Rendering Engine Hackability Probe
This page attempts to detect what technologies the client supports. You can find the source at https://github.com/PortSwigger/hackability. For further information, please refer to the whitepaper at http://blog.portswigger.net/2017/07/cracking-lens-targeting-https-hidden.html
Supported query parameters
- Render the JavaScript tests and save the result (off by default) - blind=1
Data can be retrieved from here.
- Enable/Disable exploits (on by default) - exploits=1
- Log data from exploits (on by default) - logExploits=1
| Basic tests |
No Yes |
CSS link? |
No Yes |
CSS imports? |
| NoYes |
Style attributes? |
|
Forms supported? |
 |
Images enabled? |
|
Iframes render? |
|
Iframe srcdoc? |
|
Objects render? |
|
Embeds render? |
|
|
ActiveX |
|
|
Flash |
|
|
PDF |
|
|
Java |
|
|
|
|
|