Skip to main content
Amit Klein's security corner

Main menu

  • Academia-related
  • Advanced web application attacks
  • DNS X-Ray
  • DNS cache poisoning
  • Home
  • Predictable Javascript Math.Random and HTTP multipart boundary string
  • Public appearances
  • Recent (non-Academic) Research
  • Standards, community, etc.
  • Usenix 2019 *extended* paper
  • Web application security - the early days
  • Web-based virtual machine detection
  • XML and SOAP attacks

You are here

Home

Blog

  • BlackHat and DefCon 2017
  • Black Hat USA 2016
  • Perfect exflitration slides
  • HTTP Response Splitting in Node.js
  • Web-based VM detection with HTML5
  • (NIH) WebRTC exposes internal IP addresses

blackhat

BlackHat US 2017 and DefCon 25

Submitted by amit on Sun, 06/08/2017 - 12:03

Last month, Itzik Kotler and I presented our research at BlackHat US 2017 and DefCon 25.

Tags:

  • blackhat
  • DefCon
  • Read more about BlackHat US 2017 and DefCon 25

Slides and videos from my Black Hat talk

Submitted by amit on Sun, 28/08/2016 - 16:05

On August 3rd, 2016, Itzik Kotler and I presented our talk "Crippling HTTPS with unholy PAC" at BlackHat USA 2016.

Slides

Source code

Tags:

  • blackhat
  • video
  • slides
  • Read more about Slides and videos from my Black Hat talk
Subscribe to RSS - blackhat

Advisories

  • HTTP Response Splitting in Node.js
  • Web-based VM detection with HTML5 Performance Object
  • Safari PASV vulnerability
  • The "localhosed" attack - stealing IE local cookies
  • Filezilla FTP server advisory