RB2: OWASP Day podcast: Exploiting Firefox extensions
In this special interview you'll hear our New Zealand correspondent Paul Craig interviewing Security-Assessment.com's Roberto Suggi Liverani and Nick Freeman discuss their research into exploiting Firefox extensions.
These guys were doing a review of a large web application and evaluation of a related firefox extension was in scope.
Skype extensions, search toolbars -- all those extensions that people routinely install into their browsers, well, it turns out a lot of them are buggy as hell and these two have figured out how to exploit these little suckers, and at best guess, there's around 30 million boxes out there vulnerable to the extension bugs they've identified.
Public satellite imagery yields a wealth of intelligence...5 days 17 hours ago
Awesome feature track this week. Check it out here!5 days 17 hours ago
Special guests The Grugq, Singe, Charl and Andrew...1 week 6 days ago
Pwnage! Malware! Cats and dogs living together!1 week 6 days ago
All your herp derps are belong to RPTs...3 weeks 6 days ago
- Love the Das Efx tribute.
11 weeks 5 hours ago
- LOL so no comment by Adobe's
12 weeks 1 day ago
- Welcome back, great stuff as
14 weeks 5 days ago
- AEDs are very accurate and
21 weeks 1 day ago
- I did see that after we
21 weeks 3 days ago
- Great podcast, a small
22 weeks 2 days ago
- Peck of pickled peppers? We
25 weeks 22 hours ago
- Link to Sophail: Applied
27 weeks 6 days ago
- Fixed. I got autocorrected...
30 weeks 1 hour ago
- it's jduck, not duck
30 weeks 3 hours ago