anchor.fm/dayzerosec/episodes/Attack-of-the-CUPS-and-Exploiting-Web-Views-via-HSTS-e2p1gds
Preview meta tags from the anchor.fm website.
Linked Hostnames
13- 51 links toanchor.fm
- 2 links topod.spoti.fi
- 2 links tosupport.spotify.com
- 1 link todayzerosec.com
- 1 link toopen.spotify.com
- 1 link toovercast.fm
- 1 link topca.st
- 1 link topodcasts.apple.com
Thumbnail
Search Engine Appearance
Attack of the CUPS and Exploiting Web Views via HSTS by Day[0]
In this week's episode, we cover an attack utilizing HSTS for exploiting Android WebViews and abusing YouTube embeds in Google Slides for clickjacking. We also talk about the infamous CUPS attack, and the nuances that seem to be left behind in much of the discussion around it. Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/257.html [00:00:00] Introduction [00:01:30] Exploiting Android Client WebViews with Help from HSTS [00:09:08] Using YouTube to steal your files [00:18:43] Attacking UNIX Systems via CUPS, Part I Podcast episodes are available on the usual podcast platforms: -- Apple Podcasts: https://podcasts.apple.com/us/podcast/id1484046063 -- Spotify: https://open.spotify.com/show/4NKCxk8aPEuEFuHsEQ9Tdt -- Google Podcasts: https://www.google.com/podcasts?feed=aHR0cHM6Ly9hbmNob3IuZm0vcy9hMTIxYTI0L3BvZGNhc3QvcnNz -- Other audio platforms can be found at https://anchor.fm/dayzerosec You can also join our discord: https://discord.gg/daTxTK9
Bing
Attack of the CUPS and Exploiting Web Views via HSTS by Day[0]
In this week's episode, we cover an attack utilizing HSTS for exploiting Android WebViews and abusing YouTube embeds in Google Slides for clickjacking. We also talk about the infamous CUPS attack, and the nuances that seem to be left behind in much of the discussion around it. Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/257.html [00:00:00] Introduction [00:01:30] Exploiting Android Client WebViews with Help from HSTS [00:09:08] Using YouTube to steal your files [00:18:43] Attacking UNIX Systems via CUPS, Part I Podcast episodes are available on the usual podcast platforms: -- Apple Podcasts: https://podcasts.apple.com/us/podcast/id1484046063 -- Spotify: https://open.spotify.com/show/4NKCxk8aPEuEFuHsEQ9Tdt -- Google Podcasts: https://www.google.com/podcasts?feed=aHR0cHM6Ly9hbmNob3IuZm0vcy9hMTIxYTI0L3BvZGNhc3QvcnNz -- Other audio platforms can be found at https://anchor.fm/dayzerosec You can also join our discord: https://discord.gg/daTxTK9
DuckDuckGo
https://anchor.fm/dayzerosec/episodes/Attack-of-the-CUPS-and-Exploiting-Web-Views-via-HSTS-e2p1gdsAttack of the CUPS and Exploiting Web Views via HSTS by Day[0]
In this week's episode, we cover an attack utilizing HSTS for exploiting Android WebViews and abusing YouTube embeds in Google Slides for clickjacking. We also talk about the infamous CUPS attack, and the nuances that seem to be left behind in much of the discussion around it. Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/257.html [00:00:00] Introduction [00:01:30] Exploiting Android Client WebViews with Help from HSTS [00:09:08] Using YouTube to steal your files [00:18:43] Attacking UNIX Systems via CUPS, Part I Podcast episodes are available on the usual podcast platforms: -- Apple Podcasts: https://podcasts.apple.com/us/podcast/id1484046063 -- Spotify: https://open.spotify.com/show/4NKCxk8aPEuEFuHsEQ9Tdt -- Google Podcasts: https://www.google.com/podcasts?feed=aHR0cHM6Ly9hbmNob3IuZm0vcy9hMTIxYTI0L3BvZGNhc3QvcnNz -- Other audio platforms can be found at https://anchor.fm/dayzerosec You can also join our discord: https://discord.gg/daTxTK9
General Meta Tags
22- titleAttack of the CUPS and Exploiting Web Views via HSTS by Day[0]
- templateloggedOut
- charsetutf-8
- X-UA-CompatibleIE=edge,chrome=1
- cache-controlno-cache, must-revalidate, post-check=0, pre-check=0
Open Graph Meta Tags
10- og:titleAttack of the CUPS and Exploiting Web Views via HSTS by Day[0]
- og:site_nameSpotify for Creators
- og:imagehttps://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_episode400/1589585/1589585-1727683094449-3c6cbc4622ec7.jpg
- og:image:secure_urlhttps://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_episode400/1589585/1589585-1727683094449-3c6cbc4622ec7.jpg
- og:image:width1200
Twitter Meta Tags
12- twitter:titleAttack of the CUPS and Exploiting Web Views via HSTS by Day[0]
- twitter:site@spotifycreator
- twitter:descriptionIn this week's episode, we cover an attack utilizing HSTS for exploiting Android WebViews and abusing YouTube embeds in Google Slides for clickjacking. We also talk about the infamous CUPS attack, and the nuances that seem to be left behind in much of the discussion around it. Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/257.html [00:00:00] Introduction [00:01:30] Exploiting Android Client WebViews with Help from HSTS [00:09:08] Using YouTube to steal your files [00:18:43] Attacking UNIX Systems via CUPS, Part I Podcast episodes are available on the usual podcast platforms: -- Apple Podcasts: https://podcasts.apple.com/us/podcast/id1484046063 -- Spotify: https://open.spotify.com/show/4NKCxk8aPEuEFuHsEQ9Tdt -- Google Podcasts: https://www.google.com/podcasts?feed=aHR0cHM6Ly9hbmNob3IuZm0vcy9hMTIxYTI0L3BvZGNhc3QvcnNz -- Other audio platforms can be found at https://anchor.fm/dayzerosec You can also join our discord: https://discord.gg/daTxTK9
- twitter:imagehttps://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_episode400/1589585/1589585-1727683094449-3c6cbc4622ec7.jpg
- twitter:cardsummary_large_image
Link Tags
18- alternatehttps://anchor.fm/a121a24/podcast/rss
- alternatehttps://anchor.fm/pod/api/v3/episodes/e2p1gds/oembed?title=Attack%20of%20the%20CUPS%20and%20Exploiting%20Web%20Views%20via%20HSTS%20by%20Day%5B0%5D
- apple-touch-icon-precomposed//d12xoj7p9moygp.cloudfront.net/favicon/favicon-s4p-57x57.png
- apple-touch-icon-precomposed//d12xoj7p9moygp.cloudfront.net/favicon/favicon-s4p-114x114.png
- apple-touch-icon-precomposed//d12xoj7p9moygp.cloudfront.net/favicon/favicon-s4p-72x72.png
Links
65- https://anchor.fm/dayzerosec/episodes/A-Windows-Keyhole-and-Buggy-OAuth-e2roqoc
- https://anchor.fm/dayzerosec/episodes/Attack-of-the-CUPS-and-Exploiting-Web-Views-via-HSTS-e2p1gds
- https://anchor.fm/dayzerosec/episodes/Attacking-Browser-Extensions-and-CyberPanel-e2qhaie
- https://anchor.fm/dayzerosec/episodes/Buggy-Operating-Systems-Are-Coming-to-Town-e2sco8h
- https://anchor.fm/dayzerosec/episodes/Deanonymization-with-CloudFlare-and-Subarus-Security-Woes-e2u1f97