Join us

Server-side prototype pollution: Black-box detection without the DoS

@faun ・ Apr 12,2023

Detecting server-side prototype pollution is a difficult task that can cause DoS if not done safely.

The post introduces various safe detection techniques, which include encoding, constructor, expect, and request body overwrite, and non-destructive techniques like parameter limit, ignore query prefix, allow dots, and content type.

The article also explains what prototype pollution is, its impact, and how it occurs.

Let's keep in touch!

Stay updated with my latest posts and news. I share insights, updates, and exclusive content.

Unsubscribe anytime. By subscribing, you share your email with @faun and accept our Terms & Privacy.

Give a Pawfive to this post!

Only registered users can post comments. Please, login or signup.

Share with your friends and followers

Start writing about what excites you in tech — connect with developers, grow your voice, and get rewarded.

Join other developers and claim your FAUN.dev() account now!

Publish your first story!

The FAUN

FAUN.dev()

@faun

The FAUN watches over the forest of developers. It roams between Kubernetes clusters, code caves, AI trails, and cloud canopies, gathering the signals that matter and clearing out the noise.