Upgrade to Pro — share decks privately, control downloads, hide ads and more …

ブラウザのUIのバグを探す / Secusoba PopUnder

1a5bce24526a7d6f1ab89678df2d673c?s=47 Masato Kinugawa
November 26, 2017
Technology
2
1.4k

ブラウザのUIのバグを探す / Secusoba PopUnder

第40回セキュそば勉強会(http://secusoba.info/?%E7%AC%AC40%E5%9B%9E%2811%E6%9C%8825%E6%97%A5%29) で発表した資料です。

1a5bce24526a7d6f1ab89678df2d673c?s=128

Masato Kinugawa

November 26, 2017
Tweet

More Decks by Masato Kinugawa

See All by Masato Kinugawa
1a5bce24526a7d6f1ab89678df2d673c?s=48 masatokinugawa
21
5k
1a5bce24526a7d6f1ab89678df2d673c?s=48 masatokinugawa
5
71k
1a5bce24526a7d6f1ab89678df2d673c?s=48 masatokinugawa
9
12k
1a5bce24526a7d6f1ab89678df2d673c?s=48 masatokinugawa
17
10k
1a5bce24526a7d6f1ab89678df2d673c?s=48 masatokinugawa
35
18k
1a5bce24526a7d6f1ab89678df2d673c?s=48 masatokinugawa
20
21k
1a5bce24526a7d6f1ab89678df2d673c?s=48 masatokinugawa
4
2.2k
1a5bce24526a7d6f1ab89678df2d673c?s=48 masatokinugawa
7
2.2k
1a5bce24526a7d6f1ab89678df2d673c?s=48 masatokinugawa
8
15k

Other Decks in Technology

See All in Technology
60187fe0ab07ea5a46572a3ab05f61dd?s=48 mattstauffer
0
1.4k
65f840d22d4507284fc10332fdde00fe?s=48 lulak21
0
150
204f36383109212baaedfabb8abcfc9e?s=48 konakalab
0
170
7ff130a0c1a4966472a4bdfaaf05e791?s=48 chandi
0
120
0d29d155ce5c5a93ed46363626da3ea7?s=48 ocise
1
5.5k
D069523c85d56ebf004c9695bca578c0?s=48 kenichimunezawa
0
240
8e308462954f8c38cc60dabb8b7bc6a3?s=48 widstkyi
0
360
Cd3d2cb2dadf5488935fe0ddaea7938a?s=48 monochromegane
0
150
61fe6537eed31e8d1999ce1c1d5bf988?s=48 himaratsu
2
240
9cdd446fb259ec93e52d4388f60197f8?s=48 karamem0
0
740
0b2426ff15397042caa863cc7965c091?s=48 kurotaky
0
150
B22a79a9c1bf42c1825ce42dedd41765?s=48 shinpsan
1
360

Featured

See All Featured
44b54d2ffcb7857004071cc6795dde11?s=48 cassininazir
347
20k
20bfe76b3d6105641f879fe45cfc9272?s=48 bkeepers
PRO
322
54k
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
780
240k
5f83ef806155b403c3393160ce51f955?s=48 jlugia
217
16k
C0390e8b11079f8761c0cd3274ed61cb?s=48 productmarketing
8
970
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
683
180k
027d1ebf66cc039a0bd3b55eeadbe75d?s=48 sachag
267
17k
A415db3ac9e9668acbc1fb36eead84ac?s=48 mthomps
40
2.4k
96270e4c3e5e9806cf7245475c00b275?s=48 addyosmani
1347
200k
Ba530e786553390f3fb271848485681c?s=48 3n
163
22k
9375a9529679f1b42b567a640d775e7d?s=48 schacon
147
6.7k
9952dfcd5d338f8a8e7175c8a8f65fb5?s=48 wjessup
341
16k

Transcript

  1. None
  2. None
  3. None

  4. • • •

  6. • •

  7. None

  8. • • newWin = window.open('//example.com/','w','a'); newWin.blur();//新しいウインドウのフォーカスを離す window.focus();//親にフォーカスを移す

  9. • •

  10. • https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w

  11. None
  12. None
  13. None
  14. None
  15. None

  16. confirm(1);

  17. prompt(1);

  18. print();

  19. //Basic認証

  20. //外部アプリを開くプロトコルへナビゲーション location = "mms:";

  21. onbeforeunload=function(e){return 1;} //どこかへ移動しようとするとダイアログ出現

  22. new PresentationRequest("").start();

  23. new PaymentRequest([{ supportedMethods: ['basic-card'] }], { total: { label: 1,

    amount: { currency: 'USD', value: 0 } } }).show();

  24. navigator.usb.requestDevice({filters:[]});

  25. <form> <input type="email" value="a"> <button id="button"> </form> <script> button.click(); </script>

  26. • • • • • •

  27. <script> function popUnder() { new PresentationRequest("").start(); window.open("https://example.com/", "_blank","a"); setTimeout(function(){ location.reload();//リロードでダイアログを消す

    },1000); } </script> <button onclick="popUnder()">Create PopUnder</button>
  28. None

  29. • • • • • • •

  30. • • • • •

  31. • •

  32. • • •

  33. None