* Cantinho Satkeys

Refresh History
  • FELISCUNHA: dgtgtr   49E09B4F  e bom fim de semana
    Hoje às 12:27
  • JPratas: try65hytr A Todos  101yd91 k7y8j0
    22 de Novembro de 2024, 02:46
  • j.s.: try65hytr a todos  4tj97u<z 4tj97u<z
    21 de Novembro de 2024, 18:43
  • FELISCUNHA: dgtgtr  pessoal   49E09B4F
    20 de Novembro de 2024, 12:26
  • JPratas: try65hytr Pessoal  4tj97u<z classic k7y8j0
    19 de Novembro de 2024, 02:06
  • FELISCUNHA: ghyt74   49E09B4F  e bom fim de semana  4tj97u<z
    16 de Novembro de 2024, 11:11
  • j.s.: bom fim de semana  49E09B4F
    15 de Novembro de 2024, 17:29
  • j.s.: try65hytr a todos  4tj97u<z
    15 de Novembro de 2024, 17:29
  • FELISCUNHA: ghyt74  pessoal   49E09B4F
    15 de Novembro de 2024, 10:07
  • JPratas: try65hytr A Todos  4tj97u<z classic k7y8j0
    15 de Novembro de 2024, 03:53
  • FELISCUNHA: dgtgtr   49E09B4F
    12 de Novembro de 2024, 12:25
  • JPratas: try65hytr Pessoal  classic k7y8j0 yu7gh8
    12 de Novembro de 2024, 01:59
  • j.s.: try65hytr a todos  4tj97u<z
    11 de Novembro de 2024, 19:31
  • cereal killa: try65hytr pessoal  2dgh8i
    11 de Novembro de 2024, 18:16
  • FELISCUNHA: ghyt74   49E09B4F  e bom fim de semana  4tj97u<z
    09 de Novembro de 2024, 11:43
  • JPratas: try65hytr Pessoal  classic k7y8j0
    08 de Novembro de 2024, 01:42
  • j.s.: try65hytr a todos  49E09B4F
    07 de Novembro de 2024, 18:10
  • JPratas: dgtgtr Pessoal  49E09B4F k7y8j0
    06 de Novembro de 2024, 17:19
  • FELISCUNHA: Votos de um santo domingo para todo o auditório  4tj97u<z
    03 de Novembro de 2024, 10:49
  • j.s.: bom fim de semana  43e5r6 49E09B4F
    02 de Novembro de 2024, 08:37

Autor Tópico: Bypassing Content Security Policy in Modern Web Applications  (Lida 68 vezes)

0 Membros e 1 Visitante estão a ver este tópico.

Online mitsumi

  • Moderador Global
  • ***
  • Mensagens: 117428
  • Karma: +0/-0


Bypassing Content Security Policy in Modern Web Applications
Published 5/2023
Created by Dawid Czagan
MP4 | Video: h264, 1280x720 | Audio: AAC, 44.1 KHz, 2 Ch
Genre: eLearning | Language: English | Duration: 5 Lectures ( 1h 4m ) | Size: 346 MB
Learn How Hackers Can Bypass the Most Powerful Defensive Technology in Modern Web Applications

What you'll learn
Discover how hackers can bypass a CSP via ajax(dot)googleapis(dot)com
Explore how hackers can bypass a CSP via Flash file
Learn how hackers can bypass a CSP via polyglot file
Discover how hackers cab bypassing a CSP via AngularJS
Learn step by step how all these attacks work in practice (DEMOS)
Check if your Content Security Policy is vulnerable to these attacks
Become a successful penetration tester / ethical hacker
Learn from one of the top hackers at HackerOne
Requirements
Basic hacking skills
Basic understanding of XSS attacks
Description
Content Security Policy (CSP) is the most powerful defensive technology in modern web applications. For hackers, this is an obstacle that blocks their attacks. That's why hackers are very interested in bypassing Content Security Policy and obviously you don't want that to happen.In this course, you'll learn how your Content Security Policy can be bypassed by hackers. What's more, you'll learn how to check if your Content Security Policy is vulnerable to these attacks. First, I'll show you how hackers can bypass a CSP via ajax(dot)googleapis(dot)com. Next, I'll present how hackers can bypass a CSP via Flash file. After that, I'll explain to you what a polyglot file is and how it can be used to bypass a CSP. Finally, I'll present how hackers can bypass a CSP via AngularJS.-----------------------------------------------*** For every single attack presented in this course there is a DEMO ***  so that you can see step by step how these attacks work in practice. I hope this sounds good to you and I can't wait to see you in the class.-----------------------------------------------Case #1:  Bypassing CSP via ajax(dot)googleapis(dot)comCase #2: Bypassing CSP via Flash FileCase #3: Bypassing CSP via Polyglot FileCase #4: Bypassing CSP via AngularJS
Who this course is for
Penetration testers, ethical hackers, bug hunters, security engineers / consultants

Download link

rapidgator.net:
Citar
https://rapidgator.net/file/d4f8bd697f3840492317a09a7ddc157f/gkygo.Bypassing.Content.Security.Policy.in.Modern.Web.Applications.rar.html

uploadgig.com:
Citar
https://uploadgig.com/file/download/7daF2e673a594b2C/gkygo.Bypassing.Content.Security.Policy.in.Modern.Web.Applications.rar

nitroflare.com:
Citar
https://nitroflare.com/view/BD4F01CCA1AED0C/gkygo.Bypassing.Content.Security.Policy.in.Modern.Web.Applications.rar

1dl.net:
Citar
https://1dl.net/ggj7lurx7wim/gkygo.Bypassing.Content.Security.Policy.in.Modern.Web.Applications.rar