HTTP Desync Attacks: Request Smuggling Reborn

Автор: Black Hat

Загружено: 2020-03-17

Просмотров: 32049

Описание:

HTTP requests are traditionally viewed as isolated, standalone entities. In this session, I'll introduce techniques for remote, unauthenticated attackers to smash through this isolation and splice their requests into others, through which I was able to play puppeteer with the web infrastructure of numerous commercial and military systems, rain exploits on their visitors, and harvest over $70k in bug bounties.

By James Kettle

Full Abstract & Presentation Materials: https://www.blackhat.com/eu-19/briefi...

HTTP Desync Attacks: Request Smuggling Reborn

Доступные форматы для скачивания:

Скачать видео mp4

Информация по загрузке:

Скачать аудио mp3

Похожие видео

Novel HTTP/1 Request Smuggling/Desync Attacks with James Kettle

Novel HTTP/1 Request Smuggling/Desync Attacks with James Kettle

Практические атаки с использованием контрабанды HTTP-запросов от @defparam #NahamCon2020

Практические атаки с использованием контрабанды HTTP-запросов от @defparam #NahamCon2020

albinowax - HTTP Desync Attacks: Smashing into the Cell Next Door - DEF CON 27 Conference

albinowax - HTTP Desync Attacks: Smashing into the Cell Next Door - DEF CON 27 Conference

DEF CON 30 - James Kettle - Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling

DEF CON 30 - James Kettle - Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling

Breaking the x86 Instruction Set

Breaking the x86 Instruction Set

Cracking the Lens: Targeting HTTP's Hidden Attack-Surface

Cracking the Lens: Targeting HTTP's Hidden Attack-Surface

HTTP Request Smuggling & AWS - Sink @ HackTheBox

HTTP Request Smuggling & AWS - Sink @ HackTheBox

Implementing the Lessons Learned From a Major Cyber Attack

Implementing the Lessons Learned From a Major Cyber Attack

HTTP Request Smuggling - False Positives

HTTP Request Smuggling - False Positives

HTTP Request Smuggling Attack Explained // Untangling the HTTP Desync Attack

HTTP Request Smuggling Attack Explained // Untangling the HTTP Desync Attack

HTTP/2: The Sequel is Always Worse

HTTP/2: The Sequel is Always Worse

k20 - Attacking Secondary Contexts in Web Applications - Sam Curry

k20 - Attacking Secondary Contexts in Web Applications - Sam Curry

От потерь на фронте до перебоев с интернетом | Что происходило в 2025-м (English subtitles)

От потерь на фронте до перебоев с интернетом | Что происходило в 2025-м (English subtitles)

Лабораторная работа: контрабанда HTTP/2-запросов с помощью инъекции CRLF

Лабораторная работа: контрабанда HTTP/2-запросов с помощью инъекции CRLF

ИИ съел весь интернет, глава Microsoft в панике, арест за ИИ-краба

ИИ съел весь интернет, глава Microsoft в панике, арест за ИИ-краба

How the Best Hackers Learn Their Craft

How the Best Hackers Learn Their Craft

Request smuggling - do more than running tools! HTTP Request smuggling bug bounty case study

Request smuggling - do more than running tools! HTTP Request smuggling bug bounty case study

HTTP Desync Attack Explained With Paper

HTTP Desync Attack Explained With Paper

Client-side desync vulnerabilities - a breakthrough in request smuggling techniques

Client-side desync vulnerabilities - a breakthrough in request smuggling techniques

HTTP/2: The Sequel is Always Worse - James Kettle (albinowax)

HTTP/2: The Sequel is Always Worse - James Kettle (albinowax)