Exploiting Path Delimiters for Web Cache Deception | PortSwigger Lab | Explained

In this video, I’ll explain what delimiters are and how caching systems and origin servers interpret them differently, a crucial detail that makes Web Cache Deception attacks possible. Then, I’ll walk you through PortSwigger’s Web Security Academy Lab on Exploiting Path Delimiters for Web Cache Deception, where you’ll see how attackers use these tricks to make caches store sensitive content, leading to serious information disclosure. . . . Lab: https://portswigger.net/web-security/... . . . My Website: https://medusa0xf.com/ My Blog:   / medusa0xf   . . . Social media - Twitter:   / medusa_0xf   Discord:   / discord   . . . Music by Karl Casey @ White Bat Audio . . #portswigger #owasp #bugbounty #cve #cybersecurity #graphql #apihacking #developer #hackerone #jwt #api #subdomain #portswigger #bugbounty #bola #postman #podcast #pentesting #api #hack #bola #tryhackme #hackerone #apihacking #computerscience #javascript #python #postman #ctf #bughunting #pentesting #hacking #hackingtools #burpsuite #portswigger #ethicalhacking #OAuth #webhacking #programming #websecurity #technology #practical #artificialintelligence #web #recon #bypass

Join Today
Web Cache Deception Attack
▶︎

Web Cache Deception Attack

Web cache deception [Spanish - English subtitles]
▶︎

Web cache deception [Spanish - English subtitles]

Exploiting Path Mapping For Web Cache Deception | PortSwigger Lab | Explained
▶︎

Exploiting Path Mapping For Web Cache Deception | PortSwigger Lab | Explained

Exploiting Origin Server Normalization For Web Cache Deception | PortSwigger | Explained
▶︎

Exploiting Origin Server Normalization For Web Cache Deception | PortSwigger | Explained

AI tool For HACKING ? Shannon EXPLAINED
▶︎

AI tool For HACKING ? Shannon EXPLAINED

5 Cybersecurity Certificates You Should Avoid (Do THIS Instead)
▶︎

5 Cybersecurity Certificates You Should Avoid (Do THIS Instead)

NVIDIA Monopoly is DEAD | OPEN-SOURCE Chips Are HERE!
▶︎

NVIDIA Monopoly is DEAD | OPEN-SOURCE Chips Are HERE!

Web Cache Deception - Lab003
▶︎

Web Cache Deception - Lab003

Web Cache Deception Made Simple – What You Need to Know!
▶︎

Web Cache Deception Made Simple – What You Need to Know!

WEB CACHE DECEPTION FOR BEGINNERS!
▶︎

WEB CACHE DECEPTION FOR BEGINNERS!

God Says:"I JUST CONFIRMED — ONLY YOU CAN SEE THIS LETTER"/God Message Now/God Message
▶︎

God Says:"I JUST CONFIRMED — ONLY YOU CAN SEE THIS LETTER"/God Message Now/God Message

How Hackers Hack Websites
▶︎

How Hackers Hack Websites

Lab: Web cache poisoning with an unkeyed header
▶︎

Lab: Web cache poisoning with an unkeyed header

Web Cache Deception Attacks! | New From BlackHat 2024!
▶︎

Web Cache Deception Attacks! | New From BlackHat 2024!

Exploiting Cache Server Normalization for Web Cache Deception | PortSwigger Lab | Explained
▶︎

Exploiting Cache Server Normalization for Web Cache Deception | PortSwigger Lab | Explained

Mastering Web Cache Deception: From Exploit to Account Takeover, a High-Paying Vulnerability
▶︎

Mastering Web Cache Deception: From Exploit to Account Takeover, a High-Paying Vulnerability

The Dark Web EXPOSED (FREE + Open-Source Tool)
▶︎

The Dark Web EXPOSED (FREE + Open-Source Tool)

How To Learn Hacking - A Practical Demo
▶︎

How To Learn Hacking - A Practical Demo

Web Cache Poisoning with an unkeyed header - Lab#01
▶︎

Web Cache Poisoning with an unkeyed header - Lab#01

Cache Poison Bug Bounty | Cross Site Scripting
▶︎

Cache Poison Bug Bounty | Cross Site Scripting