Lock in $30 Savings on PRO—Offer Ends Soon! ⏳
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
2000day in Safari
Search
Bo0oM
May 21, 2019
2
2.2k
2000day in Safari
Bo0oM
May 21, 2019
Tweet
Share
More Decks by Bo0oM
See All by Bo0oM
Носок на сок
bo0om
0
1.9k
Выйди и зайди нормально
bo0om
0
87
Защита от вредоносной автоматизации сегодня
bo0om
0
610
Defending against automatization using nginx
bo0om
0
850
Antibot pitch deck
bo0om
0
170
31337
bo0om
0
200
Your back is white
bo0om
0
370
FTP2RCE
bo0om
1
7.6k
Interpret it!
bo0om
0
1.2k
Featured
See All Featured
The AI Revolution Will Not Be Monopolized: How open-source beats economies of scale, even for LLMs
inesmontani
PRO
2
2.7k
The browser strikes back
jonoalderson
0
120
What’s in a name? Adding method to the madness
productmarketing
PRO
24
3.8k
svc-hook: hooking system calls on ARM64 by binary rewriting
retrage
1
25
The Anti-SEO Checklist Checklist. Pubcon Cyber Week
ryanjones
0
28
Hiding What from Whom? A Critical Review of the History of Programming languages for Music
tomoyanonymous
0
300
Navigating the moral maze — ethical principles for Al-driven product design
skipperchong
1
200
We Have a Design System, Now What?
morganepeng
54
7.9k
Why You Should Never Use an ORM
jnunemaker
PRO
61
9.7k
The MySQL Ecosystem @ GitHub 2015
samlambert
251
13k
10 Git Anti Patterns You Should be Aware of
lemiorhan
PRO
659
61k
What does AI have to do with Human Rights?
axbom
PRO
0
1.9k
Transcript
2000-day in Safari Anton Lopanitsyn @i_bo0om
phdays.com #PHDays XSS https://portswigger.net/web-security/cross-site-scripting
phdays.com #PHDays UXSS https://evil.com https://victim.com
phdays.com #PHDays Save as webpage, complete
phdays.com #PHDays chrome://flags
phdays.com #PHDays MHTML
phdays.com #PHDays MHTML
phdays.com #PHDays
phdays.com #PHDays Safari save as webarchive
phdays.com #PHDays Signed webarchive
phdays.com #PHDays Plaintext webarchive
phdays.com #PHDays Plaintext webarchive <script> … </script>
phdays.com #PHDays Plaintext webarchive
phdays.com #PHDays
phdays.com #PHDays https://blog.rapid7.com/2013/04/25/abusing-safaris-webarchive-file-format/
phdays.com #PHDays
phdays.com #PHDays
phdays.com #PHDays
phdays.com #PHDays
phdays.com #PHDays
phdays.com #PHDays xhtml
phdays.com #PHDays xhtml
phdays.com #PHDays file:///Users/bo0om/Library/Containers/com.apple.mail/Data/Library/Mail%20 Downloads/2F4D2013-CCBF-4341-B05E-CEB4B76F30CE/Document.xhtm file:///Users/bo0om/Downloads/33h0ygug3ulny0gvwhh3d.webarchive
phdays.com #PHDays
phdays.com #PHDays file:///Users/bo0om/Library/Containers/com.apple.mail/Data/Downloads/x.webarchive file:///Users/bo0om/Library/Containers/com.apple.mail/Downloads/x.webarchive file:///Users/bo0om/Library/Containers/Downloads/x.webarchive file:///Users/bo0om/Library/Downloads/x.webarchive file:///Users/bo0om/Downloads/x.webarchive
phdays.com #PHDays DEMO https://github.com/Bo0oM/Safari2000day)
Thank you!
bo0om
inesmontani
jonoalderson
productmarketing
retrage
ryanjones
tomoyanonymous
skipperchong
morganepeng
jnunemaker
samlambert
lemiorhan
axbom
