Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Speaker Deck
PRO
Sign in
Sign up for free
ブラウザのUIのバグを探す / Secusoba PopUnder
Masato Kinugawa
November 26, 2017
Technology
2
1.5k
ブラウザのUIのバグを探す / Secusoba PopUnder
第40回セキュそば勉強会(
http://secusoba.info/?%E7%AC%AC40%E5%9B%9E%2811%E6%9C%8825%E6%97%A5%29
) で発表した資料です。
Masato Kinugawa
November 26, 2017
Tweet
Share
More Decks by Masato Kinugawa
See All by Masato Kinugawa
JSでDoSる/ Shibuya.XSS techtalk #11
masatokinugawa
21
5.5k
Electron: Abusing the lack of context isolation - CureCon(en)
masatokinugawa
5
78k
Electron: Context Isolationの欠如を利用した任意コード実行 / Electron: Abusing the lack of context isolation - CureCon(ja)
masatokinugawa
9
16k
バグハンターが見てきたBug Bountyの7年 / LINE Developer Meetup #34 Security Bug Bounty
masatokinugawa
18
11k
5文字で書くJavaScript/ Shibuya.XSS techtalk #10
masatokinugawa
35
18k
攻撃者視点で見る Service Worker / PWA Study SW
masatokinugawa
20
23k
USAGE OF XSS FILTER
masatokinugawa
4
2.3k
XSSフィルターの使い方/ Shibuya.XSS techtalk #9
masatokinugawa
7
2.4k
XSS Attacks through PATH
masatokinugawa
8
16k
Other Decks in Technology
See All in Technology
CAMのサービス開発の歴史と共通基盤を使った 開発スタイルへの変遷について
ishikawa_pro
0
110
セマフォでタスクの同時実行数制限
hankehly
0
140
メタバースと経済圏
sbtechnight
0
110
YAMLを書くだけで構築できる分散ストレージ
sat
PRO
0
230
ヘキサゴナルアーキテクチャを利用したLambda 関数のドメインモデルの実装 Live
fatsushi
4
790
Data-Driven Healthcare - Techplay
kotaroito
0
120
Building smarter apps with machine learning, from magic to reality
picardparis
4
3.1k
動的ルーティング・ゲートウェイ (DRG) 概要
ocise
0
130
runn is a package/tool for running operations following a scenario. / golang.tokyo #32
k1low
1
240
家の明るさ制御 / Brightness Control in My House
1024jp
0
140
srenext2022-skaru
mixi_engineers
PRO
1
1.2k
[AKIBA.AWS] それ、t2.micro選んで大丈夫?
tsukuboshi
0
390
Featured
See All Featured
Docker and Python
trallard
27
1.5k
The Power of CSS Pseudo Elements
geoffreycrofte
46
3.9k
Creatively Recalculating Your Daily Design Routine
revolveconf
207
10k
Done Done
chrislema
174
14k
For a Future-Friendly Web
brad_frost
164
7.4k
Rails Girls Zürich Keynote
gr2m
86
12k
Faster Mobile Websites
deanohume
294
28k
Building Applications with DynamoDB
mza
83
4.6k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
danielanewman
212
20k
Automating Front-end Workflow
addyosmani
1351
200k
How GitHub (no longer) Works
holman
296
140k
Six Lessons from altMBA
skipperchong
14
1.3k
Transcript
None
None
None
• • •
•
• •
None
• • newWin = window.open('//example.com/','w','a'); newWin.blur();//新しいウインドウのフォーカスを離す window.focus();//親にフォーカスを移す
• •
• https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w
None
None
None
None
None
confirm(1);
prompt(1);
print();
//Basic認証
//外部アプリを開くプロトコルへナビゲーション location = "mms:";
onbeforeunload=function(e){return 1;} //どこかへ移動しようとするとダイアログ出現
new PresentationRequest("").start();
new PaymentRequest([{ supportedMethods: ['basic-card'] }], { total: { label: 1,
amount: { currency: 'USD', value: 0 } } }).show();
navigator.usb.requestDevice({filters:[]});
<form> <input type="email" value="a"> <button id="button"> </form> <script> button.click(); </script>
• • • • • •
<script> function popUnder() { new PresentationRequest("").start(); window.open("https://example.com/", "_blank","a"); setTimeout(function(){ location.reload();//リロードでダイアログを消す
},1000); } </script> <button onclick="popUnder()">Create PopUnder</button>
None
• • • • • • •
• • • • •
• •
• • •
None
masatokinugawa
ishikawa_pro
hankehly
sbtechnight
sat
fatsushi
kotaroito
picardparis
ocise
k1low
1024jp
mixi_engineers
tsukuboshi
trallard
geoffreycrofte
revolveconf
chrislema
brad_frost
gr2m
deanohume
mza
danielanewman
addyosmani
holman
skipperchong
![new PaymentRequest([{ supportedMethods: ['basic-card'] }], { total: { label: 1,](https://files.speakerdeck.com/presentations/0f400b94ba0b4ab39f5e8702330e687f/slide_22.jpg){kind=link}
![navigator.usb.requestDevice({filters:[]});](https://files.speakerdeck.com/presentations/0f400b94ba0b4ab39f5e8702330e687f/slide_23.jpg){kind=link}
