XSS (No, the _other_ 'S') - CSSConf EU 2013
Credit is due to Mario Heiderich, et al. for their excellent paper “Scriptless Attacks - Stealing the Pie Without Touching the Sill”, from which I stole much of the attack-based content. Awesome stuff.
Transcript is coming, but for now, please do enjoy the embedded video and slides below:
The video is 29m long, and up on YouTube for your viewing enjoyment.
The slides are up on Speaker Deck (which is awesome), and I actually used Speaker Deck to present the slides from someone else’s laptop since my computer decided not to connect to the conference’s projector. I love you, Speaker Deck!
Coming soon!— Mike West