Loading…
44CON 2019 has ended
Wednesday, September 11 • 18:45 - 19:15
Owning The Cloud Through SSRF

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
With how many apps are running in the cloud, hacking these instances becomes easier with a simple vulnerability due to unsanitized user input. In this talk, we’ll discuss a number of different methods that helped us exfil data from different applications using Server-Side Request Forgery (SSRF). Using these methods, we were able to hack some of the major transportation, hospitality, and social media companies and make $50,000 in rewards in 3 months.

Speakers

Wednesday September 11, 2019 18:45 - 19:15
Village Hall

Attendees (12)