{"version":1,"pages":[{"id":"NO0WAjclZxKMBFW809B8","title":"Web App Hacking Tips & Tricks","pathname":"/","siteSpaceId":"sitesp_xSw2J","description":"https://www.linkedin.com/in/jakedmurphy1/"},{"id":"VC6SAen6UuUOWb9i52VM","title":"Week 1 - XSS Filter Evasion","pathname":"/weekly-tips/week-1-xss-filter-evasion","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"gYbw9SU2BP22BYekN64s","title":"Week 2 - CSRF Token Bypass","pathname":"/weekly-tips/week-2-csrf-token-bypass","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"ioyXnTLgCKd4PMEWZE4N","title":"Week 3 - CORS Exploitation","pathname":"/weekly-tips/week-3-cors-exploitation","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"LGJwoREZEE0EJXEMMQUN","title":"Week 4 - Finding XSS","pathname":"/weekly-tips/week-4-finding-xss","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"3tFOUps6uL3xlp6VHU1L","title":"Week 5 - CSRF Explanation","pathname":"/weekly-tips/week-5-csrf-explanation","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"7Fjy2hZkszIMsz2Iicdw","title":"Week 6 - XSS Types","pathname":"/weekly-tips/week-6-xss-types","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"0b4W9wGvhzlu6ayaAPUi","title":"Week 7 - Advanced SQLMap","pathname":"/weekly-tips/week-7-advanced-sqlmap","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"S1DtdEMC0Dk7WmjBqBOI","title":"Week 8 - Stealing HttpOnly Cookies from PHPINFO","pathname":"/weekly-tips/week-8-stealing-httponly-cookies-from-phpinfo","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"R9Hoj7vp31nYA0Bt0n3x","title":"Week 9 - SQLMap Tamper Scripts","pathname":"/weekly-tips/week-9-sqlmap-tamper-scripts","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"dPYM1rvg0s1DgIjmJwWG","title":"Week 10 - XSS Obfuscated Payloads","pathname":"/weekly-tips/week-10-xss-obfuscated-payloads","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"n99v246kEcNPP96TCQQa","title":"Week 11 - XS-Search: Cross-Origin Enumeration","pathname":"/weekly-tips/week-11-xs-search-cross-origin-enumeration","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"QNG0x7JOz7qcQ2sQ4Tk4","title":"Week 12 - Subdomain Takeovers","pathname":"/weekly-tips/week-12-subdomain-takeovers","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"tJfjrnJGYG3oFDZDwn7w","title":"Week 13 - XSS Keylogger","pathname":"/weekly-tips/week-13-xss-keylogger","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"b7RN2atv38mP6ioK2thY","title":"Week 14 - Algolia API Keys","pathname":"/weekly-tips/week-14-algolia-api-keys","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"41TE3XmtmmfLyGRWJkVg","title":"Week 15 - GraphQL Introspection","pathname":"/weekly-tips/week-15-graphql-introspection","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"ptxCFvSkpNnNhVCfhUHK","title":"Week 16 - Naming BurpSuite Repeater Tabs","pathname":"/weekly-tips/week-16-naming-burpsuite-repeater-tabs","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"085LOp1vkaOAmPJPmu7j","title":"Week 17 - GoBuster Tips","pathname":"/weekly-tips/week-17-gobuster-tips","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"1tZGZSQTAx7xwPfO9A3e","title":"Week 18 - Burp Request to Python Script","pathname":"/weekly-tips/week-18-burp-request-to-python-script","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"AUlYOBW2Kd2Hu1gIy11H","title":"Week 19 - Customizing Nikto Scans","pathname":"/weekly-tips/week-19-customizing-nikto-scans","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"I3aL13UkYwqR8KaJGj8z","title":"Week 20 - Google Phishing Page","pathname":"/weekly-tips/week-20-google-phishing-page","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"bDQvBmi3Sb92dm6mn35V","title":"Week 21 - Google BITB","pathname":"/weekly-tips/week-21-google-bitb","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"SHgagIgsnuE43KmH1rmQ","title":"Week 22 - XSS Through SVG File","pathname":"/weekly-tips/week-22-xss-through-svg-file","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"c1URSJMZaEdufW8qBShm","title":"Week 23 - FoxyProxy Extension","pathname":"/weekly-tips/week-23-foxyproxy-extension","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"npiVRdEeFLCYI9RnVYsh","title":"Week 24 - CSP Bypasses","pathname":"/weekly-tips/week-24-csp-bypasses","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"yeYgofJmm3ZchvBVlbQ4","title":"Week 25 - Pilfering LocalStorage with XSS","pathname":"/weekly-tips/week-25-pilfering-localstorage-with-xss","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"DcwJBXIcCaokOYBvf4By","title":"Week 26 - Cloud SSRF","pathname":"/weekly-tips/week-26-cloud-ssrf","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"hMPDvwP7XADdokcUAMiT","title":"Week 27 - Blind XSS","pathname":"/weekly-tips/week-27-blind-xss","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"zFd8f8jLWNKOzUeXjmYk","title":"Week 28 - Firebase  Misconfigurations","pathname":"/weekly-tips/week-28-firebase-misconfigurations","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"BLcSSFXKZqDihTp38BjV","title":"Week 29 - XSS to CSRF","pathname":"/weekly-tips/week-29-xss-to-csrf","siteSpaceId":"sitesp_xSw2J","description":"","breadcrumbs":[{"label":"Weekly Tips"}]},{"id":"1Pa3WMHJe2xN8VHWxHby","title":"Week 30 - SQLMap Debugging","pathname":"/week-30-sqlmap-debugging","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"Ya5ZP4iTv42zZeotKIzW","title":"Week 31 - WayBack Machine","pathname":"/week-31-wayback-machine","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"WxY1SlL0iT2RrlcegkVx","title":"Week 32 - O365 BITB","pathname":"/week-32-o365-bitb","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"t5BytJGvr4HZPt30xRPi","title":"Week 33 - Burp Intruder Attacks","pathname":"/week-33-burp-intruder-attacks","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"wScVZfqdP50x6q3rQCQF","title":"Week 34 - GraphQL Bruteforcing","pathname":"/week-34-graphql-bruteforcing","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"DfrfGKtRj9UDJFhcVcWQ","title":"Week 35 - User Accounts","pathname":"/week-35-user-accounts","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"CIWUXM0Sxks6Xa3Ojzv0","title":"Week 36 - CVE Submission","pathname":"/week-36-cve-submission","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"3w5edSylT1zfkdeQdRp8","title":"Week 37 - Second Order SQLi","pathname":"/week-37-second-order-sqli","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"qcE3VX0I7oVJZEn4f8Rk","title":"Week 38 - Out of Band SQLi","pathname":"/week-38-out-of-band-sqli","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"IWLpiGf3J2TA4WcpPCMu","title":"Week 39 - Broken Link Hijacking","pathname":"/week-39-broken-link-hijacking","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"y3LwiMQQYiuwVjs2PCp2","title":"Week 40 - JWT Testing","pathname":"/week-40-jwt-testing","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"1d3sfxIseNnGweya9MKG","title":"Week 41 - BURP ATOR","pathname":"/week-41-burp-ator","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"EjV1VI66rwQVx2kGcBRZ","title":"Week 42 - ProxyChains","pathname":"/week-42-proxychains","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"2V69hjzVQa8fE1cwaYuw","title":"Week 43 - CSS Keylogging","pathname":"/week-43-css-keylogging","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"SvHRSdhn5RQF2bIyoHb5","title":"Week 44 - SVG SSRF","pathname":"/week-44-svg-ssrf","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"fp8blfMcbi0w7qpJ5qVp","title":"Week 45 - Request Smuggling","pathname":"/week-45-request-smuggling","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"0gCAQCPy20QigcrlEXWw","title":"Week 46 - XSS Payloads","pathname":"/week-46-xss-payloads","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"5SWgnnOm1RD0f0WzBVVZ","title":"Week 47 - DNS Re-binding","pathname":"/week-47-dns-re-binding","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"nl9OEFIor5HmciTSbzSD","title":"Week 48 - SSRF Bypass","pathname":"/week-48-ssrf-bypass","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"Fh3MLnf4PIiwIbSvWYQx","title":"Week 49 - File Upload Bypass","pathname":"/week-49-file-upload-bypass","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"c6K2sBS7fnUFU9dV7rOR","title":"Week 50 - CRLF Injection","pathname":"/week-50-crlf-injection","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"YlnodMniz11bpBUDuF11","title":"Week 51 - HTML to PDF","pathname":"/week-51-html-to-pdf","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"2A5rhJT54ZK6ivd8SPzb","title":"Week 52 - Parameter Pollution","pathname":"/week-52-parameter-pollution","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"m2TP9BZt57QoBrdmMqEb","title":"Week 53 - Pre-Account Takeover","pathname":"/week-53-pre-account-takeover","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"Fpu5MCd259aSzBgvcC6T","title":"Week 54 - Race Conditions","pathname":"/week-54-race-conditions","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"QTb9Sw2TpArUmvTRtlak","title":"Week 55 - SQLi to RCE","pathname":"/week-55-sqli-to-rce","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"IodmCF7dcrmKe4sGNyAz","title":"Week 56 - Cloud SSRF PrivEsc","pathname":"/week-56-cloud-ssrf-privesc","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"PL6nwjfSumkPGTc439ko","title":"Week 57 - Response Queue Poisoning","pathname":"/week-57-response-queue-poisoning","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"LamEJrzy7IgisTWBsGwo","title":"Week 58 - Directory Traversal","pathname":"/week-58-directory-traversal","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"kCk7IQVzQhK3ApNxnrAt","title":"Week 59 - File Upload -> CSRF","pathname":"/week-59-file-upload-greater-than-csrf","siteSpaceId":"sitesp_xSw2J","description":""},{"id":"g32WztooL1VqgtFrH0er","title":"Week 60 - Modern CSRF Attacks","pathname":"/week-60-modern-csrf-attacks","siteSpaceId":"sitesp_xSw2J","description":""}]}