Web Cache Exploitation: Advanced Techniques for Static Path Deception and Cache Key Confusion

Learn advanced web cache exploitation techniques in this 36-minute Black Hat conference presentation that introduces powerful new methods for bypassing security limitations. Explore Static Path Deception and discover how to compromise application confidentiality in environments using Nginx behind Cloudflare and Apache behind CloudFront with default configurations. Master Cache Key Confusion to exploit URL parsing inconsistencies in major platforms like Microsoft Azure Cloud, enabling arbitrary cache poisoning and denial of service capabilities in OpenAI and other platforms. Watch a live demonstration combining Cache Key Confusion with an open redirect vulnerability to execute cross-domain JavaScript code by modifying static file responses. Gain access to an open-source vulnerability detection tool and hands-on lab environment to practice cache exploitation techniques while learning a comprehensive methodology for identifying and exploiting URL and HTTP parsing discrepancies.