Completed
Orange Tsai
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Hacking Jenkins
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Orange Tsai
- 3 Outline
- 4 JVM ecosystem report 2018
- 5 Jenkins for hackers
- 6 Common attack vectors
- 7 Past deserialization bugs on Jenkins
- 8 Jenkins remoting 2.55
- 9 Review Java web
- 10 What did Stapler do?
- 11 Routing rules
- 12 URL whitelists by default
- 13 compile-time Meta-Programming
- 14 Root cause analysis
- 15 Prepare the malicious JAR
- 16 Attacking remote Jenkins!
- 17 Survey on Shodan
- 18 Evolution of the exploit
- 19 More reliable exploit chain
