https://zyan.scripts.mit.edu/presentations/toorcon2015.pdf <https://zyan.scripts.mit.edu/presentations/toorcon2015.pdf> (presentation) https://zyan.scripts.mit.edu/blog/sniffly/ <https://zyan.scripts.mit.edu/blog/sniffly/> (blog)
This tool manages to track which sites a user has visited before by finding out if they have HSTS set for that site. Pretty cool demonstration of how information can leak. Yoav
_______________________________________________ websec mailing list websec@ietf.org https://www.ietf.org/mailman/listinfo/websec