├── .github ├── AboutBlankBrave.png ├── AboutBlankSafari.png ├── BraveVersion.png ├── maliciousHeadersNames.png └── maliciousHeadersValues.png ├── .gitignore ├── LICENSE ├── README.md ├── attempts.md ├── deliverable ├── paper.pdf ├── paperSourceCode │ ├── images │ │ ├── AboutBlankBrave.png │ │ ├── AboutBlankSafari.png │ │ ├── BraveReportedVulnerabilities.png │ │ ├── BraveVersion.png │ │ ├── BrowserFamilyMonthlyUsageShare.png │ │ ├── BrowserStructure.png │ │ ├── IsolationChrome.png │ │ ├── SOPTabs.png │ │ ├── SandboxesChrome.png │ │ ├── URL.png │ │ ├── WebBrowserMarketShare.png │ │ ├── bookmarkPage.png │ │ ├── clobberingAttempt.png │ │ ├── corsWithServiceWorkers.png │ │ ├── corsWithWebWorkers.png │ │ ├── maliciousBookmark.png │ │ ├── maliciousHeadersNames.png │ │ ├── maliciousHeadersValues.png │ │ └── serviceAndWebWorker.png │ └── main.tex └── proposal.pdf ├── playground ├── cachedFrameDoesntDetachOpener.html ├── corsByPassing.html ├── corsByPassingWithFetch.html ├── corsByPassingWithXMLHTTPRequest.html ├── corsBypassingWithWebWorkers.html ├── corsBypassingWithWorkerAndServiceWorker │ ├── corsBypassingWithWebWorkers.html │ └── sw.js ├── dragAndDropFramework.html ├── dragAndDropMaliciousCode.html └── safariTryByPassSOPWithEmbeddedIFrame.html └── uxssDB.md /.github/AboutBlankBrave.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/.github/AboutBlankBrave.png -------------------------------------------------------------------------------- /.github/AboutBlankSafari.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/.github/AboutBlankSafari.png -------------------------------------------------------------------------------- /.github/BraveVersion.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/.github/BraveVersion.png -------------------------------------------------------------------------------- /.github/maliciousHeadersNames.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/.github/maliciousHeadersNames.png -------------------------------------------------------------------------------- /.github/maliciousHeadersValues.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/.github/maliciousHeadersValues.png -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | *.swp 2 | *.swa 3 | 4 | /browser-laptop 5 | -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/README.md -------------------------------------------------------------------------------- /attempts.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/attempts.md -------------------------------------------------------------------------------- /deliverable/paper.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paper.pdf -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/AboutBlankBrave.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/AboutBlankBrave.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/AboutBlankSafari.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/AboutBlankSafari.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/BraveReportedVulnerabilities.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/BraveReportedVulnerabilities.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/BraveVersion.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/BraveVersion.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/BrowserFamilyMonthlyUsageShare.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/BrowserFamilyMonthlyUsageShare.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/BrowserStructure.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/BrowserStructure.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/IsolationChrome.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/IsolationChrome.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/SOPTabs.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/SOPTabs.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/SandboxesChrome.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/SandboxesChrome.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/URL.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/URL.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/WebBrowserMarketShare.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/WebBrowserMarketShare.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/bookmarkPage.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/bookmarkPage.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/clobberingAttempt.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/clobberingAttempt.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/corsWithServiceWorkers.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/corsWithServiceWorkers.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/corsWithWebWorkers.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/corsWithWebWorkers.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/maliciousBookmark.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/maliciousBookmark.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/maliciousHeadersNames.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/maliciousHeadersNames.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/maliciousHeadersValues.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/maliciousHeadersValues.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/images/serviceAndWebWorker.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/images/serviceAndWebWorker.png -------------------------------------------------------------------------------- /deliverable/paperSourceCode/main.tex: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/paperSourceCode/main.tex -------------------------------------------------------------------------------- /deliverable/proposal.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/deliverable/proposal.pdf -------------------------------------------------------------------------------- /playground/cachedFrameDoesntDetachOpener.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/playground/cachedFrameDoesntDetachOpener.html -------------------------------------------------------------------------------- /playground/corsByPassing.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/playground/corsByPassing.html -------------------------------------------------------------------------------- /playground/corsByPassingWithFetch.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/playground/corsByPassingWithFetch.html -------------------------------------------------------------------------------- /playground/corsByPassingWithXMLHTTPRequest.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/playground/corsByPassingWithXMLHTTPRequest.html -------------------------------------------------------------------------------- /playground/corsBypassingWithWebWorkers.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/playground/corsBypassingWithWebWorkers.html -------------------------------------------------------------------------------- /playground/corsBypassingWithWorkerAndServiceWorker/corsBypassingWithWebWorkers.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/playground/corsBypassingWithWorkerAndServiceWorker/corsBypassingWithWebWorkers.html -------------------------------------------------------------------------------- /playground/corsBypassingWithWorkerAndServiceWorker/sw.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/playground/corsBypassingWithWorkerAndServiceWorker/sw.js -------------------------------------------------------------------------------- /playground/dragAndDropFramework.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/playground/dragAndDropFramework.html -------------------------------------------------------------------------------- /playground/dragAndDropMaliciousCode.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/playground/dragAndDropMaliciousCode.html -------------------------------------------------------------------------------- /playground/safariTryByPassSOPWithEmbeddedIFrame.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/playground/safariTryByPassSOPWithEmbeddedIFrame.html -------------------------------------------------------------------------------- /uxssDB.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AntoineRondelet/uxss-vulnerabilities-research/HEAD/uxssDB.md --------------------------------------------------------------------------------