← All talks

CSP Analysis - Attacking XSS Mitigation

BSides London · 201418:23280 viewsPublished 2014-05Watch on YouTube ↗
Speakers
Frederic Mohr
Tags
CategoryTechnical
TopicWeb AppSec
StyleTalk
About this talk
This talk will give a short introduction into the "Content Security Policy" HTTP header. We will take a look at the known attack types and find out if implementing it is really worth the hassle.

Related talks

44:04
Inside Magecart: Their Web Skimming Tactics Revealed
BSides London · 2019
14:04
XS Leaks: Client Side Attacks In A Post XSS World
BSides London
20:35
A Talk About Cross Site Scripting XSS In 2023 The Mitigated Unmitigated Vulnerability Val Resh
BSides London
31:50
Elevate Your SSRF Game: Weaponize Internal DNS Records To Expose Hidden Endpoints
BSides London · 2025
45:24
It's the Little Things
BSides PDX · 2018
1:03:19
Bug Bounty on Steroids
BSides Ahmedabad