align-toparrow-leftarrow-rightbackbellblockcalendarcamerachatcheckchevron-downchevron-leftchevron-rightchevron-small-downchevron-small-leftchevron-small-rightchevron-small-upchevron-upcircle-with-crosscrosseditemptyheartfacebookfullheartglobegoogleimagesinstagramlocation-pinmagnifying-glassmailmoremuplabelShape 3 + Rectangle 1outlookpersonplusImported LayersImported LayersImported Layersshieldstartwitteryahoo

Hacking with Unicode

Tweetdeck was XSSed using unicode in June 2014. If you want to understand how these kinds of attacks work, you should really come see this talk. 

If you think you know how unicode is handled in JavaScript, server-side code and databases, you should come see this talk.

If you don't care about unicode, you really need to see this talk.

Hacking with Unicode
This presentation explores common mistakes made by programmers when dealing with Unicode support and character encodings on the Web. Foreach mistake, I will explain how to fix/prevent it, but also how it could possibly be exploited.

Speaker: Mathias Bynens is a Belgian web standards freak. He likes HTML, CSS, JavaScript, Unicode, performance, and security. At Opera Software he’s a member of the Developer Relations team.

Join or login to comment.

  • Andreas Dreyer H.

    Will the presentation be put out for further study?

    June 27, 2014

  • Øystein Monsrud A.

    Blir det servert mat?

    1 · June 23, 2014

    • Øystein Monsrud A.

      Meetupet varer i 3 timer uten mat ikke sant?

      June 26, 2014

    • Erlend O.

      Det varer nok ikke i 3 timer. Det er bare et foredrag :)

      June 26, 2014

  • Erlend O.

    Jepp. Men han var i Oslo den datoen, og hadde mulighet. Det blir en liten trøst for oss som ikke får dratt på konferansen.

    2 · June 12, 2014

  • Ståle P.

    Kræsjer dessverre med OWASP AppSec EU :(

    June 12, 2014

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy