Top JS Exploits And How To Prevent Them

Tim Doherty
Tim Doherty
Software Architect, Procore Technologies

In our modern world of frameworks and libraries developers are often shielded by default from vulnerabilities, but what if you’re using vanilla JS? Do acronyms like XSS, XSSI, and CSRF keep you up at night? Did you know that features of the language itself can be exploited by an attacker? Have you ever wondered how your favorite framework keeps you safe, but haven’t lifted the lid and looked at the JavaScript underneath?

Let’s dive hands-on into some common attacks using plain JavaScript, demonstrate how they work, and learn how to prevent them in the wild.