HTML 5 Security

In this video series we discuss the common security flaws encountered in HTML5 enabled websites. Our focus is around Cross-Origin communication through postMessage and CORS.

Code Samples Download: Sample Code

 

Part 1: Same Origin Policy Basics

In this video we introduce HTML5 and the Same Origin Policy. If you are already familiar with the SOP, Session Cookies and Authentication you can skip this video and begin on part 2.

Part 2: postMessage Vulnerabilities

In this video we discuss and demonstrate vulnerabilities within insecure HTML5 postMessage implementations.

Part 3: CORS

In this video we introduce Cross Origin Resource Sharing (CORS) and discuss common implementation vulnerabilities.

Get started with Appcheck

No software to download or install.

Contact us or call us 0113 887 8380

Start your free trial

Further Reading

About Appcheck

AppCheck is a software security vendor based in the UK, offering a leading security scanning platform that automates the discovery of security flaws within organisations websites, applications, network and cloud infrastructure. AppCheck are authorized by te Common Vulnerabilities and Exposures (CVE) Program aas a CVE Numbering Authority (CNA)

Put us to the test.
Try AppCheck for free

No software to download or install.
Contact us or call us 0113 887 8380
Start your free trial
Services
Company
Resources
Keep in touch

AppCheck Ltd. is a company registered in England and Wales with company number 06888174

Start your free trial

Simply complete the form and we’ll send you all you need to activate AppCheck and undertake your FREE scan.
Your details
IP Addresses
URLs

Get in touch