> For the complete documentation index, see [llms.txt](https://web-sec.gitbook.io/wsa/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://web-sec.gitbook.io/wsa/advanced.md).

# 进阶主题

- [不安全的反序列化](https://web-sec.gitbook.io/wsa/advanced/deserialization.md)
- [不安全的反序列化](https://web-sec.gitbook.io/wsa/advanced/deserialization/index.md)
- [利用不安全的反序列化漏洞](https://web-sec.gitbook.io/wsa/advanced/deserialization/exploiting.md)
- [测试GraphQL API](https://web-sec.gitbook.io/wsa/advanced/ce-shi-graphql-api.md)
- [测试GraphQL API](https://web-sec.gitbook.io/wsa/advanced/ce-shi-graphql-api/ce-shi-graphql-api.md)
- [什么是GraphQL？](https://web-sec.gitbook.io/wsa/advanced/ce-shi-graphql-api/shen-me-shi-graphql.md)
- [服务器端模板注入](https://web-sec.gitbook.io/wsa/advanced/server-side-template-injection.md)
- [服务器端模板注入](https://web-sec.gitbook.io/wsa/advanced/server-side-template-injection/index.md)
- [利用服务器端模板注入漏洞](https://web-sec.gitbook.io/wsa/advanced/server-side-template-injection/exploiting.md)
- [Web缓存投毒](https://web-sec.gitbook.io/wsa/advanced/web-cache-poisoning.md)
- [Web缓存投毒](https://web-sec.gitbook.io/wsa/advanced/web-cache-poisoning/index.md)
- [缓存设计缺陷的利用](https://web-sec.gitbook.io/wsa/advanced/web-cache-poisoning/exploiting-design-flaws.md)
- [缓存实现缺陷的利用](https://web-sec.gitbook.io/wsa/advanced/web-cache-poisoning/exploiting-implementation-flaws.md)
- [HTTP Host标头攻击](https://web-sec.gitbook.io/wsa/advanced/host-header.md)
- [HTTP Host标头攻击](https://web-sec.gitbook.io/wsa/advanced/host-header/index.md)
- [如何识别和利用HTTP Host头的漏洞](https://web-sec.gitbook.io/wsa/advanced/host-header/exploiting.md)
- [密码重置投毒](https://web-sec.gitbook.io/wsa/advanced/host-header/password-reset-poisoning.md)
- [HTTP请求走私](https://web-sec.gitbook.io/wsa/advanced/request-smuggling.md)
- [HTTP请求走私](https://web-sec.gitbook.io/wsa/advanced/request-smuggling/index.md)
- [查找HTTP请求走私漏洞](https://web-sec.gitbook.io/wsa/advanced/request-smuggling/finding.md)
- [利用HTTP请求走私漏洞](https://web-sec.gitbook.io/wsa/advanced/request-smuggling/exploiting.md)
- [高级请求走私](https://web-sec.gitbook.io/wsa/advanced/request-smuggling/advanced.md)
- [高级请求走私](https://web-sec.gitbook.io/wsa/advanced/request-smuggling/advanced/index.md)
- [HTTP/2降级](https://web-sec.gitbook.io/wsa/advanced/request-smuggling/advanced/http2-downgrading.md)
- [响应队列投毒](https://web-sec.gitbook.io/wsa/advanced/request-smuggling/advanced/response-queue-poisoning.md)
- [HTTP/2专属载体](https://web-sec.gitbook.io/wsa/advanced/request-smuggling/advanced/http2-exclusive-vectors.md)
- [HTTP请求隧道](https://web-sec.gitbook.io/wsa/advanced/request-smuggling/advanced/request-tunnelling.md)
- [浏览器驱动的请求伪造](https://web-sec.gitbook.io/wsa/advanced/request-smuggling/browser.md)
- [浏览器驱动的请求伪造](https://web-sec.gitbook.io/wsa/advanced/request-smuggling/browser/index.md)
- [CL.0请求走私](https://web-sec.gitbook.io/wsa/advanced/request-smuggling/browser/cl-0.md)
- [客户端异步攻击](https://web-sec.gitbook.io/wsa/advanced/request-smuggling/browser/client-side-desync.md)
- [基于暂停的异步攻击](https://web-sec.gitbook.io/wsa/advanced/request-smuggling/browser/pause-based-desync.md)
- [OAuth认证](https://web-sec.gitbook.io/wsa/advanced/oauth.md)
- [OAuth 2.0认证漏洞](https://web-sec.gitbook.io/wsa/advanced/oauth/index.md)
- [OAuth授权类型](https://web-sec.gitbook.io/wsa/advanced/oauth/grant-types.md)
- [OpenID Connect](https://web-sec.gitbook.io/wsa/advanced/oauth/openid.md)
- [如何防范OAuth认证漏洞](https://web-sec.gitbook.io/wsa/advanced/oauth/preventing.md)
- [JWT攻击](https://web-sec.gitbook.io/wsa/advanced/jwt.md)
- [JWT攻击](https://web-sec.gitbook.io/wsa/advanced/jwt/index.md)
- [在Burp Suite中使用JWT](https://web-sec.gitbook.io/wsa/advanced/jwt/working-with-jwts-in-burp-suite.md)
- [算法混淆攻击](https://web-sec.gitbook.io/wsa/advanced/jwt/algorithm-confusion.md)
- [原型污染](https://web-sec.gitbook.io/wsa/advanced/prototype-pollution.md)
- [什么是原型污染？](https://web-sec.gitbook.io/wsa/advanced/prototype-pollution/shen-me-shi-yuan-xing-wu-ran.md)
- [JavaScript原型和继承](https://web-sec.gitbook.io/wsa/advanced/prototype-pollution/javascript-prototypes-and-inheritance.md)
- [客户端](https://web-sec.gitbook.io/wsa/advanced/prototype-pollution/client-side.md)
- [客户端原型污染漏洞](https://web-sec.gitbook.io/wsa/advanced/prototype-pollution/client-side/ke-hu-duan-yuan-xing-wu-ran-lou-dong.md)
- [通过浏览器API进行原型污染](https://web-sec.gitbook.io/wsa/advanced/prototype-pollution/client-side/browser-apis.md)
- [服务器端](https://web-sec.gitbook.io/wsa/advanced/prototype-pollution/server-side.md)
- [服务器端原型污染](https://web-sec.gitbook.io/wsa/advanced/prototype-pollution/server-side/fu-wu-qi-duan-yuan-xing-wu-ran.md)
- [预防原型污染漏洞](https://web-sec.gitbook.io/wsa/advanced/prototype-pollution/preventing.md)
- [基本技能](https://web-sec.gitbook.io/wsa/advanced/essential-skills.md)
- [基本技能](https://web-sec.gitbook.io/wsa/advanced/essential-skills/index.md)
- [使用编码混淆攻击](https://web-sec.gitbook.io/wsa/advanced/essential-skills/obfuscating-attacks-using-encodings.md)
- [在手动测试中使用Burp Scanner](https://web-sec.gitbook.io/wsa/advanced/essential-skills/using-burp-scanner-during-manual-testing.md)


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://web-sec.gitbook.io/wsa/advanced.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.