Wednesday, July 26, 2017

Web Cache Deception Attack: White Paper

The Web Cache Deception attack vector was first published in this blog on February 2017. Since then, I presented it on Black Hat USA 2017 and BSides Tel-Aviv 2017.

Now, I'm proud to release a white paper explaining all about this attack, including:
- Attack methodology
- Implications
- Conditions
- Known web frameworks and caching mechanisms that meet the attack conditions
- Mitigations

Web Cache Deception Attack White Paper, July 2017

In addition, you can find the presentation used in the Black Hat USA 2017 conference.

Huge thanks to all those who assisted along the way:
Sagi Cohen, Bill Ben Haim, Sophie Lewin, Or Kliger, Gil Biton, Yakir Mordehay, Hagar Livne

Would love to receive your feedback here and on Twitter (@omer_gil).

Enjoy!

Posted by at

5 comments:

  1. mazharDecember 17, 2018 at 2:44 AM


    This site is helping for every person and easily get money through the bitcoin ATM card. Please visit this site for bitcoin atm card ranking. you can change any money into another currency in anywhere in the world

    ReplyDelete
  2. kate technologiesDecember 28, 2018 at 10:25 PM

    Thank you for your post. This is excellent information. It is amazing and wonderful to visit your site.
    best android development companies in hyderabad
    best ios development companies in hyderabad
    app developers in gachibowli
    best app developers in gachibowli
    mobile app development company in kukatpally
    ios app development companies in kukatpally
    mobile application development companies in kphb

    ReplyDelete
  3. Dubai EscortsDecember 30, 2018 at 9:53 AM

    The Escorts in Karachi are very talented, as not only they are completely beautiful but also know how they can be best as your partners.
    Karachi Call Girls
    She is a perfect busty escorts Karachi girl who can switch on your smile ... parts of Karachi for in-call as well as out-call, such as defence etc.
    https://karachicalgirlsescorts.com/

    ReplyDelete
  4. kate technologiesJanuary 4, 2019 at 2:05 AM

    Thank you for your post. This is excellent information. It is amazing and wonderful to visit your site.
    mobile app development company in kukatpally
    ios app development companies in kukatpally
    mobile application development companies in kphb
    mobile app development company in kphb

    ReplyDelete
  5. m ajmalJanuary 16, 2019 at 2:50 AM

    There is no better idea of keeping your mobile loaded with balance all the time. If you are also looking for any useful way to utilize your top up phone with bitcoin then hurry up and avail our service as much as can. There is no limit of it. Make your mobile life happier with balance recharge through NETELL.NET. COME SOON .THANK YOU .

    ReplyDelete

Subscribe to: Post Comments (Atom)