Edgeguard: Client-side DOM Security - detecting malice - AN Open Framework

No ratings

Presented at owaspapseccalifornia 2018 by

Eoin Keary

Rahim Jina

Abstract :“Project edgeguard” is a open framework that allows you to detect when malicious content (planted in your browser via hacking or client-side malware attacks) results in sensitive user data to be stolen and transmitted to third parties (hackers, cybercrime etc). - Similar to many banking Trojans.Injection and tampering attacks:Malicious content can be placed within a user’s browser whilst using your web application by virtue of a client-side security weakness/vulnerability or certain types of browser malware (e.g. Man in the Browser attacks).edgeguard is a “Zero-footprint” library that aims to detect exfiltration of sensitive user data from the browser.