DEFCON Breakdown: Wildcards, Passkeys, and DOM-Clobbering and More (Ep. 149)

Episode 149: In this episode of Critical Thinking - Bug Bounty Podcast The DEFCON videos are up, and Justin and Joseph talk through some of their favorites.

Follow us on twitter at: https://x.com/ctbbpodcast
Got any ideas and suggestions? Feel free to send us any feedback here: [email protected]
Shoutout to   / realytcracker   for the awesome intro music!


====== Links ======
Follow your hosts Rhynorater, rez0 and gr3pme on X:
https://x.com/Rhynorater
https://x.com/rez0__
https://x.com/gr3pme


====== Ways to Support CTBBPodcast ======
Hop on the CTBB Discord at https://ctbb.show/discord!

We also do Discord subs at $25, $10, and $5 - premium subscribers get access to private masterclasses, exploits, tools, scripts, un-redacted bug reports, etc.

You can also find some hacker swag at https://ctbb.show/merch!


====== Resources ======
Unicode surrogates conversion to (simplified) replacement characters
https://lab.ctbb.show/research/unicod...

Prompt. Scan. Exploit - Ai's Journey Through Zero-Days And A Thousand Bugs
   • Prompt. Scan. Exploit - Ai's Journey Throu...  

Breaking into thousands of cloud based VPNs with 1 bug
   • DEF CON 33  - Breaking into thousands of c...  

Examining Access Control Vulnerabilities in GraphQL
   • DEF CON 33 - Examining Access Control Vuln...  

Smart Bus Smart Hacking
   • DEF CON 33 - Smart Bus Smart Hacking:  Fre...  

Passkeys Pwned
   • Passkeys Pwned: Turning WebAuthn Against I...  

Bypassing Intent Destination Checks, LaunchAnyWhere Privilege Escalation
   • DEF CON 33 -  Bypassing Intent Destination...  

Invoking Gemini Agents with a Google Calendar Invite
   • DEF CON 33 - Invoking Gemini Agents with a...  

AutoDetection & Exploitation of DOM Clobbering Vuln at Scale
   • DEF CON 33 - AutoDetection & Exploitation ...  

TheHulk
https://github.com/jackfromeast/TheHulk

Smart Devices, Dumb Resets
   • DEF CON 33 - Smart Devices, Dumb Resets:Te...  

Mac PRT Cookie Theft
   • DEF CON 33 -  Mac PRT Cookie Theft & Entra...  

====== Timestamps ======
(00:00:00) Introduction
(00:10:10) Prompt. Scan. Exploit
(00:23:52) Breaking into thousands of cloud based VPNs with 1 bug
(00:33:25) Access Control Vulns in GraphQL Vulns, Smart Bus Hacking, & Passkeys Pwned
(00:44:10) Bypassing Intent Destination Checks & Invoking Gemini Agents
(00:57:08) DOM Clobbering, Mac PRT Cookie Theft, & Smart Devices, Dumb Resets