Mario Heiderich [Speaker-Timeline] [Speaker-Links]

Tell us about missing data
Title Conference Tags
Keynote: XSS is dead? It's 2019 and we still don't get it. ThreatCon-2019 - Kathmandu, Nepal
XSS is dead. We just don't get it. ConfidenceKrakow-2018 - Krakow, Poland
An Abusive Relationship with AngularJS – About the Security Adventures with the 'Super-Hero' Framework Nullcon-2016 - goa,india
ToStaticHTML for Everyone! About DOMPurify, Security in the DOM, and Why We Really Need Both Enigma-2016 - san francisco,usa
JSMVCOMFG: TO STERNLY LOOK AT JAVASCRIPT MVC AND TEMPLATING FRAMEWORKS HackInParis-2014 - Paris,France
The innerHTML Apocalypse - How mXSS attacks change everything we believed to know so far OWASPAppSecEU-2013 - Hamburg, Germany
The inner HTML Apocalypse : How MXSS attacks change everything we believed to know so far hackinparis-2013 - Paris,France Security
Got Your Nose! How To Steal Your Precious Data Without Using Scripts Hack In Paris-2012 - Paris, France Security
Got your Nose! How to Steal Your Precious Data Without Using Scripts CONFidence-2012 - Krakow, Poland HTML5
Got Your Nose! How to Steal Your Precious Data Without Using Scripts CaroCon-2012 - Munich, Germany
Clickjacking Protection Under Non-trivial Circumstances CaroCon-2012 - Munich, Germany
Got your Nose! How to Steal Your Precious Data Without Using Scripts TROOPERS-2012 - Heidelberg, Germany Security
Crouching Tiger - Hidden Payload: Security Risks of Scalable Vectors Graphics Confrence-on-computer-communications-security-2011 - Chicago, USA
The Presence and Future of Web Attacks Multi-Layer Attacks and XSSQLI CONfidence-2010 - Krakow,Poland
Dev and blind CONfidenceTwo-2010 - Prague,Czech Republic
Javascript From Hell CONFidence -2009 - Krakow, Poland Security
Javascript From Hell - Advanced Client-Side Injection Techniques Of Tomorrow OWASP Appsec-2009 - Germany Security Deep Knowledge Network Penetration SQL
Malicious Markup - I Thought You Were My Friend - Cycle 3 BruCON-2009 - Brussels, Belgium Security Others Browser