This talk delves into the most well-known and effective attacks in Web Cache Deception (WCD) and Web Cache Poisoning (WCP). It starts with a Web Cache 101, explaining the technical fundamentals to ensure that the audience can follow along with the more advanced vulnerability discussions.
From Omer Gil to the Present: A review of the first documented WCD attacks, how they remain effective, and recent real-world exploitation examples (in the wild). Practical tips are included to ensure you don't miss key detection opportunities.
The classic Poisonings: This section explores early WCP attacks, such as reflected parameter exploitation and DoS, as well as advanced techniques like those introduced by Albinowax. If you're a Led Zeppelin fan, you'll love discovering how cached and confused techniques can throw caching mechanisms off balance.
Innovations from the Río de la Plata by Martín Doyhenard: Novel and less-explored techniques are presented, such as path confusion using URL encoding, static file abuse, open redirection abuse, poisoning through file uploads, and HTTP protocol downgrades (yes, HTTP 0.9 is still alive!). These ideas bring a creative twist to traditional techniques, highlighting their evolution and continued relevance.
The goal is to provide practical tools and actionable examples for security researchers, pentesters, and bug bounty hunters alike, from beginners to seasoned experts.