PortSwigger-Writeups

My Cybersecurity Portfolio

Welcome to my writeups for the PortSwigger Web Security Academy.

Completed Labs

Cross-Site Scripting (XSS)

• Stored DOM XSS (Practitioner)
• Reflected DOM XSS (Practitioner)
• DOM XSS in AngularJS (Practitioner)
• DOM XSS in jQuery with Hashchange (Apprentice)
• DOM XSS in jQuery href attribute anchor (Apprentice)
• DOM XSS in innerHTML as sink and source location.search (Apprentice)
• DOM XSS in innerHTML between select tag (Apprentice)
• DOM XSS in document.write() (Apprentice)
• Stored XSS in HTML context (Apprentice)
• Reflected XSS in HTML context (Apprentice)
• Reflected XSS with blocked tags (Practitioner)
• Reflected XSS into HTML context, all tags blocked except custom ones (Practitioner)
• Reflected XSS, event handlers & href attributes blocked (Expert)
• Reflected XSS, some SVG markup allowed (Practitioner)
• Reflected XSS into Attribute (Apprentice)
• Stored XSS into Anchor href (Apprentice)
• Reflected XSS in Canonical Link Tag (Practitioner)
• Reflected XSS into JS String (Practitioner)
• Reflected XSS into JS String with Angle Brackets Encoded (Apprentice)
• Reflected XSS with single quotes escaped (Apprentice)
• Reflected XSS in JavaScript URL with Characters Blocked (Expert)
• Stored XSS into onclick (Apprentice)
• Reflected XSS into Template Literal (Apprentice)
• Stored XSS into comments (Practitioner)
• Stored XSS Credential harvesting (Practitioner)
• XSS bypassing csrf protection (Practitioner)
• CSP Bypass Dangling Markup (Practitioner)
• Reflected XSS CSP Header Injection (Expert)
• Reflected XSS with AngularJS sandbox escape without strings (Expert)
• Reflected XSS with AngularJS sandbox escape and CSP (Expert)

Cross-Origin-Resource-Sharing (CORS)

• CORS vulnerability with basic origin reflection (Apprentice)
• CORS vulnerability with trusted null origin (Apprentice)
• CORS vulnerability with trusted insecure protocols (Practitioner)