My personal static home page. https://viljami.io
- Built using Svelte
- Hosted on AWS S3 + CloudFront, deployed with Terraform.
npm install
npm run dev
terraform init
terraform apply
npm run deploy
A simple demo of phishing by abusing the browser autofill feature
Home Page: https://anttiviljami.github.io/browser-autofill-phishing/
License: MIT License
My personal static home page. https://viljami.io
npm install
npm run dev
terraform init
terraform apply
npm run deploy
Like it needs the user to start typing first then he chooses a value from the auto fill drop menu ... Why can't we auto fill and submit the values when the page just load ?
Cheers - DigiP
Please see arrju's jsfiddle here.
Credit card numbers are just as vulnerable as any.
See here.
This posts the following:
"form": {
"cardholder": "Fake Card",
"cc_cvv": "",
"cc_month": "11",
"cc_number": "123456789012345",
"cc_year": "2017"
},
I guess that was to be expected, but I certainly think this should be included with the demo.
This problem has been known for many years: https://yoast.com/autocomplete-security/. You might want to acknowledge that this is nothing new, and link to that blog post.
This is just a FYI issue to notify that you were added to the curated awesome-humane-tech in the 'Awareness' category, and - if you like that - are now entitled to wear our badge:
By adding this to the README:
[![Awesome Humane Tech](https://raw.githubusercontent.com/humanetech-community/awesome-humane-tech/main/humane-tech-badge.svg?sanitize=true)](https://github.com/humanetech-community/awesome-humane-tech)
Hey, great demonstration.
It would be better if you can add some browser-specific details.
This is a simple demonstration of form fields hidden from the user, but will be filled anyways when using the browser form autofill feature, which poses a security risk for users, unaware of giving their information to the website.
In Safari, it will tell you what fields it will fill, you can also customise that. In Chrome that's not the case.
Still triggers in Chrome Version 68.0.3440.106 (Official Build) (64-bit) on Linux.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.