A New Era of One-Click Attacks - How to Break Install-Less Apps
Offered By: Black Hat via YouTube
Course Description
Overview
Explore the security vulnerabilities of Install-Less apps in this 28-minute Black Hat conference talk. Dive into novel attack methods targeting various implementations of Install-Less apps, including those hosted on native app engines, running on webview, or using componentized native apps. Examine specific vulnerabilities discovered in Apple App Clips, Google PWA, Google Instant App, and QuickApp that enable one-click attacks. Learn about the growing trend of Install-Less apps as vendors aim to streamline user experiences and reduce resource consumption. Gain insights from security researchers Bo Li, Yimin Wu, and Zhiyang Zeng as they present their findings and discuss the implications for app security in this new era of streamlined software deployment.
Syllabus
A New Era of One-Click Attacks: How to Break Install-Less Apps
Taught by
Black Hat
Related Courses
Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security ChipBlack Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube