Рет қаралды 33,555
Hi! I'm a pentester and a bug bounty hunter who's learning everyday and sharing useful resources as I move along. Subscribe to my channel because I'll be sharing my knowledge in new videos regularly.
SIGN UP ON Intigriti:
go.intigriti.co...
BUY ME A COFFEE:
www.buymeacoff...
SOCIAL MEDIA:
Follow me on Twitter: / farah_hawaa
Follow me on Instagram: / farah_hawaa
Connect with me on LinkedIn: / farah-hawa-a012b8162
TIME STAMPS:
0:43 Same-Origin Policy
1:14 When is postMessage() used
2:26 Parent window code
3:16 Child window code
4:11 Bug 1- Sender's origin not validated:
5:32 Bug 2- Target origin not specified:
postMessage() LABS:
github.com/t4k...
github.com/shu...
RESOURCES FOR postMessage():
developer.mozi...
www.mcafee.com...
jlajara.gitlab...
/ exploiting-post-messag...
Video editor: www.fiverr.com...