Attacking Modern Web Technologies with App Caches, Service Workers, Post Message and S3 Policies

The chapter discusses a past talk on attacking modern web technologies, focusing on components like app caches, service workers, post message, and S3 policies. It highlights the speaker's insights from the 2018 talk, which are still valuable today, showcasing the longevity and importance of the information shared. The conversation delves into triggering XSS on Dropbox user content using XML files, exploitation of legacy accounts, and potential attack vectors involving service workers, emphasizing security risks and manipulation techniques.

Transcript

Play full episode

The AI-powered Podcast Player

Save insights by tapping your headphones, chat with episodes, discover the best highlights - and more!

Get the app

Episode 75: *Rerun* of The OG Bug Bounty King - Frans Rosen

Critical Thinking - Bug Bounty Podcast

Attacking Modern Web Technologies with App Caches, Service Workers, Post Message and S3 Policies

The AI-powered Podcast Player

Episode 75: Rerun of The OG Bug Bounty King - Frans Rosen