Attacking with HTML5

[Nytro]

Attacking with HTML5

By, Lavakumar Kuppan

Attack and Defense Labs - Offensive & Defensive Security Research

October 18, 2010

Introduction:

HTML5 is redefining the ground rules for future Web Applications by providing a rich set of new features and by extending existing features and APIs. HTML5 Security is still an unexplored region because HTML5 features are not yet adopted by web applications (apart from experimental support) and it is assumed that until that happens the end users have nothing to worry about.

This paper would prove this assumption wrong by discussing a range of attacks that can be carried out on web users ‘right now’ even on websites that do not support or intend to support HTML5 in the near future. Browser vendors have been trying to outdo each other in supporting the latest features defined in the HTML5 spec. This has exposed the users of these browsers to the attacks that would be discussed in this paper.

The initial sections of this paper cover attacks and research that have been published by me and other researchers earlier this year. The latter sections covers attacks that are completely new and exclusive.

The list of attacks covered:

1)Cross?site Scripting via HTML5
2)Reverse Web Shells with COR

3)Clickjacking via HTML5

a.Text?field Injection
b.IFRAME Sandboxing
4)HTML5 Cache Poisoning

5)Client?side RFI
6)Cross?site Posting
7)Network Reconnaissance

a.Port Scanning
b.Network Scanning
c.Guessing user’s Private IP

8)HTML5 Botnets

a.Botnet creation
i.Reaching out to victims
ii.Extending execution life?time
b.Botnets based attacks
i.DDoS attacks
ii.Email spam
iii.Distributed Password Cracking

Download:

http://www.exploit-db.com/download_pdf/17258

[qbert]

check out: d0z.me