#NahamCon2024

IT's 3.55 I am on now. Just Awesome and great talk. Keep up the great work, Ben! You are giving gems to the community. Thanks man.

That was super cool. Amazing work, Lupin. And the presentation was awesome. Thank you, Nahamsec!

Amazing presentation, whoever does the marketing/graphic design for Lupin is the 🐐

Thank you so mutch Lupin for this awesome presentation .
Ben thx for sharing , grateful for it my Friend

Thank you Lupin for this great presentation and Ben for sharing these great presantations with us!

Amazing presentation, thank you Lupin ;-)

that was a pretty cool Finding!
especially the widespread vuln sounds interesting

What was the impact of the last vulnerability? Attacker could bruteforce secrets of users via csrf?

The slides are very fun to watch

Great talk!

Thank you, Ben!

Nice bro...@Nahamsec keep it up

This is a good dude 🥂

Hell yeah

11:06 this tool sounds really useful. Is there a link for it?

How exactly is the SOP bypassed in the last vulnerability?

#NahamCon2024

SOP doesnt allow you to send requests cross-sites. In SOP there is the letter O, which stands for Origin. An origin is not a site, those are two different concepts. And by definition, SOP does not protect from CSRF. It protects from COW (Cross Origin Writes). I like the energy and the enthusiasm, we need that in the field, but if you want to present something and don't want to sound like you dont know what you're talking about, I would suggest you do your homework before. Thank you for sharing anyway.

With all the ads around i've vomited... After a few minutes go full screen... I dont even understand why sponsor are needed on a Twitch stream but meh

Bro stop telling « n’importe quoi »
Graphql is a data structure where php is web programming language 😅