YoVDO

Crippling HTTPS with Unholy PAC

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Data Extraction Courses Browser Security Courses Denial-of-Service Attacks Courses Credential Theft Courses

Course Description

Overview

Explore the vulnerabilities of HTTPS connections through malicious Proxy AutoConfiguration (PAC) resources in this Black Hat conference talk. Delve into how seemingly secure HTTPS traffic can be compromised, even when browsing HSTS sites or using "Force TLS/SSL" browser extensions. Learn about the concept of "PAC Malware" and its capabilities, including two-way communication channels, contextual phishing, denial-of-service options, and sensitive data extraction from URIs. Examine a comprehensive browser PAC feature matrix and understand the cross-platform and cross-browser implications of this threat. Discover potential remediation strategies and secure PAC implementations to protect against these vulnerabilities.

Syllabus

Introduction
Welcome
Teaser
Outline
PAC Refresher
PAC Configuration
HTTP subversion with malicious pack
Find proxy for URL
Mentions
Ingredients
Demo
Fine Print
Conclusion
Malware Watch
PAC Capabilities
Download Protocol
Message Length
Demonstration
Recap
Matrix
Remediation
Secure PAC
Conclusions


Taught by

Black Hat

Related Courses

The Evolution of the Software Supply Chain Attack
Pluralsight
Early Detection through Deception
YouTube
How to Hunt for Lateral Movement on Your Network
YouTube
TeamTNT - Explosive Cryptomining
Black Hat via YouTube
Certified Pre-Owned - Abusing Active Directory Certificate Services
Black Hat via YouTube