The Age of Universal XSS
Рет қаралды 49,311
Күн бұрынIn August 1996, Internet Explorer joined the JavaScript security scene after they added JScript. During this era from around 1996-2000, tons of bugs were found what we would call today "Universal Cross-site Scripting". I find this word confusing, but looking back at the history, we can try to make sense of it.
Jabadoo Security Hole in Explorer 4.0: seclists.org/bugtraq/1997/Oct/85
Aleph One on Jabadoo: seclists.org/bugtraq/1997/Oct/87
Georgi Guninski "IE can read local files": seclists.org/bugtraq/1998/Sep/47
Georgi's Resume (HIRE HIM!): j.ludost.net/resumegg.pdf
"Cross-frame security policy": seclists.org/bugtraq/2000/Jan/93
Episode 01 - First JS Bug: • The Same Origin Policy...
Episode 02 - Three JS Security Researcher: • The Three JavaScript H...
Episode 03:
00:00 - Intro to the "Age of Universal XSS"
01:16 - JavaScript Security in Netscape 1996
01:52 - JScript Vulnerability in Internet Explorer
03:38 - Georgi Guninski: IE can read local files (1998)
05:12 - Who is Georgi Guninski?
06:36 - Georgi Guninski: IE 5 circumventing cross-frame security policy
09:41 - David Ross from Microsoft about Georgi
10:16 - "Cross-Frame" Browser Bugs
11:17 - Universal Cross-Site Scripting
12:15 - Outro
=[ ❤️ Support ]=
→ per Video: / liveoverflow
→ per Month: / @liveoverflow
=[ 🐕 Social ]=
→ Twitter: / liveoverflow
→ Instagram: / liveoverflow
→ Blog: liveoverflow.com/
→ Subreddit: / liveoverflow
→ Facebook: / liveoverflow
@lucho9011 Жыл бұрын
This series of historic web vulnerabilities is amazing
@asailijhijr Жыл бұрын
The real reason there must never be a time machine.
@Techsplosion Жыл бұрын
I understand nothing about coding or anything but this guy still entertains me.
@ZelenoJabko Жыл бұрын
Zis ist Hans!
@damejelyas Жыл бұрын
Lol
@learnfirst-1 Жыл бұрын
Same here bro
@JoeyRH Жыл бұрын
this is a great series! I love the historical look at vulnerabilities
@motbus3 Жыл бұрын
Thanks for sharing these videos. It gives a super importa view ln modern technologies and all the craziness involved
@krusic22 Жыл бұрын
Didn't know they still had Windows 95 in the year "19997".
@thecrazzxz3383 Жыл бұрын
Lmaooo
@davidhcefx Жыл бұрын
I think he meant 13337
@rainerzufall4268 Жыл бұрын
Ich habe heute deinen Stream mit John gesehen und bin sehr beeindruckt. Ich danke dir, dass du deine Zeit spendest um KZfaq Videos zu erstellen und dein Wissen zu teilen.
@Wyvernnnn Жыл бұрын
The early age of browser security or lackthereof :)
@stephan3199 Жыл бұрын
Amazing series!
@damejelyas Жыл бұрын
God damn, these are legends , the last hack was insane .
@zanarxhy Жыл бұрын
i really apreciate your help with dowloanding this software
@chrizzzly_hh Жыл бұрын
Wieder ein grandioses video. Ich bin gespannt wenn wir die spannende zeit mit csrf und xss auf myspace ankommen (durch samys grandiosen wurm). Und firsheep, womit man im wep lan per firefox plugin automatisch in anderen social networks eingeloggt war. Herrliche zeit. 😅
@Haxel0rd Жыл бұрын
I miss these good old times very much..
@wildcodedeveloper5632 Жыл бұрын
I may be more interested in how they discovered these vulnerabilities at the time. Presumably they have a good understanding of the operating principle of the browser framework or the operating method of JavaScript.
@rogirwin Жыл бұрын
Microsoft didn't have any brower security at this time. There was ActiveX after all. That's remote code execution by design!
@0xAnomaly Жыл бұрын
Nice series. Takes you back in time. Kinda reminds you why we are still the white hats. Even tho there are millions to be made on dark side, but we still choose the light, bad salary and imposter syndrome.
@TilmanBaumann Жыл бұрын
I rememeber the times. Took two bloody decades to more or less clean up that mess. Seemed hopeless. And I'm still not convinced it was all worth it.
@niki3352 Жыл бұрын
What do you think about making a video that debates the use of modern anti cheat software (such as Riot Vanguard) with regards to security? When it got introduced I read a lot of cricism online about how it could be used to hack your computer, and I wonder how realistic or how practical this really is.
@seifelsallamy620 Жыл бұрын
It is rare that I have never attempt to look into it. But I believe that it will not be so rare in future. Because many PC apps are chromium based one CVE and all got the hit. And mobile apps can have internal browsers and I believe IOT as well are potential targets to UXSS. I think I have even heard about a browser based operating system O_o.
