XS-Leak: Leaking IDs using focus
Published: 08 October 2019 at 13:35 UTC Updated: 09 October 2019 at 07:01 UTC Whilst I was building the XSS cheatsheet I discovered some interesting behaviour in Chrome and Safari. For certain HTML elements, if you specify their ID in the URL fragment it will scroll to the element and fire a focus event. This can be triggered cross-domain using an iframe. I thought this could be abused to create a
体系的に学ぶモダン Web セキュリティ (#seccamp 全国大会 2019 B5) / Learn Modern Web Security Systematically
セキュリティ・キャンプ全国大会 2019 開発と運用トラックで提供した講義の資料の一部です。誤りに気がついたら、ぜひ @y0n3uchy あるいは @lmt_swallow にお知らせください。
Cross-Site Content and Status Types Leakage
When doing my usual Bug Bounty research routine, I found an interesting behavior that occurred on a popular website, let’s say censored.com. Depending on whether the user was authorized to display the website two completely different pages were being shown. One, with content-type:text/html;charset=utf-8 HTTP header, and the second, without Content-Type header at all, which in that case becomes tex
New XS-Leak techniques reveal fresh ways to expose user information
New XS-Leak techniques reveal fresh ways to expose user information ‘This should be in the OWASP Top 10 in 2025’ The deanonymization capabilities of cross-site leak (XS-Leak) attacks once again came to the fore this week, as security researchers published details of two new methods that can be used to expose user information. XS-Leak refers to a family of browser side-channel techniques that can b
1
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
処理を実行中です
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_01B-4_Schwarz_paper.pdf
https://crypto.stanford.edu/~dabo/papers/webtiming.pdf
Bughunter University - XSLeaks and XS-Search
GitHub - xsleaks/xsleaks: A collection of browser-based side channel attack vectors.
https://vwzq.net/slides/2019-s3_css_injection_attacks.pdf
