awesome-browser-security
github.com/cezary-sec/awesome-browser-security ↗A curated list of awesome browser security learning material.
151
GitHub Stars
56
Curated Resources
5
Categories
3 hours ago
Last Refreshed
1. General introductions2. Security challenges and corresponding mitigations3. Attacks on browsers4. Misc5. Contributors
Use this list with your AI agent
Add the Context Awesome MCP server to Claude, Cursor, or any MCP client, then ask:
"Show me extensions resources from awesome-browser-security"
Installation instructions →What's inside
2. Security challenges and corresponding mitigations
- An Evaluation of the Google Chrome Extension Security ArchitectureExtensions
- A Spectre-shaped WebSpectre
- Certificate Transparency in Google Chrome: Past, Present, and FutureTransport security
- Content Security Policy 1.0Cross Site Scripting (XSS)
- Content Security Policy Level 2Cross Site Scripting (XSS)
- COOP and COEP sections in the HTML Living StandardCross Site Leaks (XS-Leaks)
3. Attacks on browsers
- Awesome browser exploit
collection of various materials on browser exploitation.
- Browser security YT playlist
- Chrome Browser Exploitation, Part 1: Introduction to V8 and JavaScript Internals
- Chrome Browser Exploitation, Part 2: Introduction to Ignition, Sparkplug and JIT Compilation via TurboFan
- In-the-Wild Series: Chrome Exploits
- OffensiveCon22 - Samuel Gross and Amanda Burnett - Attacking JavaScript Engines in 2022
Samuel Gross and Amanda Burnett - Attacking JavaScript Engines in 2022
4. Misc
1. General introductions
- Chrome University
YT playlist of introductory talks on various aspects of Chromium development. Talks on security, browser's anatomy, mojo, and browser's process are must-have.
- Chromium security website
lots of useful documents that will paint you a good picture of this highly nuanced domain.
- Cure53 Browser Security White PaperSecurity assessments
- High Performance Browser Networking
free book on browser networking.
- HTTP State TokensKey concepts
interesting statement on the tragedy of cookies and how it could be solved.
- https://www.rfc-editor.org/info/rfc6265Key concepts
5. Contributors
Showing a sample of 56 resources. View the full list on GitHub →