Skip to content

Cyber for the intelligent….

HTTP Desync attacks

Posted on August 8, 2019 by Nathan Cocker

New research from the PortSwigger team blog to accompany their demonstrations at DEFCON and BlackHat.

This detailed paper introduces their new method of attack, with clear examples and impacts. A very concise description of mitigation options.

Check out the detail here.

Rate this:

Share this:

Twitter
Facebook

Like this:

Like Loading...

Related

Posted in UncategorizedTagged AttacksLeave a comment

Post navigation

← Superhedgy’s AttackSurfaceMapper

VBScript is dead! Long live VBScript. →

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Address never made public)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Google account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Connecting to %s

Notify me of new comments via email.

Notify me of new posts via email.

Search

Search for:

Recent Posts

Threat Roundup for September 27 to October 4
New 0-Day Flaw Affecting Most Android Phones Being Exploited in the Wild
Extensive list of useful mindmaps
Threat Roundup for September 20 to September 27
Hacker Releases ‘Unpatchable’ Jailbreak For All iOS Devices, iPhone 4s to iPhone X – USB Access Required!!!

Archives

October 2019
September 2019
August 2019
July 2019
June 2019
June 2017
May 2017
April 2017
March 2017
November 2016
October 2016
September 2016
August 2016
July 2016
June 2016
December 2012
October 2012

Categories

Application Security
Cyber Security
DDoS
Etherium
Hack
Policy Development
Ransomware
Recorded Future
Reddit
Risk Assessment
Spooks
SSL
Technical
Threat Intel
Threat Intelligence
Tools
TTP
Uncategorized
Vulnerabilities

Meta

Register
Log in
Entries feed
Comments feed
WordPress.com

Search

Search for:

Recent Posts

Threat Roundup for September 27 to October 4
New 0-Day Flaw Affecting Most Android Phones Being Exploited in the Wild
Extensive list of useful mindmaps
Threat Roundup for September 20 to September 27
Hacker Releases ‘Unpatchable’ Jailbreak For All iOS Devices, iPhone 4s to iPhone X – USB Access Required!!!

Archives

October 2019
September 2019
August 2019
July 2019
June 2019
June 2017
May 2017
April 2017
March 2017
November 2016
October 2016
September 2016
August 2016
July 2016
June 2016
December 2012
October 2012

Categories

Application Security
Cyber Security
DDoS
Etherium
Hack
Policy Development
Ransomware
Recorded Future
Reddit
Risk Assessment
Spooks
SSL
Technical
Threat Intel
Threat Intelligence
Tools
TTP
Uncategorized
Vulnerabilities

Follow Blog via Email

Enter your email address to follow this blog and receive notifications of new posts by email.

Join 168 other followers

Cyber-People

Cyber-Dumpz

%d bloggers like this: