In this video, I’ll explain what delimiters are and how caching systems and origin servers interpret them differently, a crucial detail that makes Web Cache Deception attacks possible. Then, I’ll walk you through PortSwigger’s Web Security Academy Lab on Exploiting Path Delimiters for Web Cache Deception, where you’ll see how attackers use these tricks to make caches store sensitive content, leading to serious information disclosure.
.
.
.
Lab: https://portswigger.net/web-security/web-cache-deception/lab-wcd-exploiting-path-delimiters
.
.
.
My Website: https://medusa0xf.com/
My Blog: https://medusa0xf.medium.com/
.
.
.
Social media -
Twitter: https://twitter.com/medusa_0xf
Discord: https://discord.com/invite/2PUPD3RHHs
.
.
.
Music by Karl Casey @ White Bat Audio
.
.
#portswigger #owasp #bugbounty #cve #cybersecurity #graphql #apihacking #developer #hackerone #jwt #api #subdomain #portswigger #bugbounty #bola #postman #podcast #pentesting #api #hack #bola #tryhackme #hackerone #apihacking #computerscience #javascript #python #postman #ctf #bughunting #pentesting #hacking #hackingtools #burpsuite #portswigger #ethicalhacking #OAuth #webhacking #programming #websecurity #technology #practical #artificialintelligence #web #recon #bypass
