Loading…
View analytic
Monday, July 2 • 8:00am - Wednesday, July 4 • 5:00pm
3-Day Training: Exploiting Websites by using offensive HTML, SVG, CSS and other Browser-Evil LIMITED

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
Limited Capacity seats available

More and more web applications delegate business logic to the client. HTML.next, JavaScript, SVG, Canvas, ES2016 & AngularJS are just some terms that describe the contents of the modern web stack. But how does the attack surface look for those? What if there’s not GET parameters anymore that our scanner scan tamper with? Classic web-pentests are “so nineties” in this realm. And keeping up the pace with progress is getting harder and harder.

But there is hope. We’ll learn how to attack any web-application with either unknown legacy features – or the half-baked results coming to your browser from the labs of W3C, WHATWG and the ES2016 mailing lists. Whether you want to attack modern web applications or shiny browser extensions – we have that covered.

HTML is a living standard. And so is this workshop. The course material will be provided on-site and via access to a private Github repository so all attendees will be receive updated material even months after the actual training.

Speakers
avatar for Mario Heiderich Keynote Speaker

Mario Heiderich Keynote Speaker

Founder, Cure 53
Dr.-Ing. Mario Heiderich, handsome heart-breaker, bon-vivant and (as he loves to call himself) "security researcher" is from Berlin, likes everything between lesser- and greater-than and leads a small yet exquisite pen-test company. He commonly pesters peaceful attendees on various... Read More →


Monday July 2, 2018 8:00am - Wednesday July 4, 2018 5:00pm
Victoria - 2nd Floor QEII Centre Broad Sanctuary, Westminster, London. SW1P 3EE

Attendees (4)