Locking the Throne Room - ECMA Script 5, a Frozen DOM and the Eradication of XSS
Offered By: Hack in Paris via YouTube
Course Description
Overview
Explore a novel approach to combating Cross-Site Scripting (XSS) and similar web security threats in this conference talk from Hack in Paris. Delve into the use of ECMA Script 5 features to create a client-side Intrusion Detection/Prevention System (IDS/IPS) using JavaScript. Learn how to seal important DOM properties, preventing attackers from reading and modifying sensitive data in a tamper-resistant manner. Discover the potential future of XSS mitigation and eradication through the implementation of these techniques in modern browsers like Chrome 8 and Firefox 4. Gain insights into this lightweight yet effective method of enhancing web security without requiring special execution privileges.
Syllabus
2of12 Mario Heiderich Locking the Throne Room ECMA Script 5,a frozen DOM and the eradication of XSS
Taught by
Hack in Paris
Related Courses
NetflOSINT- Taking an Often-Overlooked Data Source and Operationalizing It - Joe Gray - Hack in ParisHack in Paris via YouTube All Roads Lead to OpenVPN Pwning Industrial Remote Access Clients - Sharon Brizinov - Hack in Paris - 2021
Hack in Paris via YouTube Exploits in Wetware - R. Sell - Hack in Paris - 2019
Hack in Paris via YouTube All Your GPS Trackers Belong to Us - C. Kasmi, P. Barre - Hack in Paris - 2019
Hack in Paris via YouTube In NTDLL I Trust - Process Reimaging and Endpoint Security Solution Bypass - E. Carroll - Hack in Paris - 2019
Hack in Paris via YouTube