An overview of the recent and major security threats that Iranian government firms and its infrastructure organizations have been facing. Taking a look at the security weaknesses in their technical policies (in design, implementation and service phases); Additionally, the role of utilizing modern defense technologies in Iran's cyber ecosystem, such as data security analysis while in-use (endpoint actions), in-motion (network traffic), and at-rest (data storage). Unveiling lack of the real-time management of security events, efficiency of machine learning, AI and other statistically automated applications for unknown/sophisticated threat pattern analysis/detection and also, the explanation of its requirements against the new generation of cyber attacks.

While CSRF is a server-side problem, DOM-based CSRF issues in the user's browser. An attacker could perform arbitrary requests to a CSRF-protected end-point by modifying it so that the client-side code makes an HTTP request with a valid CSRF token. This could be a form submission or an XHR call. I will substantiate it in a sleight of hand.

A script gadget is a legitimate piece of JavaScript in a page that reads elements from the DOM via selectors and processes them in a way that results in script execution. I will present a novel web attack to bypass mitigation techniques and to explore the severity and prevalence of the underlying vulnerability pattern, then we will briefly apperceive the script gadgets and its different types, we will also utilize Sebastian Lekies's and his team studies regarding 16 popular JavaScript frameworks and libraries, with the focus on the contained script gadgets and mapping the found gadget instances to the affected XSS mitigations and then finally we will report on a large-scale study on the prevalence of the script gadgets in some Iranian web apps.

Fingerprinting is a set of techniques used by websites to detect and track users as they surf the web, these methods range from tracking cookies to more sophisticated device fingerprinting features. This information can be leveraged by malicious and non-malicious parties. Advertisement networks fingerprint and track users to deliver more targeted ads, on the other side, security conscious websites may try to verify users' fingerprints as an additional security check at authentication step. In this talk we will become familiar with current user fingerprinting techniques by looking at both academic methods and those that are actually being used in the wild, we then have a look at how fingerprinting is used in action by both malicious and non-malicious parties and what its common use cases are.

Internet, since the invention, has provided very good utilities for both good and bad users. In 2000s new generation of tools have been introduced for protecting privacy: Anonymous Networks or more generally dark web, which are provided to keep the IP address of the user and servers from all over the world, thus make both invisible. In this talk I will discuss about how criminals work in the dark web. After, I will present the methods which are used by security forces in dark web in order to investigate crimes. Finally I will describe why the situation is better for cyber criminals in Iran.