Tuesday, February 4, 2025
Latest:
linux ftp serverLinux serverNETWORK ADMINISTRATIONS

XXE INJECTION Deep Dive with @0xTib3rius

▬▬▬▬▬▬ Abstract & Bio 📝 ▬▬▬▬▬▬
In this session, Tib3rius performs a deep dive into the crazy web app vulnerability that is XML External Entity (XXE) Injection, explaining how and why it works, with live demos of several Portswigger Web Academy labs.

At the end of the session, he does a walkthrough of the Aragog HTB box, which uses XXE as part of its initial exploit vector.

Tib3rius (tib3rius.com)
Twitter: https://twitter.com/0xTib3rius
Hacker @WhiteOakSec | AutoRecon Dev | YouTube: http://is.gd/0o0GDW |
Twitch: http://is.gd/aPafUV | Udemy: http://is.gd/Nhceps | Discord: http://is.gd/5wdfRz (he/him)

Tib3rius is a penetration tester with over 10 years of experience testing and breaking web applications. Late in his career, he decided to pursue the OSCP certification, and in the process helped build an online community in the InfoSec Prep Discord server, wrote a popular OSCP tool called AutoRecon, and helped thousands of students learn Privilege Escalation through his two Udemy courses. In his spare time, he enjoys gaming with friends and binging as many TV shows as he can.
▬▬▬▬▬▬ T I M E S T A M P S ⏰ ▬▬▬▬▬▬
00:00:35 Introduction of our guest Tib3rius by Rana Khalil
00:01:50 Tib3rius’ intro
00:04:20 Lab 1: Exploiting XXE using external entities to retrieve files
00:18:16 Lab 2: Exploiting blind XXE to exfiltrate data using a malicious external DTD
00:30:14 Lab 3: Exploiting blind XXE to retrieve data via error messages
00:38:26 Lab 4: ARAGOG (user flag)

▬▬▬▬▬▬ Useful Links 🛠 ▬▬▬▬▬▬
Slides
tib3rius.com/docs/XXE.pdf

Web Security Academy
https://portswigger.net/web-security (Sign Up)

Web Security Academy Labs
https://portswigger.net/web-security/xxe/lab-exploiting-xxe-to-retrieve-files
https://portswigger.net/web-security/xxe/blind/lab-xxe-with-out-of-band-exfiltration
https://portswigger.net/web-security/xxe/blind/lab-xxe-with-data-retrieval-via-error-messages

Burp Community Edition
https://portswigger.net/burp/communitydownload

▬▬▬▬▬▬ Hack The Box Ottawa 🛠 ▬▬▬▬▬▬
Meetup.com: https://www.meetup.com/Hack-The-Box-Meetup-Ottawa
Twitter: https://twitter.com/hackthebox_yow

source

by Hack The Box Meetup – Ottawa

linux ftp server

You May Also Like

😱JORGE CAMPOS (VOX) DESTROZA A MANUEL PALOMINO😱 ADMITE HABER CONTACTADO CON KOLDO GARCÍA

How to lookup DNS Records with the Dig Command in Linux UBUNTU || dig command tutorial

Build complete free Streamlit web app on AWS server end to end tutorial part 2

Leave a Reply

Your email address will not be published. Required fields are marked *