Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
thypon Profile picture
thypon
@nJoyneer
Security @brave. @voidlinux developer. Offsec+FOSS+*. https://t.co/jD0UrNUaYU
May 17, 2022 11 tweets 4 min read
AWS story of a special security issue.

TL;DR I discovered an HTTP Header Smuggling
affecting AWS ELB Cache mechanism;
The Brave team helped triage it,
AWS fixed the issue.

Happily ever after!

A thread 🧵 1/N. Image This August @albinowax published research related to
HTTP/2 smuggling vulnerabilities. Most of the research revolves
around fiddling with HTTP/1.1 and HTTP/2 conversion.

Reference:

- portswigger.net/research/http2

- intruder.io/research/pract…

Thread 🧵 2/N.