ToorCon, San Diego
I've been working on some interesting research to help achieve one of my recent goals: present at a security conference. On Sunday, October 9th, I will be giving a 20-minute talk at ToorCon San Diego titled Post-Exploitation with JavaScript - The New Cross-Site F-U! This presentation is about the incremental risk of Cross-Site Request Forgery (CSRF) attacks that involve submission of arbitrary files. This kind of functionality has only come to light recently with the introduction of HTML5, and it generally makes for a very easy attack that can have very dire consequences.