• Goa-2021
  • Training
  • Offensive HTML, SVG, CSS and other Browser-Evil

Offensive HTML, SVG, CSS and other Browser-Evil

Mario Heiderich

Register Now
Mario Heiderich

Trainer Name: Mario Heiderich
Title: Offensive HTML, SVG, CSS and other Browser-Evil
Duration: 4 Days
Dates: 22nd - 25th March 2021
Time: 2.00 PM to 6.00 PM IST
Delivery Mode: via Zoom.us and Discord Platform


Course Outline

Chapter One: History & Basics

  • The History of Web Security and Web Attacks
  • The History of Browsers
  • HTML, JavaScript, CSS

Chapter Two: Cookies, Sessions, XSS

  • Cookies & Sessions
  • Same Origin Po­li­cy
  • Authenticati­on & Authorization
  • The Basics of Cross-Site Scripting

Chapter Three: Advanced XSS

  • Advanced XSS
  • mXSS and DOM Mutations

Chapter Four: Browsers & Beyond

  • The DOM
  • DOM Clob­be­ring & DOM XSS
  • jQuery, Expression Injections, Angular­JS
  • postM­es­sa­ge XSS
  • SVG
  • Flash Security

Who should attend?

The lecture is offered as a block event. The lecture is explicitly also suitable for students who have already heard XML- und Web­ser­vice­si­cher­heit/Web­si­cher­heit and want to deepen their know­ledge.

What to bring?

  • A Lap­top, OS doesn't mat­ter
  • Wor­king In­ter­net Con­nec­tion

What to Expect?

Upon suc­cess­ful com­ple­ti­on of the mo­du­le, stu­dents will have a com­pre­hen­si­ve un­der­stan­ding of the tech­ni­cal as­pects of web and brow­ser se­cu­ri­ty. They have ac­qui­red a com­pre­hen­si­ve un­der­stan­ding of sys­tems for com­plex web ap­p­li­ca­ti­ons. Through in­de­pen­dent con­s­i­de­ra­ti­ons and their im­ple­men­ta­ti­on in prac­tical pro­jects to im­pro­ve net­work se­cu­ri­ty, stu­dents pre­pa­re for their role in pro­fes­sio­nal life. They can ana­ly­se new pro­blems and de­ve­lop new so­lu­ti­ons. They can argue the be­ne­fits of the so­lu­ti­ons they have de­ve­lo­ped.

About the Trainer

Mario Heiderich, handsome heart-breaker, bon-vivant and (as he loves to call himself) "security researcher" is from Berlin, likes everything between lesser- and greater-than, leads the small yet exquisite pen-test company called Cure53 and pesters peaceful attendees on various 5th tier conferences with his hastily assembled powerpoint-slides. Mario recently watched a movie about Chitty the robot and then decided it's time to give a talk in India again.

Copyright © 2019-20 | Nullcon India | International Security Conference | All Rights Reserved