YoVDO

New Wine in an Old Bottle - Attacking Chrome WebSQL

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Cybersecurity Courses SQLite Courses Web Security Courses Vulnerability Research Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore a 31-minute Black Hat conference talk that delves into attacking Chrome WebSQL, revealing how SQLite can be directly accessed by remote attackers through the Chrome WebSQL API. Learn about a mutation-based Fuzzer developed for WebSQL, and discover new attack surfaces in Google Chrome beyond traditional RCE vulnerabilities. Gain insights from security researchers Ziling Chen, Hongli Han, and Nan Wang as they present their findings on exploiting this often-overlooked attack vector, despite Chrome's enhanced mitigation mechanisms for V8 and Blink.

Syllabus

New Wine in an Old Bottle: Attacking Chrome WebSQL


Taught by

Black Hat

Related Courses

Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security Chip
Black Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube