blog.kotowicz.net
When you don't have 0days. Client-side exploitation for the masses
http://blog.kotowicz.net/2014/03/when-you-dont-have-0days-client-side.html
The world. according to koto. On security, malware, cryptography, pentesting, javascript, php and whatnots. Saturday, March 22, 2014. When you don't have 0days. Client-side exploitation for the masses. Yesterday me and @antisnatchor. Gave a talk at Insomni'hack. Entitled "When you don't have 0days. Client-side exploitation for the masses". We described different tricks that one can use during a pentesting assignment to achieve goals without burning any of those precious 0days. Ported recently to BeEF.
blog.kotowicz.net
March 2014
http://blog.kotowicz.net/2014_03_01_archive.html
The world. according to koto. On security, malware, cryptography, pentesting, javascript, php and whatnots. Saturday, March 22, 2014. When you don't have 0days. Client-side exploitation for the masses. Yesterday me and @antisnatchor. Gave a talk at Insomni'hack. Entitled "When you don't have 0days. Client-side exploitation for the masses". We described different tricks that one can use during a pentesting assignment to achieve goals without burning any of those precious 0days. Ported recently to BeEF.