Friday assorted links:
Hacking Subaru: Tracking and Controlling Cars via the STARLINK Admin Panel
🔗 https://samcurry.net/hacking-subaru
---
Stealing HttpOnly cookies with the cookie sandwich technique | PortSwigger Research
In this post, I will introduce the \cookie sandwich\ technique which lets you bypass the HttpOnly flag on certain servers. This research follows on from Bypassing WAFs with the phantom $Version cookie
🔗 https://portswigger.net/research/stealing-httponly-cookies-with-the-cookie-sandwich-technique
---
Operator
An agent that can use its own browser to perform tasks for you.