Browser Security Lab: Cookies, CORS, CSP, and the Attack You Missed

Break and fix a small app while learning the browser security rules that actually matter.

Mixed · 2 hours · December 19, 2026 · June 3, 2026

#browser-security#cors#csp

Description

section.description

This is a practical browser security session, not a slide deck of acronyms. Participants will exploit a small intentionally vulnerable app, then fix it using secure cookies, SameSite rules, CORS boundaries, content security policy, and safer form flows.

The format keeps the focus on cause and effect: change one header, reload, observe what the browser allows or blocks, then document the tradeoff. It is ideal for developers who touch login, dashboards, forms, APIs, or embedded widgets.

support.yml

member support

1 supporter

Community members who want this event to happen.

Support

Propose

proposal.yml

Proposal Details

Status

Proposed

Difficulty

Mixed

Duration

2 hours

Target date

December 19, 2026

Created

June 3, 2026

Ubuntu TechHive

Browser Security Lab: Cookies, CORS, CSP, and the Attack You Missed

Description

member support

Proposal Details

Back to Event Proposals

Browser Storage Fundamentals: Cookies, Local Storage, IndexedDB, and Privacy