Скачать
I Am Whoever I Say I Am: Infiltrating Identity Providers Using a 0Click Exploit
Автор: Black Hat
Загружено: 2022-11-28
Просмотров: 6298
Описание:
To begin with, I will cover the foundational use-case for IAM solutions and some past in the wild attacks (ITW) attacks with the extent of their impact. Continuing, I will present the approach I took with the audit including the challenges and pitfalls that I was faced with and how I overcame them. The result concluding with an unauthenticated remote code execution as root by chaining multiple vulnerabilities on a very popular IAM solution used by several Fortune 500 companies and government organizations.
Presented by Steven Seeley
Full Abstract & Presentation Materials: https://www.blackhat.com/us-22/briefi...
Доступные форматы для скачивания:
Скачать видео mp4
-
Информация по загрузке:
