Conference Venue: RAI Amsterdam, Europaplein 24, 1078 GZ Amsterdam, The Netherlands

Book Hotel click HERE
Back To Schedule
Thursday, September 26 • 4:05pm - 4:50pm
XSS magic tricks

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Finding new stuff to talk about in XSS is hard business especially when you are as old as me and remember CSS being able to execute JavaScript. However, over the past year I've found various cool XSS magic tricks that you might not be aware of. This talk will disclose a new XS-Leak, a AngularJS CSP bypass in under 65 characters and a brand new way to execute XSS from any tag! Who needs expression? I wish Microsoft would listen, absolutely nobody. Anyway, it should hopefully be an entertaining talk about some cool tricks. The XSS magic circle has been contacted and they have refused to allow me to talk about my tricks but I'm going to wear a mask so they don't know it's me and I might blank out my name and twitter handle so everything is good.


Thursday September 26, 2019 4:05pm - 4:50pm CEST