Resources

People often ask me "How did you learn how to hack?" The answer: by reading. This page is a collection of the blog posts and other articles that I have accumulated over the years of my journey. Enjoy!

The same-origin policy is what disallowing Facebook.com from making a request for the credit card details from Amazon. So, a bypass for this is very significant!

The background process, running in Google Chrome with all extensions, is a very privileged API. So privileged, in fact, that this can be leveraged to make a web request with the systems cookies to the domain and return the content!

In the end, be very careful with what extensions you download.