Sebastian Lekies [Speaker-Timeline] [Speaker-Links]

Tell us about missing data
Title Conference Tags
Don't trust the DOM: Breaking XSS mitigations via Script Gadgets RuhrSecBochum-2018 - Bochum, Germany
DON'T TRUST THE DOM: BYPASSING XSS MITIGATIONS VIA SCRIPT GADGETS blackhat-2017 - las vegas,usa
The Unexpected Dangers of Dynamic JavaScript SecuritySymposium-2015 - washington,USA
Client-side protection against DOM-based XSS done right, OWASPAppSecEu-2015 - Amsterdam,Netherlands
CLIENT-SIDE PROTECTION AGAINST DOM-BASED XSS DONE RIGHT (TM) BlackHatAsia-2015 - Marina Bay,Singapore
SESSION IDENTIFIER ARE FOR NOW, PASSWORDS ARE FOREVER - XSS-BASED ABUSE OF BROWSER PASSWORD MANAGERS BlackHatEU-2014 - amsterdam,netherlands
Precise Client-side Protection against DOM-based Cross-Site Scripting usenix-2014 - san diego,usa
CALL TO ARMS: A TALE OF THE WEAKNESSES OF CURRENT CLIENT-SIDE XSS FILTERING BlackHatUS-2014 - las vegas,usa
Relax Everybody: HTML5 Is Securer Than You Think DeepSec-2013 - Vienna,Austria
Eradicating DNS Rebinding with the Extended Same-origin Policy USENIX-2013 - Washington, D.C.
Clickjacking Protection Under Non-trivial Circumstances OWASPAppSecEU-2013 - Hamburg, Germany
Biting the hand that serves you: A closer look at client-side Flash proxies for cross-domain requests 9th Conference on Detection of Intrusions and Malware & Vulnerability Assessment-2012 - Heraklion, Crete, Greece
Got Your Nose! How to Steal Your Precious Data Without Using Scripts CaroCon-2012 - Munich, Germany
Clickjacking Protection Under Non-trivial Circumstances CaroCon-2012 - Munich, Germany
Biting the hand that serves you: A closer look at client-side Flash proxies for cross-domain requests dimva-2011 - Amsterdam,Netherkands