Essential JS Security Checklist

The document provides a checklist of DOM-based vulnerabilities in JavaScript including DOM-based DOS, client-side SQL injection, open redirection, link manipulation, cookie manipulation, JavaScript injection, local file-path manipulation, and Ajax request-header manipulation.

Uploaded by

setyahangga3

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

136 views2 pages

Essential JS Security Checklist

Uploaded by

setyahangga3

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

JS Checklist

This is a small JS checklist that helped me score a few bounties with DOM-based
vulnerabilities.
If this helped you, know that there’s a way to automate this using
Nova Security Scanner.

DOM-based DOS can be induced if user-input lands in requestFileSystem() or

RegExp()

Client-side SQLi can exist if user-input lands in executeSql() (database is created

via the var db = openDatabase() function, and later called via [Link](function(tx)
{[Link]("...")}) )

DOM-based open redirection can exist if user-input lands into one of the following
sinks:
location
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]()
[Link]()
open()
[Link]
[Link]()
[Link]()
[Link]()
$.ajax()

DOM-based link manipulation can be caused by one of the following sinks:

[Link]
[Link]
[Link]

JS Checklist 1
DOM-based cookie manipulation can exist if arbitrary user-input gets injected
inside the [Link] sink

DOM-based javascript injection can be caused if arbitrary user-input ends in one

of the following sinks:
eval()
Function()
setTimeout()
setInterval()
setImmediate()
execCommand()
execScript()
msSetImmediate()
[Link]()
[Link]()

DOM-based local file-path manipulation can be induced by one of the following

sinks:
[Link]()
[Link]()
[Link]()
[Link]()
[Link]()
[Link]()

DOM-based Ajax request-header manipulation can be caused by one of the

following sinks:
[Link]()
[Link]()
[Link]()
[Link]()
$.globalEval()

Follow @0xblackbird on Twitter for more like this!

