Graph-Oriented Approach for SSTI Payload Optimization - Jinja2 Case Study

Explore a graph-oriented approach for optimizing Server-Side Template Injection (SSTI) payloads, focusing on the Jinja2 templating engine, in this 25-minute conference talk from DefCamp 2023. Presented by Remi Gascou, Senior Security Researcher at Podalirius Labs, the talk delves into advanced techniques for enhancing SSTI attacks. Gain insights into the latest developments in cybersecurity and hacking methodologies as part of Eastern Europe's premier infosec event, which attracted nearly 1,800 participants from 49 countries. Access additional resources, including slides and related presentations, through the DefCamp archive to further your understanding of this critical security topic.

Graph-oriented approach for SSTI payload optimization: Usecase of jinja2 at DefCamp 2023