Superevr

Exploitation Vulnerability Research

  • Superevr Blog
  • About
tclogo-e1316915229891.jpg

ToorCon, San Diego

September 24, 2011 by superevr in Security

I've been working on some interesting research to help achieve one of my recent goals: present at a security conference. On Sunday, October 9th, I will be giving a 20-minute talk at ToorCon San Diego titled Post-Exploitation with JavaScript - The New Cross-Site F-U! This presentation is about the incremental risk of Cross-Site Request Forgery (CSRF) attacks that involve submission of arbitrary files. This kind of functionality has only come to light recently with the introduction of HTML5, and it generally makes for a very easy attack that can have very dire consequences.

September 24, 2011 /superevr
conferences, HTML5, javascript
Security
  • Newer
  • Older