What is Detectify?
postmessage
App Security
Writeups
How to
Crowdsource
Account hijacking using “dirty dancing” in sign-in OAuth-flows
bug bounty
Detectify Crowdsource
Frans Rosén
OAuth
postmessage
XSS
Popular tags
XSS
Detectify Crowdsource
Frans Rosén
bug bounty
Detectify
Frans Rosén
postmessage
Slack
Hacking Slack using postMessage and WebSocket-reconnect to steal your precious token
February 28, 2017
AddThis
Mathias Karlsson
postmessage
postMessage XSS on a million sites
December 15, 2016
Get research and tips from Detectify security experts and the Crowdsource hacker community
Subscribe to the Detectify Monthly Round-up
Mathias Karlsson
postmessage
The pitfalls of postMessage
December 8, 2016