Completed
Example Crossdomain.xml File
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Bypass Surgery - Abusing Content Delivery Networks
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Matthew Bryant (mandatory)
- 3 Content Delivery Networks
- 4 What happened?
- 5 A Divided Penetration Testing Scope
- 6 SRV Record Enumeration
- 7 subbrute - Internal Network Assessment
- 8 NOERROR?
- 9 Server Trust
- 10 Search for Cross Domain Proxy
- 11 SSRF tools
- 12 Access to the Web Server's localhost
- 13 Access to Internal Network Hardware
- 14 SSRF Questions
- 15 What's an origin?
- 16 Differences between JavaScript and Flash
- 17 Example Crossdomain.xml File
- 18 The Check
- 19 FlowPlayer Bypass #1 - The Bypass
- 20 Full Exploit Flow
- 21 Bypassing HTTP Content Security Policy
- 22 Remediation
- 23 Future Security Research