Crossing the KASM - a Webapp Pentest Story

Cite

DEF CON

Erb, Samuel Gardner, Justin

Formal Metadata

Title

Crossing the KASM - a Webapp Pentest Story

Title of Series

DEF CON 30

Number of Parts

Author

Erb, Samuel

Gardner, Justin

License

CC Attribution 3.0 Unported:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.

Identifiers

10.5446/62250 (DOI)

Publisher

DEF CON

Release Date

2022

Language

English

Content Metadata

Subject Area

Computer Science

Genre

Conference/Talk

Abstract

In this talk we will tell the story of an insane exploit we used to compromise the otherwise secure KASM Workspaces software. KASM Workspaces is enterprise software for streaming virtual workstations to end users built on top of Docker. This talk will span python binary RE, header smuggling, configuration injection, docker networking and questionable RFC interpretation. We hope to show you a little bit of what worked and a lot a bit of what didn't work on our quest to exploit this Heisenbug.