Ever heard of a server getting bossed around by a hacker? That's Server-Side Request Forgery (SSRF) in a nutshell, a tricky web vulnerability where attackers trick a server into hitting a URL of their choice. It's been around for ages and even made the OWASP Top 10, yet applications still fall prey to it, letting baddies bypass access controls, snoop on internal stuff, or even grab cloud secrets!
Sofia Lindqvist's talk dives deep into these sneaky SSRFs, starting with the basics and escalating to wild, real-world examples, including those found in big names like Azure. She even spills the beans on how hackers bypass vendor fixes, making this a must-know for anyone trying to keep their systems safe!
Watch on YouTube
Top comments (0)