@JohnR436 Жыл бұрын
Wat
@Techsplosion Жыл бұрын
‘Most of you know what reflected or stored XSS is’ I’m sorry but I have no idea what on earth that is
@Wyvernnnn Жыл бұрын
He has good playlists you can check out about xss, it’s important stuff
@Techsplosion Жыл бұрын
Yeah he probably does, but I’d still have no idea with my incredible(ly bad) memory
@toriyono8018 Жыл бұрын
♥️
@BlackHermit Жыл бұрын
This is the kind of history they should be teaching in
@michaelince7998 Жыл бұрын
Nice
@capability-snob Жыл бұрын
The opener cap is a security grant, and if the designers of the DOM API had thought in these terms, we would have avoided these vulnerabilities. It's painful to think that we went down the wrong path (in SOP), and there's no sign of turning back.
@bluesquare23 Жыл бұрын
Every piece of technology is a fix for some other problem we've gotten ourselves into. In my opinion we should've just stayed in the trees.
@mfaizsyahmi Жыл бұрын
the race for market share between MS and Netscape led to this. And the amorphous amoeboid blob that is W3C was left far behind to catch up.
@FilippsBlog Жыл бұрын
great
@RGT. Жыл бұрын
👽
@chandler-barry Жыл бұрын
awesome work, instant sub from me
@MADhatter_AIM Жыл бұрын
Where did you find such an old image of windows, to install in a vm ? ps : very interesting information, currently doing my own research.
@gladiusso Жыл бұрын
By digging far enough, anyone can find one
@madghostek3026 Жыл бұрын
I don't understand one thing, in the race condition bug, what's the point of opening a third window that refers back to the 2nd one (that is being loaded)? doesn't the javascript code in img tag already have access to the old DOM?
@0xwxe663 Жыл бұрын
Fact everything change on it keep on changing
@gibbz00 Жыл бұрын
What can a website do to protect against a unversal xss which is vulnerability of the browser?
@NateLevin Жыл бұрын
I am pretty sure that the camera is vertically compressed a bit - oops! Great video nonetheless.
@asailijhijr Жыл бұрын
Loading another website makes a phishing attack simpler. Especially if the login page is well-designed for use with a screen-reader.
@CielMC Жыл бұрын
1:10 caption said 19997
@horaciozini5446 Жыл бұрын
No shit is real! I cant believe it!!
@AZEMBadlen Жыл бұрын
It bothers me that your hair is cut out of frame. I still love your videos, keep it up.
@ZucchiZ Жыл бұрын
Hello Win95 long time no see
@threeMetreJim Жыл бұрын
You could use an alert box in a similar way (race condition?, although it only worked maybe 60% of the time) to allow an outlook/outlook express message with active content to open a new independent browser window (then you could continue opening more and more, or redirect to some dodgy site,etc)... Used it for annoying some people at a place I once worked (2002-2004 vintage). 😈
@Raren789 Жыл бұрын
You could do Elliott's father from Mr robot cosplay, you look similar
@neon_Nomad Жыл бұрын
Bump
@bipinmaharjan4090 Жыл бұрын
Ggs
@unknownworld8238 Жыл бұрын
1:05 *...because in 19997...'
@untaggedbeatz Жыл бұрын
you motivate me to hack mate ty
@anon_y_mousse Жыл бұрын
I still wish we could just start over, wipe out HTML, CSS and JS and use something totally new. Design an all-in-one language that's clean, consistent and intended from the start to be secure. JavaScript has become an absolute nightmare and these days hardly anyone writes their code by hand or from scratch. HTML always was garbage and hyper-redundant. CSS is actually the closest of the three components to perfection, it just needs some tweaking. But if they were all one language, it'd be a lot easier.
@Akronymus_ Жыл бұрын
Sooo, LISP?
@ClayMurray8 Жыл бұрын
Even if you have something new. You can't not support HTML and CSS and JS. There's millions or billions of websites using it right now. And you don't have to get rid of any of that to make a language that is more secure and combines layout and presentation. Just make a compiler that compiles to HTML css and JS which is exactly what plenty of tools already do. Plus with web assembly, you can begin to write code for a website with nearly _any_ language.
@ES-cf4ph Жыл бұрын
I don't really understand what's the problem with HTML and CSS though.
@HonestAuntyElle Жыл бұрын
HTML is great. but hard agree with CSS and JS. it'd be interesting to see the box model redeveloped from scratch.
@charlesbenca5357 Жыл бұрын
wipe out html and css, but keep javascript because nowadays that's a good language
@personal3314 Жыл бұрын
Mate put the episode numbers in your titles
@Jm7wtf Жыл бұрын
As more vulnerabilities was found, website now is much more secured, which means am I too late to learn cyber security🤔
@epicm999 Жыл бұрын
No, because once you get to the modern cybersecurity, you realize you speedran everything that took decades to figure out.
@shivpratapsingh2084 Жыл бұрын
First comment
@gladiusso Жыл бұрын
Who?
@gladiusso Жыл бұрын
Asked
@shivpratapsingh2084 Жыл бұрын
@@gladiusso The
@shivpratapsingh2084 Жыл бұрын
@@gladiusso Invisible
@shivpratapsingh2084 Жыл бұрын
@@gladiusso Femal
@Gobillion160 Жыл бұрын
no one cares make more minecraft videos
@LiveOverflow Жыл бұрын
That’s the spitit
@bluesquare23 Жыл бұрын
Lolz
@Gobillion160 Жыл бұрын
@@LiveOverflow lol glad you saw my comment