Explore new exploit techniques leveraging Unicode normalization behavior to bypass URL security filters and enable domain impersonation in this 40-minute Black Hat conference talk. Delve into the HostSplit vulnerability, which allows attackers to create URL strings parsed as one hostname but resolved as another, moving beyond visual spoofing in internationalized domain names. Learn about vulnerable and non-vulnerable systems, testing methodologies, and best practices for mitigation. Presented by Jonathan Birch, this talk covers introduction, agenda, HostSplit explanation, vulnerability assessment, testing procedures, and recommended security practices.
HostSplit - Exploitable Antipatterns in Unicode Normalization
Overview
Syllabus
Introduction
Agenda
HostSplit
Whats vulnerable
Whats not vulnerable
How to test
Best practices
Taught by
Black Hat
Related Courses
-
Application Security
-
Unicode Vulnerabilities That Could Byte You
-
What You See Is Not What You Get - When Homographs Attack
-
Breaking Parser Logic - Take Your Path Normalization Off and Pop 0days Out
-
Red Team Apocalypse - Beau Bullock and Derek Banks
-
How to Leak a 100-Million-Node Social Graph in Just One Week
