New Techniques for Split-Second DNS Rebinding

Sdílet
Vložit
  • čas přidán 2. 04. 2024
  • ...In this talk, I will present two new techniques that can be used to achieve reliable, split-second DNS rebinding in Chrome, Edge, and Safari on hosts with IPv6 access, along with a method to bypass Chrome's restrictions on requests to the local network. I will also walk through a real-world attack against a web application resulting in AWS credentials to demonstrate how achievable rebinding attacks can be....
    By: Daniel Thatcher
    Full Abstract and Presentation Materials:
    www.blackhat.com/eu-23/briefi...

Komentáře •

Další v pořadí
Automatické přehrávání
Off The Record - Weaponizing DHCP DNS Dynamic Updates39:50Off The Record - Weaponizing DHCP DNS Dynamic Updates
Off The Record - Weaponizing DHCP DNS Dynamic UpdatesBlack Hat
zhlédnutí 1,6K
Something Rotten in the State of Data Centers40:27Something Rotten in the State of Data Centers
Something Rotten in the State of Data CentersBlack Hat
zhlédnutí 8K
A World-View of IP Spoofing in L4 Volumetric DoS Attacks - and a Call to Enable BCP3828:23A World-View of IP Spoofing in L4 Volumetric DoS Attacks - and a Call to Enable BCP38
A World-View of IP Spoofing in L4 Volumetric DoS Attacks - and a Call to Enable BCP38Black Hat
zhlédnutí 964
🤗Fresh Pizza Brings Joy To Homeless People!🍕🥒 | Don’t Waste Food #funnycat #catmemes #trending00:24🤗Fresh Pizza Brings Joy To Homeless People!🍕🥒 | Don’t Waste Food #funnycat #catmemes #trending
🤗Fresh Pizza Brings Joy To Homeless People!🍕🥒 | Don’t Waste Food #funnycat #catmemes #trendingOscar's Funny World
zhlédnutí 144M
Mom Meets Peter Dinklage..💀00:31Mom Meets Peter Dinklage..💀
Mom Meets Peter Dinklage..💀Peet Montzingo
zhlédnutí 31M
Případ ztracené boty🧐😅 S kýmpak asi volá Neli?😇💕 #staycrazy #random00:11Případ ztracené boty🧐😅 S kýmpak asi volá Neli?😇💕 #staycrazy #random
Případ ztracené boty🧐😅 S kýmpak asi volá Neli?😇💕 #staycrazy #randomLollipopz
zhlédnutí 374K
Problematický Vzestup Zdeňka Pohlreicha17:46Problematický Vzestup Zdeňka Pohlreicha
Problematický Vzestup Zdeňka PohlreichaBige
zhlédnutí 260K
What Everyone Missed About The Linux Hack20:24What Everyone Missed About The Linux Hack
What Everyone Missed About The Linux HackTheo - t3․gg
zhlédnutí 273K
💡 There is a SMARTER way to split your documents for GenAI apps12:07💡 There is a SMARTER way to split your documents for GenAI apps
💡 There is a SMARTER way to split your documents for GenAI appsBitswired
zhlédnutí 773
Google IO 2024 Full Breakdown: Google is RELEVANT Again!27:35Google IO 2024 Full Breakdown: Google is RELEVANT Again!
Google IO 2024 Full Breakdown: Google is RELEVANT Again!Matthew Berman
zhlédnutí 47K
Keynote: Industrialising Cyber Defence in an Asymmetric World41:02Keynote: Industrialising Cyber Defence in an Asymmetric World
Keynote: Industrialising Cyber Defence in an Asymmetric WorldBlack Hat
zhlédnutí 1,1K
This web UI for Ansible is so damn useful!20:07This web UI for Ansible is so damn useful!
This web UI for Ansible is so damn useful!Christian Lempa
zhlédnutí 441K
My Invisible Adversary: Burnout40:39My Invisible Adversary: Burnout
My Invisible Adversary: BurnoutBlack Hat
zhlédnutí 2,5K
The Pool Party You Will Never Forget: New Process Injection Techniques Using Windows Thread Pools35:22The Pool Party You Will Never Forget: New Process Injection Techniques Using Windows Thread Pools
The Pool Party You Will Never Forget: New Process Injection Techniques Using Windows Thread PoolsBlack Hat
zhlédnutí 1,7K
Do NOT Learn Kubernetes Without Knowing These Concepts...13:01Do NOT Learn Kubernetes Without Knowing These Concepts...
Do NOT Learn Kubernetes Without Knowing These Concepts...Travis Media
zhlédnutí 204K
The Black Hat Europe Network Operations Center (NOC) Report38:03The Black Hat Europe Network Operations Center (NOC) Report
The Black Hat Europe Network Operations Center (NOC) ReportBlack Hat
zhlédnutí 964
That One Racoon Be Like:00:12That One Racoon Be Like:
That One Racoon Be Like:Daviddaly10
zhlédnutí 11M
Život se mění ❗️😮‍💨 #komedie #sranda #ekv #shorts00:18Život se mění ❗️😮‍💨 #komedie #sranda #ekv #shorts
Život se mění ❗️😮‍💨 #komedie #sranda #ekv #shortsEmperKingVision
zhlédnutí 397K
BEST SPICY NOODLE EVER01:00BEST SPICY NOODLE EVER
BEST SPICY NOODLE EVERUncle Roger Shorts
zhlédnutí 12M
Problematický Vzestup Zdeňka Pohlreicha17:46Problematický Vzestup Zdeňka Pohlreicha
Problematický Vzestup Zdeňka PohlreichaBige
zhlédnutí 260K
Playing This On Loop ♾️00:27Playing This On Loop ♾️
Playing This On Loop ♾️Red Bull
zhlédnutí 119M
Cooking a wild cactus for a delicious meal 🌵 Listen to "SUE DJ - RAM PAM PAM"00:55Cooking a wild cactus for a delicious meal 🌵 Listen to "SUE DJ - RAM PAM PAM"
Cooking a wild cactus for a delicious meal 🌵 Listen to "SUE DJ - RAM PAM PAM"TheSoul Music Family
zhlédnutí 17M
Konečně další CLASH !! Tiskovka Clash of the Stars 813:47Konečně další CLASH !! Tiskovka Clash of the Stars 8
Konečně další CLASH !! Tiskovka Clash of the Stars 8TeamBrichta
zhlédnutí 117K
Czn Burak En Güzel Bağ Sevgi Midir?01:01Czn Burak En Güzel Bağ Sevgi Midir?
Czn Burak En Güzel Bağ Sevgi Midir?Czn Burak
zhlédnutí 14M