AD
Uploaded byAmit Dubey
PPTX, PDF2,023 views

Host Header injection - Slides

Host header injection is a high severity web security vulnerability that allows attackers to spoof the domain name of a website by manipulating the HTTP "Host" header. This can enable password reset poisoning, web cache poisoning, cross-site scripting, and access to internal hosts. Mitigation techniques include validating the Host header matches the target domain, creating a dummy virtual host to catch invalid headers, whitelisting trusted domains, and disabling support for X-Forwarded-Host headers.

Technology
Related topics:
Information Security
In this document
Powered by AI

An introduction slide featuring presenter Amit Dubey and the topic of HTTP header injection.

Explanation of HTTP headers, including request and response roles, and focus on the HOST header.

Details on Host Header Injection, illustrating the difference between original and edited requests.

High severity impacts such as web cache poisoning, password reset issues, XSS, and intranet access.

Description of techniques used to bypass host headers, including multiple host headers and X-Forwarded-Host.

Security measures to mitigate risks, including domain validation, dummy hosts, trusted domain whitelisting.

Conclusion slide prompting questions and thanking the audience.

Embed presentation

Downloaded 21 times
HOST HEADER INJECTION Presenter : Amit Dubey
What are HTTP HEADER? • Request and Response • Carries Information • Browser Request • Server Response • HTTP Header : HOST
What is Host Header Injection ? ■ But what happens if we specify an invalid Host Header ? ■ Original Request – ■ Edited Request –
Impacts - SEVERITY : HIGH ■ Web Cache Poisoning ■ Password Reset Poisoning ■ Cross Site Scripting ■ Access to internal hosts
Bypasses- ■ Multiple Host Headers ■ X-Forwarded-Host
Mitigation - ■ Reject any request that doesn’t match target domain ■ Validating Host header to ensure that the request is originating from that target host or not. ■ Creating an dummy virtual host that catches all requests with unrecognized Host headers. ■ By creating a whitelist of trusted domains. ■ Disable support for X-Forwarded-Host
QUESTION ? ~~~~~~~~~Thank you ~~~~~~~~~

More Related Content

PPTX
HTTP HOST header attacks
byDefconRussia
 
PDF
Cross Origin Resource Sharing
byLuke Weerasooriya
 
PPTX
Attacking thru HTTP Host header
bySergey Belov
 
PDF
OWASP AppSecEU 2018 – Attacking "Modern" Web Technologies
byFrans Rosén
 
PDF
Http security response headers
bymohammadhosseinrouha
 
PDF
HTTP Request Smuggling via higher HTTP versions
byneexemil
 
PPT
Cross Site Request Forgery
byTony Bibbs
 
PDF
Building Advanced XSS Vectors
byRodolfo Assis (Brute)
 
HTTP HOST header attacks
byDefconRussia
 
Cross Origin Resource Sharing
byLuke Weerasooriya
 
Attacking thru HTTP Host header
bySergey Belov
 
OWASP AppSecEU 2018 – Attacking "Modern" Web Technologies
byFrans Rosén
 
Http security response headers
bymohammadhosseinrouha
 
HTTP Request Smuggling via higher HTTP versions
byneexemil
 
Cross Site Request Forgery
byTony Bibbs
 
Building Advanced XSS Vectors
byRodolfo Assis (Brute)
 

What's hot

PPTX
OWASP Top 10 2021 Presentation (Jul 2022)
byTzahiArabov
 
PPTX
File inclusion
byAaftabKhan14
 
PPTX
WAF Bypass Techniques - Using HTTP Standard and Web Servers’ Behaviour
bySoroush Dalili
 
PDF
Pentesting Rest API's by :- Gaurang Bhatnagar
byOWASP Delhi
 
PPTX
Pentesting jwt
byJaya Kumar Kondapalli
 
PPTX
Deep understanding on Cross-Site Scripting and SQL Injection
byVishal Kumar
 
PDF
HTTP Security Headers
byIsmael Goncalves
 
PPTX
Waf bypassing Techniques
byAvinash Thapa
 
PPTX
Directory Traversal & File Inclusion Attacks
byRaghav Bisht
 
PDF
X-XSS-Nightmare: 1; mode=attack XSS Attacks Exploiting XSS Filter
byMasato Kinugawa
 
