Finding 0day in Apache APISIX During CTF (CVE-2022-24112)
In this video we perform a code audit of Api6 and discover a default configuration that can be escalated to remote code execution.
CVE-2022-24112: https://seclists.org/oss-sec/2022/q1/133
GitLab: https://liveoverflow.com/gitlab-11-4-7-remote-code-execution-real-world-ctf-2018/
Challenge files: https://github.com/chaitin/Real-World-CTF-4th-Challenge-Attachments/tree/master/API6
Chapters:
00:00 - Intro
01:09 - Initial Application Overview
02:15 - Discussing Approaches
03:56 - Reading Documentation
04:57 - Initial Attack Idea
06:15 - Identifying Attack Surface
08:46 - Discovering Batch Requests
09:18 - Bypassing X-Real-IP Header
10:15 - Testing the Exploit
11:11 - Reporting the Issue
12:16 - Outro
-=[ ❤️ Support ]=-
→ per Video: https://www.patreon.com/join/liveoverflow
→ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join
-=[ 🐕 Social ]=-
→ Twitter: https://twitter.com/LiveOverflow/
→ Instagram: https://instagram.com/LiveOverflow/
→ Blog: https://liveoverflow.com/
→ Subreddit: https://www.reddit.com/r/LiveOverflow/
→ Facebook: https://www.facebook.com/LiveOverflow/
Видео Finding 0day in Apache APISIX During CTF (CVE-2022-24112) канала LiveOverflow
CVE-2022-24112: https://seclists.org/oss-sec/2022/q1/133
GitLab: https://liveoverflow.com/gitlab-11-4-7-remote-code-execution-real-world-ctf-2018/
Challenge files: https://github.com/chaitin/Real-World-CTF-4th-Challenge-Attachments/tree/master/API6
Chapters:
00:00 - Intro
01:09 - Initial Application Overview
02:15 - Discussing Approaches
03:56 - Reading Documentation
04:57 - Initial Attack Idea
06:15 - Identifying Attack Surface
08:46 - Discovering Batch Requests
09:18 - Bypassing X-Real-IP Header
10:15 - Testing the Exploit
11:11 - Reporting the Issue
12:16 - Outro
-=[ ❤️ Support ]=-
→ per Video: https://www.patreon.com/join/liveoverflow
→ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join
-=[ 🐕 Social ]=-
→ Twitter: https://twitter.com/LiveOverflow/
→ Instagram: https://instagram.com/LiveOverflow/
→ Blog: https://liveoverflow.com/
→ Subreddit: https://www.reddit.com/r/LiveOverflow/
→ Facebook: https://www.facebook.com/LiveOverflow/
Видео Finding 0day in Apache APISIX During CTF (CVE-2022-24112) канала LiveOverflow
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
riscure embedded hardware CTF is over - loopback 0x03
Live Hacking - Internetwache CTF 2016 - web50, web60, web80
LiveOverflow Channel Trailer
format2 on a modern Ubuntu - bin 0x26
Deepdive Containers - Kernel Sources and nsenter
What is a Protocol? (Deepdive)
Riscure Embedded Hardware CTF setup and introduction - rhme2 Soldering
TCP Protocol introduction - bin 0x1A
XSS on the Wrong Domain T_T - Tech Support (web) Google CTF 2020
File Path Race Condition & How To Prevent It - bin 0x31
VPNs, Proxies and Secure Tunnels Explained (Deepdive)
Exploit Fails? Debug Your Shellcode - bin 0x2B
New to Linux? Need Help Understanding Shell Commands?
HACKERSPACES ARE AWESOME!
Fuzzing Browsers for weird XSS Vectors
Understanding C Pointer Magic Arithmetic | Ep. 07
Solving Pwnable CTF Challenge With Docker Workflow
The fakeobj() Primitive: Turning an Address Leak into a Memory Corruption
The HTTP Protocol: GET /test.html - web 0x01
Race Condition Trick /proc/self/fd