BloomTech’s Downfall: A Long Time Coming

HTTP Desync Attacks - Request Smuggling Reborn

HTTP Desync Attacks - Request Smuggling Reborn

Black Hat via YouTube Direct link

Intro

1 of 26
Next

1 of 26

Intro

Class Central Classrooms beta

YouTube playlists curated by Class Central.

Classroom Contents

HTTP Desync Attacks - Request Smuggling Reborn

Automatically move to the next video in the Classroom when playback concludes
  1. 1 Intro
  2. 2 Outline
  3. 3 HTTP/1.1 keep-alive, desynchronized
  4. 4 Desynchronizing: the classic approach
  5. 5 Desynchronizing: the chunked approach
  6. 6 Desynchronizing: the TE.CL approach
  7. 7 Methodology
  8. 8 Detecting desync
  9. 9 Confirming desync
  10. 10 Bypassing rules
  11. 11 Bypassing rewrites
  12. 12 Request reflection
  13. 13 Exploring
  14. 14 Involuntary request storage
  15. 15 Harmful responses
  16. 16 Accidental Cache Poisoning
  17. 17 Chaining DOM Problems
  18. 18 Redirects with teeth
  19. 19 Web Cache Poisoning
  20. 20 PayPal Poisoning
  21. 21 Wrapped exploits
  22. 22 Aggressive detection
  23. 23 Source code review
  24. 24 Other sources
  25. 25 Defence
  26. 26 Case Study: Application Load Balancer BHEU EXCLUSIVE

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.