JS Checklist 2

SOC Home Lab Attack Simulation Guide
No ratings yet
SOC Home Lab Attack Simulation Guide
45 pages
Exploiting Rejjeto in Blackbox Testing
No ratings yet
Exploiting Rejjeto in Blackbox Testing
3 pages
SAML Vulnerabilities in Cloud Security
No ratings yet
SAML Vulnerabilities in Cloud Security
37 pages
AI Security Threats and Controls Guide
No ratings yet
AI Security Threats and Controls Guide
1 page
Doctor Corp External Pentest Report
No ratings yet
Doctor Corp External Pentest Report
28 pages
CyberGon CTF 2024 Writeup Overview
No ratings yet
CyberGon CTF 2024 Writeup Overview
73 pages
C2 Frameworks and Licensing Overview
No ratings yet
C2 Frameworks and Licensing Overview
30 pages
DACL Abuse in Cybersecurity
No ratings yet
DACL Abuse in Cybersecurity
20 pages
Custom Red Team Tool Development Guide
No ratings yet
Custom Red Team Tool Development Guide
2 pages
Zero Trust vs. Castle-and-Moat Security
No ratings yet
Zero Trust vs. Castle-and-Moat Security
27 pages
Red Teaming: Evaluating Cybersecurity Risks
No ratings yet
Red Teaming: Evaluating Cybersecurity Risks
8 pages
Cobalt Strike Privilege Escalation Guide
No ratings yet
Cobalt Strike Privilege Escalation Guide
28 pages
Web Application Penetration Testing Guide
No ratings yet
Web Application Penetration Testing Guide
63 pages
Creating A Resilient Red Team Infrasctructure
No ratings yet
Creating A Resilient Red Team Infrasctructure
34 pages
Modern Access & Evasion Tactics
No ratings yet
Modern Access & Evasion Tactics
50 pages
Trilocor Web App Security Findings
No ratings yet
Trilocor Web App Security Findings
23 pages
DLL Injection Using Process Hacker
No ratings yet
DLL Injection Using Process Hacker
10 pages
Golden Ticket Attack in Active Directory
No ratings yet
Golden Ticket Attack in Active Directory
23 pages
Android Static Analysis Techniques
No ratings yet
Android Static Analysis Techniques
107 pages
FTP and TFTP Protocol Overview
No ratings yet
FTP and TFTP Protocol Overview
162 pages
VNC Exploitation and UAC Bypass in Windows
No ratings yet
VNC Exploitation and UAC Bypass in Windows
11 pages
Buffer Overflow Attack Lab Setup Guide
No ratings yet
Buffer Overflow Attack Lab Setup Guide
27 pages
SOC Daily Operations Checklist
No ratings yet
SOC Daily Operations Checklist
2 pages
HTB Linux Fundamentals Overview
No ratings yet
HTB Linux Fundamentals Overview
14 pages
Azure Cloud Services Security Insights
No ratings yet
Azure Cloud Services Security Insights
1 page
OSCP Buffer Overflow Cheat Sheet
No ratings yet
OSCP Buffer Overflow Cheat Sheet
7 pages
Intro to Command and Control (C2)
No ratings yet
Intro to Command and Control (C2)
10 pages
DevSecOps: Integrating Security in DevOps
No ratings yet
DevSecOps: Integrating Security in DevOps
133 pages
IWU Information Security Policy Overview
No ratings yet
IWU Information Security Policy Overview
10 pages
AEM Misconfiguration Exploitation Guide
No ratings yet
AEM Misconfiguration Exploitation Guide
4 pages
IPv6 Security Vulnerabilities Report
No ratings yet
IPv6 Security Vulnerabilities Report
55 pages
Effective Documentation in Penetration Testing
No ratings yet
Effective Documentation in Penetration Testing
73 pages
Certified Red Team Specialist Training
No ratings yet
Certified Red Team Specialist Training
9 pages
Red Teaming: Expert Interview Insights
100% (1)
Red Teaming: Expert Interview Insights
18 pages
MSRPC Pentesting Best Practices
No ratings yet
MSRPC Pentesting Best Practices
7 pages
Windows Server Enumeration Checklist
No ratings yet
Windows Server Enumeration Checklist
12 pages
RCE Vulnerability Exploitation Guide
No ratings yet
RCE Vulnerability Exploitation Guide
2 pages
NTDS.dit Credential Dumping Techniques
No ratings yet
NTDS.dit Credential Dumping Techniques
13 pages
Exploiting Local File Inclusion (LFI)
No ratings yet
Exploiting Local File Inclusion (LFI)
46 pages
Enhancing Burp Suite with Active Scan++
No ratings yet
Enhancing Burp Suite with Active Scan++
15 pages
Evading Microsoft Defender Antivirus Techniques
No ratings yet
Evading Microsoft Defender Antivirus Techniques
86 pages
Key Business Logic Vulnerabilities in Web Apps
No ratings yet
Key Business Logic Vulnerabilities in Web Apps
51 pages
Abusing HTTP Hop-by-Hop Headers
No ratings yet
Abusing HTTP Hop-by-Hop Headers
4 pages
Complete Beginner Pentesting Path
No ratings yet
Complete Beginner Pentesting Path
10 pages
Active Directory Enumeration Techniques
