ASP.NET Core
A set of technologies in the .NET Framework for building web applications and XML web services.
4,344 questions
Pentesting Blazor Server Apps
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 25%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENU%3C/text%3E%3C/svg%3E)
Najam ul Saqib
160
Reputation points
Hi, I came across a web app that is using Blazor Server, all the communication is happening through SignalR. Now in traditional web apps, pentesters use ZAP/Burp to intercept the traffic and manipulate with it. i.e. test access controls by toggling the IDs, etc but here the communication is happening via websockets first, and second it is in binary format which is not readable. What's the best way to pentest our blazor server apps to make sure they're battle hardened and secure?
{count} votes
-
Najam ul Saqib 160 Reputation points
2024-03-07T05:34:06.3966667+00:00 Still looking for solution on this; there must be a way to properly test blazor server apps.
-
Najam ul Saqib 160 Reputation points
2024-07-02T10:01:45.3566667+00:00 Anyone?
-
Deleted
This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
Sign in to comment