Gotta Cache Em All: Bending the rules of web cache exploitation

Welcome to the repo. This repository contains all the materials for my talk "Gotta Cache Em All: Bending the rules of web cache exploitation".

You can read about this research at:

https://portswigger.net/research/gotta-cache-em-all

CacheKiller contains a tool to discover URL parsing discrepancies and the different arbitrary cache poisoning and deception described in my BlackHat and DEF CON talk.

We've created a Web Security Academy topic to learn the web cache deception attacks and to try out your new skills.

Name		Name	Last commit message	Last commit date
Latest commit History 7 Commits
build		build
gradle/wrapper		gradle/wrapper
src/main/java/extensions/cachekiller		src/main/java/extensions/cachekiller
README.md		README.md
build.gradle		build.gradle
gradlew		gradlew
gradlew.bat		gradlew.bat
settings.gradle		settings.gradle

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Gotta Cache Em All: Bending the rules of web cache exploitation

About

Releases

Packages

Languages

PortSwigger/cache-killer

Folders and files

Latest commit

History

Repository files navigation

Gotta Cache Em All: Bending the rules of web cache exploitation

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages