$3,500 Slack SSRF – proxying to internal network via TURN server explained – Hackerone
Links:
* Original report:
https://hackerone.com/reports/333419
Reporter:
https://hackerone.com/sandrogauci
PoC:
https://www.youtube.com/watch?v=w94gTHoRXk8
* Good explanation of the TURN server
http://help.estos.com/help/en-US/procall/5.1/erestunservice/dokumentation/htm/IDD_FUNCTIONALITY.htm)
* RFC 5766
https://tools.ietf.org/html/rfc5766#section-17.2.2
00:00 Intro
00:14 password in HTTP response
01:08 what is TURN server?
03:32 What was wrong here?
04:52 Report and reward
Add comment