Sebastian Lekies

@slekies

Tech Lead - Web Application Security Scanning

Zurich, Switzerland
Регистриран през октомври 2011 г.
3 Снимки и видеоклипове Снимки и видеоклипове

Туитове

Потребителят @slekies е блокиран

Наистина ли искаш да видиш тези туитове? Това няма да разблокира @slekies.

  1. Закачен туит
    5.01

    The full list of CSP bypasses with all known vectors that came up during the recent discussions:

    4 replies 131 ретуита 152 харесва
  2. 19.01

    Advice to untangle cyber PR: If someone says "we got attacked X times" without exactly saying what "attack" means it's cyber-bullshit.

    2 replies 7 ретуита 14 харесва
  3. 18.01

    We keep hearing rumors that there'll be an ★Allstars 2017★ during OWASP AppSec EU in Belfast. Maybe there is something to it… cc

    7 ретуита 11 харесва
  4. 17.01

    There are still free seats for my workshop about Inkscape in Zurich Please RT

    29 ретуита 15 харесва
  5. 12.01

    And another CSP bypass by :

    1 reply 8 ретуита 14 харесва
  6. 12.01

    How to write a research paper: a guide for software engineers & practitioners. /cc

    6 replies 112 ретуита 247 харесва
  7. 10.01

    Remove DOM nodes without JavaScript: <svg><animate id=a dur=1 /><circle r=100> <discard begin=a.end xlink:href= /><style id=x>*{fill:red}

    2 replies 60 ретуита 146 харесва
  8. 7.01

    Another dangling markup vector:

    3 replies 4 ретуита 13 харесва
  9. 7.01

    5 more CSP bypasses added to the list:

    5 ретуита 18 харесва
  10. 6.01

    any additional ideas?

  11. 6.01

    Framework-specific bypasses are also welcome!

    4 replies 1 харесват
  12. 6.01

    Added a few more CSP bypasses to the list. Happy to receive suggestions, ideas and PoCs. Just ping me.

    1 reply 7 ретуита 12 харесва
  13. 5.01

    CC

    1 reply 1 харесват
  14. 5.01

    CSP-protected HTML injections can probably be used to break same-site cookies to conduct CSRF. (cc , , )

    2 replies 2 ретуита 5 харесва
  15. 28.12.2016 г.

    Are you ready for life outside the sandbox

    12 ретуита 16 харесва
  16. 2.01

    Slightly surprised by how many ways there are to mutate HTML without JS! (by )

    5 ретуита 31 харесва
  17. 1.01

    hah, my CSP nonce bypass:

    3 replies 18 ретуита 57 харесва
  18. 31.12.2016 г.

    Another type of CSP nonce bypass. FF+Chrome. Works with traditional reflected XSS. Happy new year!

    6 replies 77 ретуита 107 харесва
  19. Sebastian Lekies последва , , and 4 others
    • Juan David Parra
      @nopbyte

    • Intent To Ship
      @intenttoship

      I tweet when browser makers announce their intent to ship, change or remove features in their web engines! I was made by .

  20. 29.12.2016 г.

    and chrome too, soon!

    1 reply 2 ретуита 3 харесва

Потребителят @slekies още не е туитвал.

Изглежда зареждането отнема известно време.

Twitter може да е претоварен или да изпитва моментно затруднение. Опитай отново или виж Twitter Status за повече информация.

    Може също да харесаш

    ·