Abstract

Browser Hacking For Fun and Profit

Browsers are the most important application because any user relies on browser to validate and verify genuine websites. We will be learning about the issues which will demonstrate how vulnerabilities can be exploited by hackers in the real world. Presenting demo, code as well as POC along with CVE details.

Speaker

Divyanshu shukla

Senior cloud security engineer with more than 7 years of experience in Infra Security Review, Cloud Security Pentest, DevSecops, Web Application Pentesting, Mobile Pentesting, Automation. He has reported multiple vulnerabilities to companies like AWS,Airbnb, Google, Microsoft, Apple, Amazon, Samsung, Zomato, Xiaomi, Alibaba, Opera, Protonmail, Mobikwik, etc, and received CVE-2019-8727 CVE-2019-16918, CVE-2019-12278, CVE-2019-14962 for reporting issues. Author Burp-o-mation and a very-vulnerable-serverless application. Also part of AWS Community Builder for security and Defcon Cloud Village crew member in year 2020/2021/2022. He has also given training and talks in events like Nullcon Hyderabad, Blackhat Arsenal, C0c0n, Nullcon Goa, Bsides Bangalore 2023, Parsec IIT Dharwad, and Null community.

Timing

Starts at Saturday November 23 2019, 12:40 PM. The sessions runs for 40 minutes.

Resources