PPTX
Secure Code Warrior - CRLF injection
bySecure Code Warrior
 
PDF
Lior rotkovitch ASM WAF unified learning – building policy with asm v12
byLior Rotkovitch
 
PDF
Frans Rosén Keynote at BSides Ahmedabad
bySecurity BSides Ahmedabad
 
PPTX
Web api
bySudhakar Sharma
 
PDF
SSRF workshop
byIvan Novikov
 
PDF
Cross-domain requests with CORS
byVladimir Dzhuvinov
 
PDF
HTTP Parameter Pollution Vulnerabilities in Web Applications (Black Hat EU 2011)
byMarco Balduzzi
 
PDF
OWASP Top 10 API Security Risks
byIndusfacePvtLtd
 
PDF
How to steal and modify data using Business Logic flaws - Insecure Direct Obj...
byFrans Rosén
 
PDF
Offzone | Another waf bypass
byДмитрий Бумов
 
OWASP Top 10 2021 Presentation (Jul 2022)
byTzahiArabov
 
File inclusion
byAaftabKhan14
 
WAF Bypass Techniques - Using HTTP Standard and Web Servers’ Behaviour
bySoroush Dalili
 
Pentesting Rest API's by :- Gaurang Bhatnagar
byOWASP Delhi
 
Pentesting jwt
byJaya Kumar Kondapalli
 
Deep understanding on Cross-Site Scripting and SQL Injection
byVishal Kumar
 
HTTP Security Headers
byIsmael Goncalves
 
Waf bypassing Techniques
byAvinash Thapa
 
Directory Traversal & File Inclusion Attacks
byRaghav Bisht
 
X-XSS-Nightmare: 1; mode=attack XSS Attacks Exploiting XSS Filter
byMasato Kinugawa
 
Secure Code Warrior - CRLF injection
bySecure Code Warrior
 
Lior rotkovitch ASM WAF unified learning – building policy with asm v12
byLior Rotkovitch
 
Frans Rosén Keynote at BSides Ahmedabad
bySecurity BSides Ahmedabad
 
Web api
bySudhakar Sharma
 
SSRF workshop
byIvan Novikov
 
Cross-domain requests with CORS
byVladimir Dzhuvinov
 
HTTP Parameter Pollution Vulnerabilities in Web Applications (Black Hat EU 2011)
byMarco Balduzzi
 
OWASP Top 10 API Security Risks
byIndusfacePvtLtd
 
How to steal and modify data using Business Logic flaws - Insecure Direct Obj...
byFrans Rosén
 
Offzone | Another waf bypass
byДмитрий Бумов
 

Recently uploaded

PDF
PCCC25(設立25年記念PCクラスタシンポジウム):エヌビディア合同会社 テーマ2「NVIDIA BlueField-4 DPU」
byPC Cluster Consortium
 
PDF
Accessibility & Inclusion: What Comes Next. Presentation of the Digital Acces...
byAssociazione Digital Days
 
PPTX
MuleSoft AI Series : Introduction to MCP
byMulesoftMunichMeetup
 
PDF
Cheryl Hung, Vibe Coding Auth Without Melting Down! isaqb Software Architectu...
byCheryl Hung
 
PDF
The Necessity of Digital Forensics, the Digital Forensics Process & Laborator...
bychrstnpetwinchester
 
PPTX
Leon Brands - Intro to GPU Occlusion (Graphics Programming Conference 2024)
byleonbrands1998
 
PDF
[BDD 2025 - Full-Stack Development] Agentic AI Architecture: Redefining Syste...
byWintari Yasmin
 
PDF
Crane Accident Prevention Guide: Key OSHA Regulations for Safer Operations
bySharpEagle Technology
 
PDF
[BDD 2025 - Full-Stack Development] The Modern Stack: Building Web & AI Appli...
byWintari Yasmin
 
PDF
Open Source Post-Quantum Cryptography - Matt Caswell
byAll Things Open
 
PDF
[BDD 2025 - Mobile Development] Exploring Apple’s On-Device FoundationModels
byWintari Yasmin
 
PDF
KMWorld - KM & AI Bring Collectivity, Nostalgia, & Selectivity
byJonathan Ralton
 
