🦠 COVID-19 hacked our plans, so we're going online this year!

talk

Top JS Exploits And How To Prevent Them

Tim Doherty
Tim Doherty
Software Architect, Procore Technologies

In our modern world of frameworks and libraries developers are often shielded by default from vulnerabilities, but what if you’re using vanilla JS? Do acronyms like XSS, XSSI, and CSRF keep you up at night? Did you know that features of the language itself can be exploited by an attacker? Have you ever wondered how your favorite framework keeps you safe, but haven’t lifted the lid and looked at the JavaScript underneath?

Let’s dive hands-on into some common attacks using plain JavaScript, demonstrate how they work, and learn how to prevent them in the wild.


Tim Doherty is a Software Architect at Procore Technologies, where he's tirelessly championing Test Driven Development and sustainable agile in a large Rails/React codebase.

He runs the Santa Barbara JavaScript Meetup and speaks at events and conferences.

When he's not geeking out over tech, Tim is an avid SCUBA diver and underwater photographer whose work has appeared in museum collections and the New Yorker Magazine.