Critical Thinking - Bug Bounty Podcast cover image

Episode 75: *Rerun* of The OG Bug Bounty King - Frans Rosen

Critical Thinking - Bug Bounty Podcast

00:00

S3 Bucket Takeover and Decloaking Exploits

The chapter explores the origins of S3 bucket takeover vulnerabilities dating back to 2014, emphasizing the risk of domain ownership verification lapses in services like S3 and Shopify. It delves into decloaking techniques, revealing how exploiting features like trailing dots in CloudFront and client-side validation vulnerabilities can lead to security breaches.

Transcript
Play full episode

The AI-powered Podcast Player

Save insights by tapping your headphones, chat with episodes, discover the best highlights - and more!
App store bannerPlay store banner
 Get the app