External reference to image.complete property (#110)

* CORS error on Origin Reflection misconfiguration #103

* Update _index.md

added Basco & rick.titor as contributor

* Update content/docs/attacks/cache-probing.md

Co-authored-by: terjanq <[email protected]>

* Update content/docs/attacks/cache-probing.md

Co-authored-by: terjanq <[email protected]>

* fix for style

* fix unclosed shortcode

* added ref for default misconf in flask & Rails

* Noticed that the issue in Rack CORS was closed

* addedd snippet

* merging

* Update content/docs/attacks/cache-probing.md

Co-authored-by: terjanq <[email protected]>

* Update content/docs/attacks/cache-probing.md

Co-authored-by: terjanq <[email protected]>

* Update content/docs/attacks/cache-probing.md

Co-authored-by: terjanq <[email protected]>

* Update content/docs/attacks/cache-probing.md

Co-authored-by: terjanq <[email protected]>

* fix in typo

* added reference to exernal article about image.complete property

Co-authored-by: Brasco <[email protected]>
Co-authored-by: terjanq <[email protected]>
Co-authored-by: rmerlano <[email protected]>

Author: 4 people

content/docs/attacks/timing-attacks/network-timing.md

@@ -73,6 +73,9 @@ script.onload = () => {
 {{< hint tip >}}
 A similar technique can be used for other HTML elements, e.g. `<img>`, `<link>`, or `<iframe>`, which could be used in scenarios where other techniques fail. For example, if [Fetch Metadata]({{< ref "/docs/defenses/opt-in/fetch-metadata.md">}}) blocks loading a resource into a script tag, it may allow loading it into an image tag.
 {{< /hint >}}
+{{< hint tip >}}
+An alternative way could be to use `image.complete` property. More information [here](https://riccardomerlano.github.io/xs-leaks/cache-probing-through-image.complete-property/).
+{{< /hint >}}
 
 ## Cross-window Timing Attacks