Hacking JavaScript Desktop Apps with XSS and RCE
Offered By: LASCON via YouTube
Course Description
Overview
Explore the vulnerabilities of JavaScript desktop applications in this 46-minute conference talk from LASCON. Delve into essential techniques for auditing Electron applications, understanding the implications of XSS in desktop environments, and learning how to escalate XSS to Remote Code Execution (RCE) in JavaScript apps. Discover methods for attacking preload scripts and achieving RCE via IPC. Gain valuable insights applicable to popular platforms like Microsoft Teams, Skype, Bitwarden, Slack, and Discord. Ideal for penetration testers, desktop app developers, and anyone interested in JavaScript, Node.js, or Electron app security, this hands-on workshop provides immediately applicable skills to enhance your security analysis workflow.
Syllabus
Hacking JavaScript Desktop apps with XSS and RCE - Abraham Aranguren
Taught by
LASCON
Related Courses
Programming LanguagesUniversity of Virginia via Udacity Building a Basic Website
University of Massachusetts Amherst via Independent iDESWEB, Introducción al desarrollo web
MirÃadax Web Engineering II: Developing Mobile HTML5 Apps
Technische Hochschule Mittelhessen via iversity Web Application Architectures
University of New Mexico via Coursera