Hacker News new | past | comments | ask | show | jobs | submit login
Tricks for Reliable Split-Second DNS Rebinding in Chrome and Safari (intruder.io)
2 points by MalacodaV on Dec 6, 2023 | hide | past | favorite | 1 comment



This is the second part in a two-part series on DNS rebinding. The first part covered a real-world exploit using DNS rebinding. In this post, we introduce new techniques for achieving reliable, split-second DNS rebinding in Chrome, Edge, and Safari when IPv6 is available, as well as a technique for bypassing the local network restrictions applied to the fetch API in Chromium-based browsers.




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: