yeah seems like getting info through a proxy where they just do file/packet analysis would be relatively easy, as he explains just mask the data and re-assemble it in the browser-pc lol "we will release an open-source attack toolkit for researchers and red teams to test these attacks on their security solutions and better understand their security exposure." thats pretty cool

that`s why the answer to this is "Multilayer security", not only traffic to and from browser but also endpoint itself.

People code like maniacs, generate lots of bugs, screws up the hierarchy of data and code, or just padding, unfinish code structures, etc. A lot Programs/Apps these days are a big messy spaghetti that nobody wants to debug with patient, way too many errors to fix. And nobody talks about this

The SWG lets all these attacks through but what about the client browser itself? Surely some of them could be detected?

And as soon as the assembled malicious file is saved, the EDR quarantines it

Great talk 👍

❤❤

When he says the code is open source, is he just saying the browser.security page is public? Lol

This is kind of industry changing research. 🥸