Web Hacking Pro Tips Deep Dive #1: Facebook RCE

Name: Web Hacking Pro Tips Deep Dive #1: Facebook RCE
Uploaded: Sep 4, 2017
Duration: 2061 s

Web Development Tutorials21.2K subscribers

4.8K views

Sep 4, 2017

34:21

Web Hacking 101: https://leanpub.com/web-hacking-101 Original write-up: http://4lemon.ru/2017-01-17_facebook_imagetragick_remote_code_execution.html In the first Web Hacking Pro Tips Deep Dive, I sit down with Jason Haddix from Bugcrowd to discuss a Facebook RCE discovered in October 2016 by Andrey Leonov, 4lemon. We walk through what Imagemagick and Imagetragick are, the likely methodology used to find this bug, potential problems encountered finding and exploiting it and discuss key takeaways.

Download

1 formats

Video Formats

360pmp444.2 MB

Download

Right-click 'Download' and select 'Save Link As' if the file opens in a new tab.