Attacking With WebView2 Applications

Cyber Castrum LLP Cyber Castrum LLP

Cyber Castrum LLP

Strong|Safe|Secure

发布日期: 2022年6月28日
+ 关注

According to Microsoft, Microsoft Edge WebView2 control allows you to embed web technologies(HTML, CSS, and JavaScript) in your native apps.

WebView2 technology can be used to create an executable that can communicate with web applications similarly to a browser. This is meant to improve desktop applications and provide them with additional capabilities for interaction with web applications.

Advantage

The main advantage of using WebView2 for attackers is the rich functionality it provides when phishing for credentials and sessions.

Injecting JavaScript

Using a built-in WebView2 function, JavaScript can be easily injected into any website. This means you can load up a target website and inject malicious JavaScript (e.g. keylogger).

Bypass 2FA

WebView2 also provides built-in functionality to extract cookies. This allows an attacker to extract cookies after the user authenticates into the legitimate website. This technique removes the need of having to spin up Evilginx2 or Modlishka but the obvious trade-off is that the user must execute the binary and authenticate.

For Further Reference

https://mrd0x.com/attacking-with-webview2-applications/

要查看或添加评论,请登录

Cyber Castrum LLP的更多文章

社区洞察

其他会员也浏览了