cookies – WindowsTechs.com

Is it possible to trick a user into logging in to a site, then stealing a non HttpOnly cookie that will be set after they log in?

Posted on April 11, 2024 by ETLJ

If a user has already logged in, and then the site sets a non HttpOnly cookie, then it seems possible to trick the user into doing something that would lead to the cookie being stolen.
If the cookie expires after one minute, it seems like … Continue reading Is it possible to trick a user into logging in to a site, then stealing a non HttpOnly cookie that will be set after they log in?→

Cheat on cookie-based queue systems like queue-it by using multiple incognito tabs [closed]

Posted on April 10, 2024 by mosquito87

Systems like queue-it provide solutions "to cope with website traffic congestion by directing visitors to a queue where they can wait until access can be facilitated".
When accessing the website, you are typically redirected to a… Continue reading Cheat on cookie-based queue systems like queue-it by using multiple incognito tabs [closed]→

How Google plans to make stolen session cookies worthless for attackers

Posted on April 3, 2024 by Zeljka Zorz

Google is working on a new security feature for Chrome called Device Bound Session Credentials (DBSC), meant to prevent attackers from using stolen session cookies to gain access user accounts. Session (i.e., authentication) cookies are stored by brows… Continue reading How Google plans to make stolen session cookies worthless for attackers→

Chrome to Fight Cookie Theft With Device Bound Session Credentials

Posted on April 2, 2024 by Ionut Arghire

Google is bringing to Chrome new features to bind browser sessions to the device and protect users against cookie theft.
The post Chrome to Fight Cookie Theft With Device Bound Session Credentials appeared first on SecurityWeek.
Continue reading Chrome to Fight Cookie Theft With Device Bound Session Credentials →

how to send cookies or token in local storage to a remote server using reflected XSS

Posted on March 25, 2024 by Anonymous

I have an XSS vulnerability identified by <script>alert(1);</script> in the url.
So when I put it in the url it gets executed (ex: www.example.com/admin/<script>alert(1);</script> ).
I also tried after loggin in, an… Continue reading how to send cookies or token in local storage to a remote server using reflected XSS→

Does saving the cookie or jwt token in the browser raise a security risk?

Posted on March 22, 2024 by Anonymous

I have an admin screen, once I access it, it asks for login credentials, then after I login, I get a token that is saved under local storage (see screenshot below)

Noting that I am using edge browser in private mode, when I opem a new tab… Continue reading Does saving the cookie or jwt token in the browser raise a security risk?→

Secure access and refresh token handling in a SPA

Posted on March 7, 2024 by tech-ebe

I am trying to figure out how to handle access and refresh tokens securely on the front end in a SPA. After doing a lot of reading, I still have questions/doubts about the proposed solutions I found on the internet.
Basically, the internet… Continue reading Secure access and refresh token handling in a SPA→

Session/cookie expire time, match access token or refresh token from AD?

Posted on March 6, 2024 by ryansan

I am tasked with moving away from implicit flow in a SPA. It is a basic solution consisting of a react SPA and a .net API, on the same domain. This web app is a case management solution that deals with medical data, running in a private ne… Continue reading Session/cookie expire time, match access token or refresh token from AD?→

Lax SameSite and POST (2 minute)

Posted on February 11, 2024 by Johnny

I was going through this link https://medium.com/@renwa/bypass-samesite-cookies-default-to-lax-and-get-csrf-343ba09b9f2b to understand CSRF using samesite. Does that mean that the LAX+POST issue has been resolved by Chrome, which means tha… Continue reading Lax SameSite and POST (2 minute)→

Double Submit Cookie Bypass

Posted on February 10, 2024 by Johnny

I am trying to work on an example for my class on how double submit cookie works and how attackers can bypass it
The idea i have is I have two domain att.com and victim.com. The login functionality on victim.com creates the session and als… Continue reading Double Submit Cookie Bypass→