Show HN: Exploiting Slack's video embeds to achieve E2EE communication

Category: security

Tags: slack, e2ee, encryption, proof-of-concept, typescript

Score: 5.3/10 (Innovation: 7, Technical: 6, Documentation: 4, Utility: 4)

This project exploits Slack's video embed block to implement end-to-end encrypted communication, using browser crypto APIs and openpgpjs. It presents an innovative approach to embedding key exchange and encryption within a non-standard Slack feature. While technically interesting, it remains a niche proof-of-concept with minimal documentation and limited practical utility.

Target audience: security researchers

Repository: https://v1c.rocks/log/exploiting-slack-video/ · TypeScript

View on Hacker News