Skip to content
This repository

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP

Demo of phishing attack on the native HTML5 full screen API.

branch: master
readme.md

HTML5 Fullscreen API Attack

Copyright 2012 Feross Aboukhadijeh (http://feross.org). More info: http://feross.org/html5-fullscreen-api-attack/

Features

  • Emulates UI of:
    • current browser
    • current OS
    • handles arbitrary screen resolutions (fluid UI images)
  • Attack works whether user starts out in fullscreen mode or not. In fact, it's even more convincing when user is already fullscreened.
  • Attack preloads all images in background so that UI doesn't flash when images are load

License

MIT

Something went wrong with that request. Please try again.