Skip to content

PortSwigger/splitting-the-email-atom

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
joomla
joomla
 
 
tools
tools
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 

Repository files navigation

Splitting The Email Atom: Exploiting Parsers To Bypass Access Controls

Welcome to the repo. This repository contains all the materials for my talk "Splitting The Email Atom:Exploiting Parsers To Bypass Access Controls".

You can read about this research at:

https://portswigger.net/research/splitting-the-email-atom

The Joomla directory contains all the code to replicate the demo I presented live at Black Hat and DEFCON.

The tools directory contains all the tools I used for this research. Including the CSS exfiltrator, Hackvertor tags, PHP Punycode fuzzer, converter, SMTP fuzzing scripts and Turbo Intruder scripts.

Academy CTF challenge

We've created a CTF on the Web Security Academy so you can try out your new skills.

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

60 stars

Watchers

1 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages