尝试挖一些越权漏洞
越权漏洞的一些资料
- https://sec.nmask.cn/article_content?a_id=a484681d2c7b61b9c018fafe67b59c9a
- https://cloud.tencent.com/developer/article/1516373
- https://github.com/reddelexc/hackerone-reports/blob/master/tops_by_bug_type/TOPIDOR.md
- https://www.cnblogs.com/AirCrk/p/12915798.html
- https://nosec.org/home/detail/4195.html
- https://hackerone.com/reports/869705
配置了burp的一些插件并实验了Goby和Xray联动