Hide a malicious JavaScript library in a PNG image and tweet it, then include it in a vulnerable website by exploiting a XSS bypassing its Content-Security-Policy (CSP). (more…)

a toy function to sort js arrays with sql-like syntax - order-by.js... (more…)

This is a short post intended to show the many different ways on how to safely access deeply nested values in JavaScript. The following examples all do the same thing and while they may vary in… (more…)

This presentation was recorded at GOTO Amsterdam 2016 http://gotoams.nl Alexandru Dima - Enjoys Programming, Challenges, Helping Others & Drinking Beer ABSTR...

We've got used to writing JavaScript for common UI element functionality like accordions, tooltips, text truncation, etc. But as HTML and CSS got new features and older browsers were no longer supported, we've been able to use less and less JavaScript for... (more…)