Bypassing Browser Security Policies for Fun and Profit

Bypassing Browser Security Policies for Fun and Profit

Black Hat via YouTube Direct link

Introduction: Cross Scheme Data Exposure

9 of 19

9 of 19

Introduction: Cross Scheme Data Exposure

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Bypassing Browser Security Policies for Fun and Profit

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Agenda
  3. 3 Testing methodology & References
  4. 4 Introduction Same Origin Policy
  5. 5 SOP Bypasses For Android Browsers
  6. 6 SOP Bypass 1 - CVE 2014-6041 (POC)
  7. 7 SOP Bypass 2 - POC
  8. 8 Google Play's Web Remote Installation Feature
  9. 9 Introduction: Cross Scheme Data Exposure
  10. 10 CSDE Vulnerability Android Stock Browser
  11. 11 Cross Scheme Data Exposure Attack Plan
  12. 12 Android Gingerbread CSDE (POC)
  13. 13 Android Jellybean CSDE (POC)
  14. 14 CSP And Mobile Browsers
  15. 15 Problem with Mobile Browsers And CSP
  16. 16 Android Patch Management issues
  17. 17 How Apple Panch management Works? (Will's Graphs)
  18. 18 How Everything else works
  19. 19 Blackhat Sound Bytes

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.