Skip to content

CSK CSS Scripting Kit

I’m currently in the process of developing a CSS Scripting Kit called “CSK”, this kit will allow you to perform scripting actions that normally would be reserved for Javascript. I believe the standards that browser manufacturers are adopting create major security holes and if they don’t either create new security policies to adapt to this or remove the features altogether we are going to have a major problem in future.

I hope creating this kit will demonstrate to them that they need to take their security policies seriously and hopefully show them that even simple features can be used to create security holes. Stay tuned to this blog for future updates of CSK and I shall be releasing my research soon.

Share and Enjoy:
  • Digg
  • del.icio.us
  • Slashdot
  • StumbleUpon

Comments 10

  1. Dennison Uy wrote:

    It would be nice if you tell us what these “scripting” actions are (mouseovers? lightboxes? buttons?). I’m looking forward to seeing what CSK can do though.

    Posted 27 Aug 2007 at 3:11 pm
  2. Gareth Heyes wrote:

    Yeah mouseover,storage,history reading,network scanning,positioning etc I will be expanding it and it will use PHP + CSS, I shall of course keep the code as simple as possible as always.

    Posted 27 Aug 2007 at 4:03 pm
  3. Dennison Uy wrote:

    Awesome! Can’t wait to see it. Cheers.

    Posted 29 Aug 2007 at 9:08 am
  4. Gareth Heyes wrote:

    I’m currently working on the storage side now, I can send data with CSS, I’m just trying to figure out a way to receive it without refreshing the page.

    Posted 29 Aug 2007 at 9:12 am
  5. Dennison Uy wrote:

    Wow you can actually do that with CSS? Is this a standard across all browsers?

    Posted 29 Aug 2007 at 9:15 am
  6. Gareth Heyes wrote:

    Not sure yet, it looks like there might be a way. The kit will be released as Firefox only to start with but I imagine there will be plenty of potential for other browsers as they adopt more CSS 3 standards.

    Posted 29 Aug 2007 at 9:22 am
  7. mars wrote:

    Is there a way to have a proper look at your CSK code? (The Kit itself)

    Posted 15 Feb 2008 at 2:33 pm
  8. mars wrote:

    What I am asking is… have you released it? If so where because I’d love to play around with it.

    Posted 15 Feb 2008 at 2:34 pm
  9. Gareth Heyes wrote:

    @mars

    It’s not released yet because it isn’t very polished but I’ll provide you with the source if you like:-

    http://www.businessinfo.co.uk/labs/css_scripting_kit/csk.zip

    Enjoy :)

    Posted 15 Feb 2008 at 2:44 pm
  10. mars wrote:

    Much appreciated! You are a prince amongst men!

    Posted 18 Feb 2008 at 6:36 am

Post a Comment

Your email is never published nor shared. Required fields are marked *

Comment spam protected by SpamBam