speaker-photo

Nishaanth Guna

Security Consultant, MDSec
Nishaanth has been in the security consulting industry for the last 7 years and specialize in mobile application security with experience of testing abundance of hybrid and native mobile applications. Apart from application security, he is interested in cloud and vulnerability research. He also has presented in various conferences including Steelcon, PHDays, InCTF, BlueJeans Con amongst others. He has also reported multiple vulnerabilities to Apple, AT&T, Microsoft, NCSC UK. While away from keyboard, he loves to play chess, hike, travel and read about startups and emerging technologies.

 

14:40 - 15:10

20 September 2024 Talks

Breaking Free from Remote Browsers

Browser isolation, also known as remote browsing, has gained prominence in the last few years. Numerous vendors offer browser isolation either as standalone products or integrated solutions within environments. While isolating browser content for remote sessions offers benefits, it isn’t an infallible solution that can thwart all attacks. This talk will delve into the protective features provided by such products and explore how adversaries can breach these boundaries, employing various attacks in environments with RBI (Remote Browser Isolation) protections such as malvertising. drive-by downloads, client-side browser attacks. This talk will show real-life examples of how attackers were able to bypass the defensive mechanisms offered by RBI products.