If you can't read please download the document
Upload
webcrunch
View
970
Download
3
Embed Size (px)
Citation preview
, [email_address] 2.
3.
4.
5.
6.
7. Sokr.Ru:
8. http://myappsecurity.blogspot.com/ 9. Hey, Jacks
10. XSS (Cross Site Scripting)
setTimeout loop + remote reqs JS- .com/control.cgi 11. 12. XSS
13. CSRF (X Site Request Forgery)
14. CSRF
15. CSRF
16. All your cookies are belong to us
TRACE / HTTP/1.1 Cookies: XHR squid 17.
18. 19. Javascript is the new shellcode
20.
21.
22. ?