Client-side hacking techniques

Using form hijacking to bypass CSP

Password managers are great. It’s the first thing I recommend to my non-tech friends. Apart from being more secure than reusing passwords, it’s also very convenient to have your password filled in by the browser extension. However, the auto-fill mechanism also comes...