PHP Type Juggling Vulnerabilities, Netsparker - Paul's Security Weekly #572

Sven Morgenroth is a security researcher at Netsparker. He found filter bypasses for Chrome's XSS auditor and several web application firewalls. He comes on the show to discuss PHP Type Juggling Vulnerabilities. Full Show Notes: https://wiki.securityweekly.com/Episo... Subscribe to our YouTube channel:    / securityweekly   Visit our website: http://securityweekly.com Follow us on Twitter:   / securityweekly  

Join Today
Domain Fronting - Tradecraft Security Weekly #18
▶︎

Domain Fronting - Tradecraft Security Weekly #18

DEF CON 33 - Kill List: Hacking an Assassination Site on the Dark Web - Carl Miller, Chris Monteiro
▶︎

DEF CON 33 - Kill List: Hacking an Assassination Site on the Dark Web - Carl Miller, Chris Monteiro

PHP Type Juggling: Python Web Hacking | Natas: OverTheWire (Level 23)
▶︎

PHP Type Juggling: Python Web Hacking | Natas: OverTheWire (Level 23)

Fall asleep while I build a zoo (Part 2)
▶︎

Fall asleep while I build a zoo (Part 2)

Deserialization: what, how and why [not] - Alexei Kojenov - AppSecUSA 2018
▶︎

Deserialization: what, how and why [not] - Alexei Kojenov - AppSecUSA 2018

Web Cache Deception Attack
▶︎

Web Cache Deception Attack

Exploiting PHP7 unserialize (33c3)
▶︎

Exploiting PHP7 unserialize (33c3)

ASMR Mysterious Growth ❓ CLOSE Medical Exam 👩‍⚕️Professional Doctor Facial Examination
▶︎

ASMR Mysterious Growth ❓ CLOSE Medical Exam 👩‍⚕️Professional Doctor Facial Examination

Spoofing GPS with a hackRF, Larry Pesce - Paul's Security Weekly #571
▶︎

Spoofing GPS with a hackRF, Larry Pesce - Paul's Security Weekly #571

this is a warning to anyone using php
▶︎

this is a warning to anyone using php

After My Wife Passed Away, My Daughter-in-Law Smiled At The Inheritance Meeting!! | Calm Dad Stories
▶︎

After My Wife Passed Away, My Daughter-in-Law Smiled At The Inheritance Meeting!! | Calm Dad Stories

Type Juggling Magic: Why PHP thinks 0 and "password" are the same [Capture The Flag Fundamentals]
▶︎

Type Juggling Magic: Why PHP thinks 0 and "password" are the same [Capture The Flag Fundamentals]

DEF CON 23 - Jason Haddix - How to Shot Web: Web and mobile hacking in 2015
▶︎

DEF CON 23 - Jason Haddix - How to Shot Web: Web and mobile hacking in 2015

Attacking Modern Web Technologies - Frans Rosen
▶︎

Attacking Modern Web Technologies - Frans Rosen

Server-Side Template Injection: RCE For The Modern Web App
▶︎

Server-Side Template Injection: RCE For The Modern Web App

HacktheBox "Base" - Type Jugging Leading to Auth Bypass!
▶︎

HacktheBox "Base" - Type Jugging Leading to Auth Bypass!

The Biggest Hacking Mystery of Our Time: Shadow Brokers
▶︎

The Biggest Hacking Mystery of Our Time: Shadow Brokers

Something is jamming GPS over Europe. Here's what we found
▶︎

Something is jamming GPS over Europe. Here's what we found

PHP Weak Comparison with MD5 Collisions
▶︎

PHP Weak Comparison with MD5 Collisions

HTTP Desync Attacks: Request Smuggling Reborn
▶︎

HTTP Desync Attacks: Request Smuggling Reborn