Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Client-Side Exploitation Techniques Without Zero-Day Vulnerabilities

OWASP Foundation via YouTube

Start learning Write review
DataCamp Ad

Power BI Fundamentals - Create visualizations and dashboards from scratch

Learn More → Financial Edge Ad

The Investment Banker Certification

Learn More →

Overview

Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Explore client-side exploitation techniques without relying on zero-day vulnerabilities in this conference talk from AppSecUSA 2014. Learn practical methods for compromising target systems by abusing existing functionalities in browsers, extensions, and legacy features. Discover how to automate attacks, tailor them to specific victim profiles, and achieve persistence on compromised systems. Gain insights into exploiting Chrome and Firefox extensions, HTML applications, User Interface expectations, and Office macros. Suitable for offensive security enthusiasts, this talk provides real-life examples and demonstrates effective client-side exploitation strategies that work on fully patched target software.

Syllabus

When you can't afford 0days: Client-side exploitation for the masses - OWASP AppSecUSA 2014

Taught by

OWASP Foundation

Reviews

Start your review of Client-Side Exploitation Techniques Without Zero-Day Vulnerabilities

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.