Exploiting Websites using offensive HTML, SVG, CSS and other Browser-Evil

Oct 27, 2017 - Oct 29, 2017
09:00 AM - 06:00 PM
Hotel Royal Orchid, 1, Golf Avenue, Adjoining KGA Golf Course Hal Airport Road

This event has ended. Please contact organizer for more details.

Report Issues

More and more web applications delegate business logic to the client., JavaScript, SVG, Canvas, ES2017 & AngularJS are just some
terms that describe the contents of the modern web stack. But how does
the attack surface look for those? What if there’s not GET parameters
anymore that our scanner scan tamper with? Classic web-pentests are “so
nineties” in this realm. And keeping up the pace with progress is
getting harder and harder.

But there is hope. We’ll learn how to attack any web-application with
either unknown legacy features – or the half-baked results coming to
your browser from the labs of W3C, WHATWG and the ES2016 mailing lists.
Whether you want to attack modern web applications or shiny browser
extensions – we have that covered.

HTML is a living standard. And so is this workshop. The course material
will be provided on-site and via access to a private
Github repository so all attendees will be receive updated material even
months after the actual training.

You will find latest basic to advance web application exploitation to hunt the bugs in the application.


Organiser : Sandeep Kamble

Explara uses cookies to enhance your experience. By using our site, you agree to our privacy policy.

Exploiting Websites using offensive HTML, SVG, CSS and other Browser-Evil

Ask Organiser

Report spam or issues