Li Jiantao

HITCON CMT 2023 · 2023

What You See IS NOT What You Get: Pwning Electron-based Markdown Note-taking Apps

Markdown rendering in Electron apps opens a surprising attack surface — what looks like plain text can become code execution.