No ratings yet
Active Directory Enumeration Techniques
7 pages
Bodgeit Store Vulnerability Analysis
No ratings yet
Bodgeit Store Vulnerability Analysis
13 pages
Red Team Infrastructure Overview
No ratings yet
Red Team Infrastructure Overview
61 pages
Red Team Operations Overview
No ratings yet
Red Team Operations Overview
1 page
PowerView 3.0 Tips and Tricks
No ratings yet
PowerView 3.0 Tips and Tricks
8 pages
Altoro Mutual Vulnerability Assessment
No ratings yet
Altoro Mutual Vulnerability Assessment
9 pages
Securing Flask APIs: Key Strategies
No ratings yet
Securing Flask APIs: Key Strategies
28 pages
XPath Injection Vulnerabilities Explained
No ratings yet
XPath Injection Vulnerabilities Explained
55 pages
Subdomain Enumeration Techniques Guide
100% (1)
Subdomain Enumeration Techniques Guide
9 pages
Certified Penetration Tester Overview
No ratings yet
Certified Penetration Tester Overview
38 pages
Modern Initial Access Evasion Tactics
100% (1)
Modern Initial Access Evasion Tactics
57 pages
My Journey as a Mobile Pentester
No ratings yet
My Journey as a Mobile Pentester
6 pages
XXE Attack Techniques and Tools
No ratings yet
XXE Attack Techniques and Tools
19 pages
Common Network Services and Ports
No ratings yet
Common Network Services and Ports
27 pages
Red Teaming: Cyberattack Simulation Tactics
No ratings yet
Red Teaming: Cyberattack Simulation Tactics
17 pages
Understanding DOM-Based Vulnerabilities
No ratings yet
Understanding DOM-Based Vulnerabilities
68 pages
Windows Privilege Escalation Techniques
50% (2)
Windows Privilege Escalation Techniques
53 pages
My Darkest Desires: Kinky Short Stories
No ratings yet
My Darkest Desires: Kinky Short Stories
13 pages
Entity Linking Examples and Analysis
No ratings yet
Entity Linking Examples and Analysis
15 pages
JWT Token Hacking and Mitigation Strategies
No ratings yet
JWT Token Hacking and Mitigation Strategies
8 pages
LLM Security Primer by Ingo Kleiber
100% (1)
LLM Security Primer by Ingo Kleiber
33 pages
Hacker Methodologies & Tools Overview
No ratings yet
Hacker Methodologies & Tools Overview
23 pages
IDOR Attack Techniques Overview
No ratings yet
IDOR Attack Techniques Overview
3 pages
Understanding HTTP Desync Attacks
No ratings yet
Understanding HTTP Desync Attacks
18 pages
Admin Panel Bypass Techniques Checklist
100% (2)
Admin Panel Bypass Techniques Checklist
3 pages
Jira Vulnerability Exploitation Guide
No ratings yet
Jira Vulnerability Exploitation Guide
5 pages
Top Business Logic Vulnerabilities on HackerOne
No ratings yet
Top Business Logic Vulnerabilities on HackerOne
8 pages
Cross Site Scripting XSS Regex Bypass 1704538523
No ratings yet
Cross Site Scripting XSS Regex Bypass 1704538523
5 pages
CORS Misconfiguration Vulnerabilities
No ratings yet
CORS Misconfiguration Vulnerabilities
14 pages
Comprehensive SSRF Guide and Techniques
No ratings yet
Comprehensive SSRF Guide and Techniques
6 pages
NTLM Abuse Methods Overview
No ratings yet
NTLM Abuse Methods Overview
22 pages
OSCP Survival Guide: Exploit Techniques
No ratings yet
OSCP Survival Guide: Exploit Techniques
63 pages
Penetration Testing Tools Overview
No ratings yet
Penetration Testing Tools Overview
39 pages
Understanding Information Disclosure Vulnerabilities
No ratings yet
Understanding Information Disclosure Vulnerabilities
8 pages
OSINT Tools for Information Gathering
100% (1)
OSINT Tools for Information Gathering
23 pages
Top HackerOne XSS Vulnerability Reports
No ratings yet
Top HackerOne XSS Vulnerability Reports
91 pages
CrackMapExec and NetExec Cheat Sheet
No ratings yet
CrackMapExec and NetExec Cheat Sheet
10 pages
GitHub Dorking: Secrets Exposure Guide
No ratings yet
GitHub Dorking: Secrets Exposure Guide
42 pages
Long Password DoS Attack Overview
100% (1)
Long Password DoS Attack Overview
6 pages

Essential JS Security Checklist

Uploaded by

Essential JS Security Checklist

Uploaded by

JS Checklist

DOM-based DOS can be induced if user-input lands in requestFileSystem() or

Client-side SQLi can exist if user-input lands in executeSql() (database is created

DOM-based link manipulation can be caused by one of the following sinks:

DOM-based javascript injection can be caused if arbitrary user-input ends in one

DOM-based local file-path manipulation can be induced by one of the following

DOM-based Ajax request-header manipulation can be caused by one of the

Follow @0xblackbird on Twitter for more like this!

You might also like