JSFoo Coimbatore 2019

JSFoo Coimbatore 2019

On building faster, performant and secure web applications

About JSFoo Coimbatore

JSFoo Coimbatore is a single-day conference with talks, Birds of Feather (BOF) sessions and speaker connect sessions. The conference will be held on Friday, 5 July, at Dr.G.R.Damodaran College of Science, Coimbatore.

JSFoo Coimbatore features talks on:

  1. How to secure your web applications by identifying vulnerabilities.
  2. Leveraging Web Application Vulnerabilities for Resourceful Intelligence Gathering.
  3. Case studies of performance improvements and using the modular approach to building front-ends.
  4. Node.js and good engineering practices such as logging, debugging and integrating security into your applications.
  5. WebSDK: switching between service providers on the fly.

Speakers from Hotstar, Uber, HackerRank, Chained Ventures, Tezify, Appsecco, Gramener, and Centre for Internet and Society (CIS) will present case studies and experiential talks which will help JavaScript, full stack and front-end engineers among partcipants to build faster, secure and performant we applications.

JSFoo Coimbatore 2019 sponsors:

Gold Sponsor


Bronze Sponsor

Hasura ThoughtWorks

Community Sponsor

PSG Software Technologies

Venue Partner

Dr GR Damodaran College of Science

For inquiries on tickets and sponsorships, call the JSFoo Coimbatore team on 7676332020 or write to us on info@hasgeek.com

Hosted by

JSFoo is a forum for discussing UI engineering; fullstack development; web applications engineering, performance, security and design; accessibility; and latest developments in #JavaScript. Follow JSFoo on Twitter more
Karan Saini

Karan Saini


Leveraging Web Application Vulnerabilities for Resourceful Intelligence Gathering

Submitted May 4, 2019

This talk aims to introduce the audience how web application vulnerabilities can be leveraged for self-sufficient information and intelligence gathering.


The talk seeks to provide the audience with a starting point for where and how resourceful information and intelligence can be found and collected, particularly, through discovery and exploitation of security flaws in web applications. The talk will provide real life examples of security flaws through which sensitive information could have been disclosed, and how at times - owing largely to the interconnected nature of such information - it could be pieced together with other data to glean useful intelligence about a particular individual or group. Lastly, the talk will touch upon how developers can avoid baking these issues into their services and applications, while also discussing protective operational security measures that end-users can adopt as a best practice.

Talk overview:

  • Introduction:

    • Intelligence and Investigations
    • Case Studies
    • Web Application Vulnerabilities and Intelligence Gathering
  • Scoping and Execution:

    • Targeting Techniques
    • Types of Prevalent Flaws
    • Attacking Techniques
    • Slides with Examples
  • Defense:

    • Best Practices for Developers
    • Operational Security for Users


A basic understanding of open source intelligence, web application vulnerabilities, and the use of digital information in aiding investgative processes.

Speaker bio

Karan Saini is a security researcher and program officer at the Centre for Internet and Society. Karan has been a practitioner of responsible vulnerability disclosure for four years, and has an avid interest in uncovering different ways through which new technologies and protocols can impact user privacy.



{{ gettext('Login to leave a comment') }}

{{ gettext('Post a comment…') }}
{{ gettext('New comment') }}
{{ formTitle }}

{{ errorMsg }}

{{ gettext('No comments posted yet') }}