JSFoo 2012 Pune

Pune gets its own JSFoo

Ahamed Nafeez


The wicked JSON

Submitted Nov 21, 2011

The objective of the talk will be making secure JSON communication and the proper way of handling the same. Most of the attacks using improperly coded JSON, are shown and the methods to overcome them are addressed.


Owing to its fast nature, JSON is being rapidly adopted by all kinds of developers nowadays as a data-interchange format. Developers often make the mistake of sending JSON the naive way, and also improperly handling them in the Client side code.

An attacker can make use of this to target the website and he can do cross-domain content extraction, XSS and some more attacks.

Speaker bio

Security Researcher and speaker at Security Conferences.



{{ gettext('Login to leave a comment') }}

{{ gettext('Post a comment…') }}
{{ gettext('New comment') }}
{{ formTitle }}

{{ errorMsg }}

{{ gettext('No comments posted yet') }}