Turning unexploitable XSS into an account takeover with Matan Berson
📧 Subscribe to BBRE Premium: https://bbre.dev/premium
✉️ Sign up for the mailing list: https://bbre.dev/nl
📣 Follow Matan on Twitter: https://x.com/MtnBer
📣 Follow me on Twitter: https://bbre.dev/tw
Matan's interview in @criticalthinkingpodcast: https://youtu.be/aDcK6Z6K2Zc?si=MQT5FKLHW3yZpalX
Devtools Course in BBRE Premium archive: https://members.bugbountyexplained.com/course/devtools/
In this video with Matan Berson, we go through a universal yet previously undocumented technique of exploiting a self-XSS by doing more than just reading a previously opened page.
🖥 Get $100 in credits for Digital Ocean: https://bbre.dev/do
Timestamps:
00:00 Intro
00:47 A conventional way to exploit a self-XSS
09:32 How does the browser prioritize cookies?
12:13 What's Cookie Jar overflow?
14:07 How to serve attacker's account self-XSS while logged in to victim's session?
19:34 How to exploit this when the self-XSS is not on a commonly visited page?
✉️ Sign up for the mailing list: https://bbre.dev/nl
📣 Follow Matan on Twitter: https://x.com/MtnBer
📣 Follow me on Twitter: https://bbre.dev/tw
Matan's interview in @criticalthinkingpodcast: https://youtu.be/aDcK6Z6K2Zc?si=MQT5FKLHW3yZpalX
Devtools Course in BBRE Premium archive: https://members.bugbountyexplained.com/course/devtools/
In this video with Matan Berson, we go through a universal yet previously undocumented technique of exploiting a self-XSS by doing more than just reading a previously opened page.
🖥 Get $100 in credits for Digital Ocean: https://bbre.dev/do
Timestamps:
00:00 Intro
00:47 A conventional way to exploit a self-XSS
09:32 How does the browser prioritize cookies?
12:13 What's Cookie Jar overflow?
14:07 How to serve attacker's account self-XSS while logged in to victim's session?
19:34 How to exploit this when the self-XSS is not on a commonly visited page?
Комментарии:
Turning unexploitable XSS into an account takeover with Matan Berson
Bug Bounty Reports Explained
【メンタル崩壊】観ると絶対に後悔する胸糞映画⑧【おすすめ映画紹介】
UNTITLED MOVIE アンタイトル・ムービー
УТРО В ГРАДИНАТА | MORNING IN THE GARDEN #asmr
The Garden Utopia
Скорость звука
GetAClass - Физика в опытах и экспериментах
Мировые СМИ о российской баллистической ракете Орешник Shorts Short новости
Телеканал ОНТ
54 года назад
Ракета Орешник что известно Реакция Запада на угрозы Путина Ордер на арест Нетаньяху НОВОСТИ
Радио Свобода. Новости
54 года назад
Гиперзвук в безъядерном оснащении по Украине Путин о ракете Орешник и ответе на удары по России
RTVI Новости
54 года назад
БЕЗУМЦЫ РФ впервые АТАКОВАЛА Украину МЕЖКОНТИНЕНТАЛЬНОЙ баллистической ракетой Shorts
FREEДOM. LIVE
54 года назад
Богатый смех У Тима он Дубайский просто аняищук димасблог богатыйсмех семья тим юмор
Anyaischuk
54 года назад
