RSS Feed
Twitter
Speaker: Samy Kamkar How I Met Your Girlfriend: The discovery and construction of entire new classes of attacks via the Web to meet your girlfriend. Belong to newly discovered attacks, including HTML5 client-side XSS (no XSS hits the server!), PHP session hijacking and random numbers (just guessing PHP session cookies), browser-protocol confusion (turning a browser into an SMTP server), firewall and NAT penetration via javascript (turning your router against you), kidnapping Remote iPhone Google Maps (iPhone penetration in combination with HTTP man-in-the-middle), extraction means extremely precise geolocation information from a Web browser (not using IP Geolocation ) and much more. For presentations, white papers or audio version of the Defcon 18 presentations can be found at: defcon.org
Video Rating: 4 / 5
Posted in 
Tags:
Oh god, he’s a /b/tard.
@iFynni C’mon everyone gets it since “at leat 100 years ago”
I just tried to friend him on facebook. I hope I am not fucked now.
30k views and no dislikes. nice.
lol @ the hackers movie stuff.
@jcald89 nope, the irc I’m on is 6677
LOL, no one gets the OVER 9000 Joke
wow, samy is like the beautiful mind if it comes to exploits
@jcald89 I think he was referring to 11:20 when he quotes routers that you “shouldn’t be running a web server on port 6667.”
Theoretically: If you were the owner of several massively visited websites, could you use this method to use people’s browsers to DDoS?
If you pay attention, the crowd stfu b/c the guy starts droppin’ real shit…
This reduction method works for a lot of shit
@canucks16 Can you ask the people in the back to shut up?
what does the guy say at 8:10 ?
@goten1201 Running the web server on 6667 is required so that the router assumes that the web server is an IRC server. Read the slide at 8:10. This is not “best practices”, this is hacking.
You shouldn’t use 6667 If you’re running a webserver on that, You’re stupid, change your port.
Amazing