This video is an explanation of the SSRF vulnerability found by Sandro Gauci and reported to slack on Hackerone.
Links:
* Original report:
https://hackerone.com/reports/333419
Reporter:
https://hackerone.com/sandrogauci
PoC:
https://www.youtube.com/watch?v=w94gTHoRXk8
* Good explanation of the TURN server
http://help.estos.com/help/en-US/procall/5.1/erestunservice/dokumentation/htm/IDD_FUNCTIONALITY.htm)
* RFC 5766
https://tools.ietf.org/html/rfc5766#section-17.2.2

00:00 Intro
00:14 password in HTTP response
01:08 what is TURN server?
03:32 What was wrong here?
04:52 Report and reward

Add comment

Your email address will not be published. Required fields are marked *