re: Homographs, Attack! VIEW POST


Last year I had fun with apples safari and mail:
tᴏ.com vs vs tᴑ.com

This ended up in CVE-2017-7106 and CVE-2017-7152

I wrote about this in

Additionally I built a "live js injection reverse proxy" for demonstration purposes on https://ṫ

It's not dirty on your screen, its a special T and it works.

code of conduct - report abuse