×
  • Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
 

Html5: something wicked this way comes - HackPra

by Web security researcher at SecuRing on Nov 22, 2011

  • 12,096 views

Video recording of the talk: https://connect.ruhr-uni-bochum.de/p3g2butmrt4/ ...

Video recording of the talk: https://connect.ruhr-uni-bochum.de/p3g2butmrt4/

HTML5 is quickly gaining media attention and popularity among browser vendors and web developers. Having tremendous features, together with its sister specifications like Drag & Drop API, File API or Geolocation it allows developers to build rich web applications that easily blend with desktop & mobile environments.

The talk will be focused on finding the weakest link and combining several recent attack techniques to turn a security vulnerability into a successful exploit.

We'll show how to build a successful advanced UI-Redressing attack (also known as clickjacking), presenting the latest findings in this field, including malicious games and quizes. We'll work on file upload functionalities in current web applications and see how attackers might use HTML5 APIs for their advantage. Putting all these building blocks together will enable us to launch an attack and exploit even the otherwise unexploitable vulnerabilities.

Statistics

Views

Total Views
12,096
Views on SlideShare
3,358
Embed Views
8,738

Actions

Likes
3
Downloads
85
Comments
1

22 Embeds 8,738

http://blog.kotowicz.net 7382
http://css.dzone.com 499
http://www.studentnotes.eu 345
http://feeds.feedburner.com 186
http://www.uostas.com 145
http://uostas.com 44
http://webcache.googleusercontent.com 36
http://www.mybestcv.co.il 29
http://www.wilsolutions.com.br 28
http://translate.googleusercontent.com 16
http://paper.li 11
http://xianguo.com 4
http://hl.mailru.su 3
http://www.dzone.com 2
http://www.verious.com 1
https://www.linkedin.com 1
http://www.newsblur.com 1
http://cloud.feedly.com 1
http://reader.aol.com 1
http://localhost 1
http://www.linkedin.com 1
http://a0.twimg.com 1
More...

Accessibility

Categories

Upload Details

Uploaded via SlideShare as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel

11 of 1 previous next

Post Comment
Edit your comment

Html5: something wicked this way comes - HackPra Html5: something wicked this way comes - HackPra Presentation Transcript