Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Elevate Your SSRF Game - Weaponizing Internal DNS Records to Expose Hidden Endpoints

Security BSides London via YouTube

Start learning Write review
Corporate Finance Institute Ad

Build the Finance Skills That Lead to Promotions — Not Just Certificates

Learn More → Noble Desktop Ad

Live Online Classes in Design, Coding & AI — Small Classes, Free Retakes

Learn More →

Overview

Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Learn how to exploit Server-Side Request Forgery (SSRF) vulnerabilities in modern web architectures through an innovative SSRF² technique presented in this 32-minute Security BSides London conference talk. Discover how to challenge trust boundaries by leveraging the same SSRF primitive twice across different security contexts, transforming restricted blind SSRF vulnerabilities into critical security breaches. Explore real-world examples demonstrating how this powerful technique can bypass sophisticated defense mechanisms and entire security stacks designed to prevent internal access, all without requiring complex chains or extensive reconnaissance.

Syllabus

Elevate Your SSRF Game: Weaponize Internal DNS Records To Expose Hidden Endpoints - Guy Arazi

Taught by

Security BSides London

Reviews

Start your review of Elevate Your SSRF Game - Weaponizing Internal DNS Records to Expose Hidden Endpoints

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.