Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
If you have some interesting news or want to throw up a link to discuss it, here's the place. Anything is okay, even shameless vendor launches (since that is often applicable to what we work on). 

Current Page: 1 of 1
Results 1 - 3 of 3
5 years ago
h0gar
Oh damn :p. Seems like I just reinvented the wheel... But still. Almost all websites are vulnerable to it. And? Who cares? I'm sure I could build some "UI Redressing" for some big open-sources projects or even sla.ckers. With some time. May not be as efficient as a good old XSS/CSRF, but all "we need" is one successful shot. Even so there are existing protections against t
Forum: News and Links
5 years ago
h0gar
Kind of, but it's not only concerning click. Ok my example may not be clear. Another one. What if you just show the subscription form of a random website (with a decorated iframe), within your an under-control page, and ask for the users to subscribe on "your website"? And actually, click hijacking -quickly said- is how to still user clicks. Here, what I'm talking about, is how to
Forum: News and Links
5 years ago
h0gar
Hi guys. After reading some stuff about click hijacking, I had a thought about a kind of vulnerability which doesn't fit in any other category of the forum. The full article is on my blog: http://h0gar.net/?p=57 But here is an excerpt: "Actually, we could just make it looking like they are dealing with a completely innocent website while they are dealing with another one. And this,
Forum: News and Links
Current Page: 1 of 1