PDF
Integrating AI with Meaningful Human Collaboration
byCadabra Studio
 
PDF
So You Want to Work at Google | DevFest Seattle 2025
byMargaret Maynard-Reid
 
PDF
The partnership effect: Libraries and publishers on collaborating and thrivin...
byBookNet Canada
 
PDF
Transforming Supply Chains with Amazon Bedrock AgentCore (AWS Swiss User Grou...
byChris Bingham
 
PDF
MuleSoft Meetup: Dreamforce'25 Tour- Vibing With AI & Agents.pdf
byTintu Jacob Shaji
 
PDF
Mastering Agentic Orchestration with UiPath Maestro | Hands on Workshop
byUiPathCommunity
 
PPTX
UFCD 0797 - SISTEMAS OPERATIVOS_Unidade Completa.pptx
byscribddobruno
 
PPTX
Guardrails in Action - Ensuring Safe AI with Azure AI Content Safety.pptx
byUdaiappa Ramachandran
 
PCCC25(設立25年記念PCクラスタシンポジウム):エヌビディア合同会社 テーマ2「NVIDIA BlueField-4 DPU」
byPC Cluster Consortium
 
Accessibility & Inclusion: What Comes Next. Presentation of the Digital Acces...
byAssociazione Digital Days
 
MuleSoft AI Series : Introduction to MCP
byMulesoftMunichMeetup
 
Cheryl Hung, Vibe Coding Auth Without Melting Down! isaqb Software Architectu...
byCheryl Hung
 
The Necessity of Digital Forensics, the Digital Forensics Process & Laborator...
bychrstnpetwinchester
 
Leon Brands - Intro to GPU Occlusion (Graphics Programming Conference 2024)
byleonbrands1998
 
[BDD 2025 - Full-Stack Development] Agentic AI Architecture: Redefining Syste...
byWintari Yasmin
 
Crane Accident Prevention Guide: Key OSHA Regulations for Safer Operations
bySharpEagle Technology
 
[BDD 2025 - Full-Stack Development] The Modern Stack: Building Web & AI Appli...
byWintari Yasmin
 
Open Source Post-Quantum Cryptography - Matt Caswell
byAll Things Open
 
[BDD 2025 - Mobile Development] Exploring Apple’s On-Device FoundationModels
byWintari Yasmin
 
KMWorld - KM & AI Bring Collectivity, Nostalgia, & Selectivity
byJonathan Ralton
 
Integrating AI with Meaningful Human Collaboration
byCadabra Studio
 
So You Want to Work at Google | DevFest Seattle 2025
byMargaret Maynard-Reid
 
The partnership effect: Libraries and publishers on collaborating and thrivin...
byBookNet Canada
 
Transforming Supply Chains with Amazon Bedrock AgentCore (AWS Swiss User Grou...
byChris Bingham
 
MuleSoft Meetup: Dreamforce'25 Tour- Vibing With AI & Agents.pdf
byTintu Jacob Shaji
 
Mastering Agentic Orchestration with UiPath Maestro | Hands on Workshop
byUiPathCommunity
 
UFCD 0797 - SISTEMAS OPERATIVOS_Unidade Completa.pptx
byscribddobruno
 
Guardrails in Action - Ensuring Safe AI with Azure AI Content Safety.pptx
byUdaiappa Ramachandran
 

Host Header injection - Slides

  • 1.
  • 2.
    What are HTTP HEADER? •Request and Response • Carries Information • Browser Request • Server Response • HTTP Header : HOST
  • 3.
    What is HostHeader Injection ? ■ But what happens if we specify an invalid Host Header ? ■ Original Request – ■ Edited Request –
  • 4.
    Impacts - SEVERITY :HIGH ■ Web Cache Poisoning ■ Password Reset Poisoning ■ Cross Site Scripting ■ Access to internal hosts
  • 5.
    Bypasses- ■ Multiple HostHeaders ■ X-Forwarded-Host
  • 6.
    Mitigation - ■ Rejectany request that doesn’t match target domain ■ Validating Host header to ensure that the request is originating from that target host or not. ■ Creating an dummy virtual host that catches all requests with unrecognized Host headers. ■ By creating a whitelist of trusted domains. ■ Disable support for X-Forwarded-Host
  • 7.