all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Hacking into gRPC-Web

Add to bookmarks
Sept. 18, 2023, 3:40 a.m. | Amin Nasiri

InfoSec Write-ups - Medium infosecwriteups.com

Manipulating gRPC Web Payloads and Finding Hidden Services

How Did It Start?

It started when I faced a web application using gRPC-Web and I could not manipulate the requests in Burp Suite. I searched a lot and there was no good or complete resource for pentesting gRPC-Web, then the research began and I could make a tool and a Burp Suite Extension for manipulating payloads. I also found a hidden gRPC-Web parameter SQLi vulnerability in a travel agency company and …

bug bounty bug-bounty-tips cybersecurity grpc grpc-web

Visit resource

More from infosecwriteups.com / InfoSec Write-ups - Medium

A List of No-Brainers for Windows Server Security 1 day, 4 hours ago | infosecwriteups.com
assets business cyber cyber security +18
Mastering BTL1: Journey, Tips, and Insights for Cyber Defenders 2 days, 5 hours ago | infosecwriteups.com
blue team cybersecurity cybersecurity-certificate cybersecurity training +1
eJPT v2 Review: Decoding the eLearn Security’s Junior Penetration Tester Certification 2 days, 5 hours ago | infosecwriteups.com
blue certification cybersecurity cybersecurity training +18
10 Beginner-Friendly Cybersecurity Projects to Kickstart Your Journey 2 days, 5 hours ago | infosecwriteups.com
age beginner critical cryptocurrency +17
Unmasking Directory Traversal: Navigating Vulnerabilities in Web Applications (Techniques +… 2 days, 5 hours ago | infosecwriteups.com
application security bug bounty bug-bounty-tips owasp +1
Injecting Danger: Understanding Server-Side Template Exploits 2 days, 5 hours ago | infosecwriteups.com
ctf htb owasp security +1
The Evolution of Cybersecurity: From Enigma to Quantum Cryptography 2 days, 5 hours ago | infosecwriteups.com
article breaches computing counter +18
Revolutionizing Bug Bounty Hunting: Unleashing the AI Advantage with Chat GPT 2 days, 5 hours ago | infosecwriteups.com
artificial intelligence bounty bug bug bounty +23
Exploit Analysis: Request-Baskets v1.2.1 Server-side Request Forgery (SSRF) 2 days, 5 hours ago | infosecwriteups.com
analysis bug bounty continue cybersecurity +15

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Business Information Security Officer

@ Metrolink | Los Angeles, CA
View on infosec-jobs.com

Senior Security Engineer

@ Freedom of the Press Foundation | Remote, 4 hour time zone overlap with New York City
View on infosec-jobs.com

Security Engineer

@ ChartMogul | Remote, EU
View on infosec-jobs.com

Malware Reverse Engineer

@ Two Six Technologies | Fort Meade, Maryland
View on infosec-jobs.com

SOC Analyst Level 3

@ OpenBet | Bengaluru, India
View on infosec-jobs.com

Course Developer, Network Security

@ Palo Alto Networks | Plano, TX, United States
View on infosec-jobs.com
View more jobs