2026

• 22 Jan Lab - Reflected XSS into HTML context with all tags blocked except custom ones
• 20 Jan Stored DOM XSS
• 20 Jan Reflected XSS into HTML context with most tags and attributes blocked
• 19 Jan Stored XSS into anchor href attribute with double quotes HTML-encoded
• 19 Jan Reflected XSS into attribute with angle brackets HTML-encoded
• 19 Jan Reflected XSS into a JavaScript string with angle brackets HTML encoded
• 19 Jan Reflected DOM XSS
• 19 Jan DOM XSS in jQuery selector sink using a hashchange event
• 19 Jan DOM XSS in document.write sink using source location.search inside a select element
• 19 Jan DOM XSS in AngularJS expression with angle brackets and double quotes HTML-encoded
• 18 Jan Stored XSS into HTML context with nothing encoded
• 18 Jan DOM XSS in jQuery anchor href attribute sink using location.search source
• 18 Jan DOM XSS in innerHTML sink using source location.search
• 18 Jan DOM XSS in document.write sink using source location.search
• 17 Jan Reflected XSS into HTML context with nothing encoded

2025

• 01 Dec XSS:From Browser Parsing to Exploitation
• 14 Nov Monster Cookie Secret Recipe PicoCTF Challenge Writeup
• 13 Nov Spookifier challenge writeup HTB
• 13 Nov Flagcommand challenge writeup HTB
• 12 Oct Source Room Writeup TryHackMe
• 18 May DNS Explained
• 29 Apr SHA-1 Implementation in C programming language