loading...

Discussion on: Homographs, Attack!

Collapse
opaukstadt profile image
Oliver Paukstadt

Last year I had fun with apples safari and mail:
tᴏ.com vs to.com vs tᴑ.com

This ended up in CVE-2017-7106 and CVE-2017-7152

I wrote about this in
blog.to.com/phishing-with-an-apple...

Additionally I built a "live js injection reverse proxy" for demonstration purposes on https://ṫo.com

It's not dirty on your screen, its a special T and it works.

Collapse
logan profile image
Logan McDonald Author

Nice! I love the blog post.