Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Practical Side Channel Attacks on Modern Browsers - Lecture 6

via YouTube

Overview

Explore practical side channel attacks on modern browsers in this 58-minute conference talk by Angelo Prado at Takedowncon Rocketcity 2014. Delve into various injection attacks, privilege escalation techniques, and denial of service methods. Learn about browser XSS filters, timing attacks, clipboard vulnerabilities, and login & history side channels. Examine timing with heavy queries, requestAnimation Frame Timing, and the use of Flash as a side channel. Discover the potential security risks associated with the Data URI scheme and gain insights into protecting against these sophisticated browser-based attacks.

Syllabus

Intro
Spain Is A Beautiful Country
Internationally-Recognized
Different Injection Attacks
Privilege Escalation
And of course, Denial of Service
BROWSER XSS FILTERS
BROWSER TIMING ATTACKS
BROWSER CLIPBOARD ATTACKS
PRETTY PURPLE COLORS
LOGIN & HISTORY SIDE CHANNELS
TIMING WITH HEAVY QUERIES
requestAnimation Frame Timing
FLASH AS A SIDE CHANNEL
DATA URI SCHEME

Reviews

Start your review of Practical Side Channel Attacks on Modern Browsers - Lecture 6

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.