BEGIN:VCALENDAR VERSION:2.0 PRODID:Data::ICal 0.24 BEGIN:VEVENT DESCRIPTION: 'Title: Your Clocks Have Ears — Timing-Based Browser-Based Local\n Network Port Scanner\n When: Saturday\, Aug 12\, 16:30 - 16:5 0 PDT\n Where: Caesars Forum - Forum - 105\,135\,136 - Track 1 - [1]Map\ n\n SpeakerBio:Dongsung “Donny” Kim \, IT-Security Expert at Securit y\n Office part of Truesec\n Dongsung (Donny) Kim is an IT-Security ex pert at Security Office part\n of Truesec. Their software interests vary widely from frontend to\n DevSecOps\, with research interests spanning from reverse engineering\n to web security. Equipped with both professio nal and academic\n experience\, they want to reconcile two seemingly opp osite ideas:\n understanding user-facing software problems without compr omising\n security.\n\n Bluesky: @kidi.ng\n Discord: kiding\n\n Tw itter: [2]@@kid1ng\n\n Description:\n What can a website do? So many t hings these days. But\, have you ever\n considered that it can port scan your LAN? It will fingerprint you\n with pinpoint precision and uncover hidden internal devices. Surely\, a\n browser wouldn't allow that?\n\n With this presentation\, I will introduce a short primer on\n timing-b ased\, browser-based port scanning using Fetch. Based on this\n primer\, I will discuss three techniques that can scan open ports on\n the local host\, a NAT router’s presence on the LAN\, and open ports of\n the cl ients on the LAN. A demo of the proof of concept exploit will be\n provi ded\, with closing remarks on possible mitigation strategies.\n\n REFERE NCES\n\n [1] [3]https://blog.nem.ec/2020/05/24/ebay-port-scanning/ [2] [ 4]https://www.bleepingcomputer.com/news/security/list-of-well-known-web-si tes-that-port-scan-their-visitors/\n [3] [5]https://www.crunchbase.com/o rganization/threatmetrix [4] [6]https://coveryourtracks.eff.org/learn\n [5] [7]https://web.archive.org/web/20060813034434/[8]http://www.spidynamic s.com/assets/documents/JSportscan.pdf\n [6] [9]https://github.com/Flu1dT eam/PortScanner [7] [10]https://medium.com/tenable-techblog/using-webrtc-i ce-servers-for-port-scanning-in-chrome-ce17b19dd474\n [8] [11]https://ww w.incolumitas.com/2021/01/10/browser-based-port-scanning/\n [9] [12]http s://docs.google.com/document/d/1a8sUFQsbN5uve7ziW61ATkrFr3o9A-Tiyw8ig6T3pu A/edit\n [10] [13]https://developer.chrome.com/articles/cors-rfc1918-fee dback/\n [11] [14]https://wicg.github.io/local-network-access/\n\n '\n \n 1. #CaesarsForumBR\n 2. https://twitter.com/@kid1ng\n 3. https:// blog.nem.ec/2020/05/24/ebay-port-scanning/\n 4. https://www.bleepingcomp uter.com/news/security/list-of-well-known-web-sites-that-port-scan-their-v isitors/\n 5. https://www.crunchbase.com/organization/threatmetrix\n 6 . https://coveryourtracks.eff.org/learn\n 7. https://web.archive.org/web /20060813034434/\n 8. http://www.spidynamics.com/assets/documents/JSport scan.pdf\n 9. https://github.com/Flu1dTeam/PortScanner\n 10. https://m edium.com/tenable-techblog/using-webrtc-ice-servers-for-port-scanning-in-c hrome-ce17b19dd474\n 11. https://www.incolumitas.com/2021/01/10/browser- based-port-scanning/\n 12. https://docs.google.com/document/d/1a8sUFQsbN 5uve7ziW61ATkrFr3o9A-Tiyw8ig6T3puA/edit\n 13. https://developer.chrome.c om/articles/cors-rfc1918-feedback/\n 14. https://wicg.github.io/local-ne twork-access/\n\n\n DTEND:20230812T235000Z DTSTART:20230812T233000Z LOCATION:DC - Caesars Forum - Forum - 105\,135\,136 - Track 1 SUMMARY:Your Clocks Have Ears — Timing-Based Browser-Based Local Network Port Scanner END:VEVENT END:VCALENDAR