SirGod Posted September 3, 2014 Report Share Posted September 3, 2014 Cuprins:A1 - CORS Attacks & CSRFA2 - ClickJacking, CORJacking and UI exploitsA3 - XSS with HTML5 tags, attributes and eventsA4 - Web Storage and DOM information extractionA5 - SQLi & Blind EnumerationA6 - Web Messaging and Web Workers injectionsA7 - DOM based XSS with HTML5 & MessagingA8 - Third party/Offline HTML Widgets and GadgetsA9 - Web Sockets and AttacksA10 - Protocol/Schema/APIs attacks with HTML5Download:https://media.blackhat.com/bh-eu-12/shah/bh-eu-12-Shah_HTML5_Top_10-WP.pdf Quote Link to comment Share on other sites More sharing options...