Episode 9: Headless Browser SSRF & RebindMultiA Tool Release + Web3 Bug
Critical Thinking - Bug Bounty Podcast
00:00
How to Set Up a Home Automation System
Joel: I'm running everything off of uh, you know google google homes And it works well, but like I don't know it seems like you got some crazy shit set up So that's pretty cool. All of the sharing to home kit Comes from home assistant. The DNS record it resolves and It resolves to the attackers ip address Then when the browser realizes that it's unable to access the server at that ip It will reach out to the second ip Um in this case local host and load that up now.
Transcript
Play full episode
