Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Explore the world of bit-flipping attacks in this 55-minute security talk from NDC Security in Oslo, Norway. Learn how changing a single bit in a domain name (like turning "google.com" into "coogle.com") can be exploited for credential harvesting. Security researchers Stök and Joohoi share their findings after registering numerous bit-flipped versions of popular cloud/SaaS provider domains and collecting incoming traffic for two years. Discover the surprising results: legitimate credentials, OAuth refresh tokens, JWT tokens, cookies, emails, and meeting invites with passwords. The presentation introduces "Certainly," an offensive/defensive tool that uses Wildcard DNS matching and on-the-fly SSL certificate generation to inject custom payloads across various protocols, demonstrating techniques to downgrade security, harvest credentials, capture emails, and replace dependencies. This talk builds upon bit-flip research from the past decade while showcasing practical applications and potential security implications.
