PaulDotCom mailing list archives

Pen-Testing Web 2.0: Stealing HTML5 Storage & Injecting JSON Jeremy Druin

From: Adrian Crenshaw <irongeek () irongeek com>
Date: Sat, 7 Jan 2012 11:04:48 -0500

Pen-Testing Web 2.0: Stealing HTML5 Storage & Injecting JSON Jeremy Druin

http://www.irongeek.com/i.php?page=videos/pen-testing-web-2-stealing-html5-storage-injecting-json-jeremy-druin

This is Jeremy's talk from a recent ISSA meeting. In it he covers what the
title says, showing off stealing of HTML 5 storage, injecting JSON, using
Burp Suite, Muttillidae and some XSS attack fun. Sorry about the noise in
the first bit, I had to set the camera up a ways off and it picked up my
bag of chips better than it did Jeremy's talk.

-- 
"The ability to quote is a serviceable substitute for wit." ~ W. Somerset
Maugham

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

Current thread:

Pen-Testing Web 2.0: Stealing HTML5 Storage & Injecting JSON Jeremy Druin Adrian Crenshaw (Jan 07)
- Re: Pen-Testing Web 2.0: Stealing HTML5 Storage & Injecting JSON Jeremy Druin Bradley McMahon (Jan 08)