When TLS Hacks You

Explore a unique perspective on TLS security in this 30-minute Black Hat conference talk. Delve into how features designed to enhance TLS performance can be exploited as attack vectors, particularly for Server-Side Request Forgery (SSRF). Discover a novel, cross-platform method of leveraging TLS to target internal services, moving beyond platform-specific vulnerabilities like SNI injection. Gain insights from Joshua Maddux's research on using TLS as an offensive tool rather than just a defensive measure. Access the full abstract and presentation materials to deepen your understanding of this innovative approach to cybersecurity.

When TLS Hacks You