:32 πŸ‘ 13 πŸ” 3 πŸ’¬ 0 πŸ“Œ 0