W
Webcam spying with Chrome
tl;dr; Browsers doesn’t handle webcam permissions well enough. Users should be extremely wary about what’s going on in their browser. From a list of 30 bugs…
T
The never ending browser sessions
tl;dr; The concept of session memory is not valid anymore in today’s browsers. Even sessionStorage is not cleared after closing the tab. It’s easily revived…
Abusing The HTML5 Data-URI
After seeing in the previous post how Data-URIs can be used as a mechanism to easily carry malicious code, I’ll elaborate more about the issues it presents.…
T
The Pains and Remedies of Android HTML5
Prologue: I’ve written most of this post some months ago and somehow didn’t publish it. Looking at it now, it’s a good reminder of some of the pains I already…
T
The Promise of Mobile HTML5
Less than a year ago it seemed like HTML5 was going strong. With Facebook and Linkedin adopting the technology to reach most of the screens on the mobile and…
D
Debugging Flash Player on Google Chrome
Just a quick tip in case you missed it. I’ve written previously on how to better develop Flash and Flex on Google Chrome. But, since Chrome is now auto…
D
Developing Flash/Flex on Google Chrome
I find Google Chrome fast startup and multiple processes, a key when developing Flash/Flex applications. And it’s my preferred target browser for stuff other…
H
HTML 5 vs Flash vs SilverLight
This is by no mean a full technical comparison between these technologies, just a chat between 2 geeks. One is a skeptic backend dude 😉 and the other one is…
Encapsulating CSRF attacks inside massively distributed Flash movies - Real world example
Update: Added a sterilized demo and the source code. CSRF (Cross Site Request Forgery) is considered one of the most widely spread exploits in websites today.…
Bug in Internet Explorer security model when embedding Flash
Update: I’ve posted a real world example of this bug being exploited. This one has the same behavior on IE6, IE7 and IE8 betas. I have only tested this with…