Web Cache Entanglement: Novel Pathways to Poisoning - James Kettle (albinowax)

preview_player
Показать описание

Caches are woven into websites throughout the net, discreetly juggling data between users, and yet they are rarely scrutinized in any depth. In this session, James will show you how to remotely probe through the inner workings of caches to find subtle inconsistencies, and combine these with gadgets to build majestic exploit chains.
  1. PortSwigger
  2. black hat usa
  3. black hat 2020
  4. james kettle
  5. albinowax
  6. portswigger research
Рекомендации по теме
Web Cache Entanglement: 0:50:55

Web Cache Entanglement: Novel Pathways to Poisoning - James Kettle (albinowax)

Web Cache Entanglement: 0:39:21

Web Cache Entanglement: Novel Pathways to Poisoning

Web Cache Entanglement 0:39:21

Web Cache Entanglement Novel Pathways to Poisoning

$750 Bounty for 0:00:21

$750 Bounty for Cache Poisoning Allows Stored XSS | Bug Bounty 2023

Portland State CS 0:11:28

Portland State CS 495 595 04b Web Cache Poisoning Level

Web Cache Poisoning 0:01:04

Web Cache Poisoning

Using web cache 0:03:11

Using web cache poisoning to exploit unsafe handling of resource imports

BSidesMCR 2018: Practical 0:46:25

BSidesMCR 2018: Practical Web Cache Poisoning: Redefining 'Unexploitable' by James Kettle

Practical Web Cache 0:43:55

Practical Web Cache Poisoning Redefining 'Unexploitable'

What is Web 0:01:05

What is Web Cache Poisoning | OWASP Top 10 | Bug Bounty Service LLC

WEB CACHE POISONING 0:07:47

WEB CACHE POISONING FOR BEGINNERS + GIVEAWAY(closed)

Portland State CS 0:58:58

Portland State CS 495 595 Web Cache Poisoning PortSwiggerLevel

web cache poisoning 0:50:23

web cache poisoning and web cache deception attack explain

Web cache poisoning 0:21:13

Web cache poisoning via Parameter cloaking Lab#09

Web Cache Deception 0:00:57

Web Cache Deception POC | Bug Bounty POC | Lazy Pentester

Web Cache Deception 0:10:36

Web Cache Deception Attack

Web cache poisoning 0:03:07

Web cache poisoning with an unkeyed cookie

How to use 0:04:42

How to use Param Miner to detect fat GET cache poisoning

Open Graph Hijacking 0:01:05

Open Graph Hijacking Using Web Cache Poisoning

Web cache poisoning 0:03:48

Web cache poisoning via an unkeyed query string (Video solution)

Web cache poisoning 0:04:22

Web cache poisoning

Targeted web cache 0:05:32

Targeted web cache poisoning using an unknown header | PortSwigger Lab #4

Web cache poisoning 0:02:13

Web cache poisoning via a fat GET request (Video solution)

h@ckivitycon 2020: Cached 0:30:30

h@ckivitycon 2020: Cached and Confused: Web Cache Deception in the Wild

Комментарии
Автор

@albinowax you're the most awesome hacker. And your talks are always top notch.

tanveeraalam
Автор

26:14 the callback parameter was cache key and both ROR & CDN caches are splitting the parameters with & and ; . So why didn't the CDN notice that the callback parameter is different from the UTM_content parameter. So the CDN cache key for callback didn't even notice that the same cache key parameter is repeating second time?
Why it wasn't, like
callback(keyed).

Mersal-tqlm
Автор

What the hell? Cloudflare of all services doesn't think the unkeyed port param cache poisoning is an issue? What drugs are they taking, leaving in a vulnerability like that? I'm honestly baffled. Anyway thanks for the research man, this is some truly top quality stuff

potatoonastick
Автор

Very helpful, like always) thank you so much

andreys
Автор

Awesome! thanks James!

A gif is needed to be made from 42:40 :D

shamimi
Автор

thanks you so much to share your great knowledge with us thanks you sir

SuperTechrobin
Автор

To let's go kick the cache with method of albinowax

ahmedrazaidrisi