Wednesday, 19 August 2015

Server-Side Template Injection

I've written up a novel technique to get RCE on webservers - Server-Side Template Injection - over at I presented this at Black Hat USA 2015 - you can watch a recording at

Shortly afterwards, I  presented at 44Con 2015 on Hunting Asynchronous Vulnerabilities. You can read a summary at or watch the recording (paid only alas) at

No comments:

Post a Comment