2026-04-25 –, Seminar Room 1
hello! Millions of desktop applications (eg: zoom, steam, & vscode) ship a full Chromium browser with a debug-socket backdoor baked in. I examine how CDP -- the protocol that powers devtools -- creates some err… minor weaknesses in Electron- and MsEdgeWebView2-based software. Live demo included!
<see cref="Abstract" />
hello! I'm a cyber-security apprentice, & keen breaker of things that probably shouldn't be broken. This is my first conference talk, born out of some obsessive Electron-app experimentation, and wondering "hold on, should that be open?"