Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

The Evil Alt-Ego - Abusing HTTP Alternative Services

Black Hat via YouTube

Start learning Write review
Pragmatic Institute Ad

AI Product Expert Certification - Master Generative AI Skills

Learn More → Scrimba Ad

Free courses from frontend to fullstack and AI

Learn More →

Overview

Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Explore the potential security vulnerabilities and exploits associated with the HTTP Alternative Services header (Alt-Svc, RFC 7838) in this 33-minute Black Hat conference talk. Delve into how this header, originally introduced in 2013 to improve load balancing, protocol optimizations, and client segmentation, can be manipulated for malicious purposes. Learn about the unintended consequences and potential risks of this well-intentioned feature as presented by David Starobinski, Trishita Tiwari, and Ari Trachtenberg. Gain insights into the security implications of Alt-Svc and understand how it can be abused by attackers to compromise web security.

Syllabus

The Evil Alt-Ego: (ab)using HTTP Alternative Services

Taught by

Black Hat

Reviews

Start your review of The Evil Alt-Ego - Abusing HTTP Alternative Services

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.