SamSuka
LiveOverflow
LiveOverflow

patreon


Attacking Language Server JSON RPC

While auditing a VSCode Extension + Language Server I noticed something interesting. This turned into the research question "can we attack the extension from the browser?". After a bit of preliminary research I decided to do it again on stream, and eventually made this video. This is how security research can look like.

Full Live Stream: https://www.youtube.com/watch?v=jc7S6TtLK_c

Attacking Language Server JSON RPC

More Creators