Thursday, May 21 • 13:40 - 14:25
Server-Side Browsing Considered Harmful

Sign up or log in to save this to your schedule and see who's attending!

Compromised some large service providers (Facebook, Yahoo, CoinBase,
 Prezi,... ). Pwned their cloud presence and got a few root shells. Using
 only SSRF. Bypassed tons of blacklists. And I'll give you all my tricks.

 ToC: Methodology, Vectors, Targets, Blacklists, Bugs, Toolbox

avatar for Nicolas Grégoire

Nicolas Grégoire

Nicolas Gregoire has nearly 15 years of experience in penetration  testing and auditing of networks and (mostly web) applications. A few  years ago, he founded Agarri, a small company where he finds security  bugs for customers and for fun. His research was presented at... Read More →

Thursday May 21, 2015 13:40 - 14:25
Room E102 Amsterdam RAI

Attendees (0)