YoVDO

Portable Data exFiltration - XSS for PDFs

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Cybersecurity Courses Cross-Site Scripting (XSS) Courses Web Application Security Courses Injection Vulnerabilities Courses Data Exfiltration Courses

Course Description

Overview

Explore the security vulnerabilities of PDF documents and generators in this 33-minute Black Hat conference talk. Learn how a simple HTTP hyperlink can be exploited to gain access to a PDF's internal structure. Discover techniques for compromising PDF contents using a single link, and understand the implications for web security. Gain insights into the intersection of injection vulnerabilities and widely-used PDF technologies. Presented by Gareth Heyes, this session offers valuable knowledge for security professionals and web developers concerned with PDF-related risks.

Syllabus

Portable Data exFiltration: XSS for PDFs


Taught by

Black Hat

Related Courses

Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security Chip
Black Hat via YouTube
Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube
AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube
Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube
Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube