New Wine in an Old Bottle - Attacking Chrome WebSQL
Offered By: Black Hat via YouTube
Course Description
Overview
Explore a 31-minute Black Hat conference talk that delves into attacking Chrome WebSQL, revealing how SQLite can be directly accessed by remote attackers through the Chrome WebSQL API. Learn about a mutation-based Fuzzer developed for WebSQL, and discover new attack surfaces in Google Chrome beyond traditional RCE vulnerabilities. Gain insights from security researchers Ziling Chen, Hongli Han, and Nan Wang as they present their findings on exploiting this often-overlooked attack vector, despite Chrome's enhanced mitigation mechanisms for V8 and Blink.
Syllabus
New Wine in an Old Bottle: Attacking Chrome WebSQL
Taught by
Black Hat
Related Courses
Internet History, Technology, and SecurityUniversity of Michigan via Coursera Client-Server Communication
Google via Udacity HTTP & Web Servers
Udacity Network Security
Georgia Institute of Technology via Udacity Web Security Fundamentals
KU Leuven University via edX