Security Topics #3: CSP WebRTC Bypass
Рет қаралды 622
Күн бұрын
@handle1337 8 ай бұрын
Awesome video 🎉. I’ve been watching your channel since early 2023, but haven’t had a youtube account until very recently. I participated in a good amount of CTFs in 2023 and have been finding XSS vulnerabilities for about a decade now and didn’t know about this bypass. Haven’t had the chance to say this because I’ve always been using youtube signed out, but now that I can comment, I really appreciate what you’re doing and am looking forward to more :)
@SloppyJoePirates 8 ай бұрын
hey handle1337, glad it was useful! And thanks! Hopefully many more videos
@abuctf 8 ай бұрын
upload rate increasing, here for it :)
@danielfoudeh5915 8 ай бұрын
If you keep uploading at this rate i will be pwning in no time :)
@benjaminatkin4745 4 ай бұрын
window.location can be blocked inside an actually - with child-src disallowing navigation to any exfiltratable locations, and popups disabled
@SloppyJoePirates 4 ай бұрын
Ah right! and you can use sandbox attribute on csp. Hmm, maybe I'll need to revisit this. It still seems impossible imo to block all exfil, but I'm excited to see what you make!
Fabiosa Best Lifehacks
Рет қаралды 16 МЛН
Холли Лолли Live
Рет қаралды 4,7 МЛН
Security Now
Рет қаралды 10 М.
TigerBeetle
Рет қаралды 42 М.
SloppyJoePirates CTF Writeups
Рет қаралды 1,9 М.