Coursera Cuts Jobs Despite $100M Revenue Milestone

A New Era of SSRF - Exploiting URL Parser in Trending Programming Languages

A New Era of SSRF - Exploiting URL Parser in Trending Programming Languages

Black Hat via YouTube Direct link

Mitigations

15 of 17
Previous
Next

15 of 17

Mitigations

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

A New Era of SSRF - Exploiting URL Parser in Trending Programming Languages

Automatically move to the next video in the Classroom when playback concludes
  1. 1 Intro
  2. 2 Agenda
  3. 3 What is SSRF?
  4. 4 Protocol Smuggling in SSRF
  5. 5 Quick Fun Example
  6. 6 Fuzzer Architecture
  7. 7 URL Parsing issues
  8. 8 URL Components(RFC 3986)
  9. 9 Big Picture
  10. 10 NodeJS Unicode Failure
  11. 11 GLibc NSS Features
  12. 12 Abusing IDNA Standard
  13. 13 Abusing URL Parsers - Case Study
  14. 14 Protocol Smuggling - Case Study
  15. 15 Mitigations
  16. 16 Summary
  17. 17 Further works

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.