Explore the potential security vulnerabilities of the postMessage API in this 29-minute conference talk from DefCamp 2021. Dive into practical techniques for exploiting this web messaging system, potentially leading to significant financial gains. Learn about the latest research and practices in information security, with a focus on how attackers can abuse cross-origin communication. Gain insights from security specialists and developers on protecting against these threats. Access additional resources, including slides and presentations, through the DefCamp archive for a comprehensive understanding of this critical topic in web application security.
Overview
Syllabus
Abusing postMessage API for 6 figures/year at DefCamp 2021
Taught by
DefCamp
Related Courses
-
Abusing Azure AD Pass-Through Authentication Vulnerabilities
-
Automatic Exploitation of Critical CVEs Using Sniper - ProxyShell, OMIGOD and More
-
SolarWinds One Year Later - The Story of an Unauthenticated RCE in the Orion Platform
-
What Happens in Windows 8 Stays in Windows 8
-
Lions at the Watering Hole - One Year After
-
DVB-T Hacking
