Completed
Orange Tsai
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Take Your Path Normalization Off and Pop 0days Out
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Orange Tsai
- 3 Agenda
- 4 Polyglot URL path
- 5 Why path normalization
- 6 Can you spot the vulnerability?
- 7 Nginx off-by-slash fail
- 8 How to find this problem?
- 9 Spring Oday - CVE-2018-1271
- 10 Bonus on Spark framework
- 11 Rails Oday - CVE-2018-3760
- 12 For the RCE lover
- 13 URL path parameter
- 14 When reverse proxy meets...
- 15 How danger it could be?
- 16 Uber bounty case
- 17 Bynder RCE case study
- 18 Inconsistency to ACL bypass
- 19 Misa New Password
- 20 Misconfiguration to auth bypass
- 21 Log injection to RCE
- 22 Private bounty case
- 23 Amazon RCE case study
- 24 Path normalization bug leads to ACL bypass
- 25 Seam Feature
- 26 Code reuse bug leads to Expression Language injection
- 27 EL blacklist bypassed leads to Remote Code Execution
- 28 Mitigation
- 29 Summary