Using Chromedp to Hunt for Prototype Pollution
Offered By: NahamSec via YouTube
Course Description
Overview
Explore techniques for detecting prototype pollution vulnerabilities at scale in this 38-minute conference talk from NahamCon2021. Learn how to leverage the chromedp package in Go to automate client-side security testing for prototype pollution issues. Discover practical approaches to implement large-scale scanning for this common web application vulnerability, overcoming the challenges of identifying client-side security flaws programmatically. Gain insights into writing efficient Go code to interact with web browsers and analyze JavaScript execution for potential prototype pollution vectors.
Syllabus
NahamCon2021 - Using Chromedp to Hunt for Prototype Pollution - @TomNomNomDotCom
Taught by
NahamSec
Related Courses
Reversing Web AssemblyNahamSec via YouTube Blackbox Monitoring for Timely Bug Detection
NahamSec via YouTube Continuous Intrusion - Hacking CI Systems
NahamSec via YouTube Breaking Into Cloud Wallets - Hacking Crypto Web Apps
NahamSec via YouTube Effectively Finding Vulnerabilities by Debugging the Source Code
NahamSec via YouTube