Guy Arazi
With a lifelong passion for security research, Guy has been deeply involved in both developing and testing applications from a young age. Having played diverse roles in both defensive and offensive security, he leverages this dual expertise to advance vulnerability discovery, detection, and mitigation across various sectors. Specializing in web applications and cloud services, he is dedicated to addressing critical security issues on a global scale. Guy is currently a researcher at the MSRC V&M group.
Session
In modern web architectures, SSRF vulnerabilities have become increasingly difficult to exploit due to sophisticated defense mechanisms. This presentation introduces SSRF² - a novel technique that challenges fundamental assumptions about trust boundaries by using the same SSRF primitive twice across different security contexts. Through real-world discoveries, we demonstrate how a seemingly limited SSRF primitive, when used twice, can bypass an entire security stack designed to prevent internal access. What makes this technique particularly powerful is its ability to transform restricted blind SSRF vulnerabilities into critical security breaches without complex chains or extensive reconnaissance.